Distributed denial-of-service attack mitigation in network functions virtualization-based 5G networks using management and orchestration

Simple item page
dc.contributor.author Koksal, Sarp
dc.contributor.author Dalveren, Yaser
dc.contributor.author Maiga, Bamoye
dc.contributor.author Kara, Ali
dc.contributor.other Department of Electrical & Electronics Engineering
dc.date.accessioned 2024-07-05T15:21:21Z
dc.date.available 2024-07-05T15:21:21Z
dc.date.issued 2021
dc.description Kara, Ali/0000-0002-9739-7619; Maiga, Bamoye/0000-0003-4219-6630 en_US
dc.description.abstract The fifth generation (5G) technology is expected to allow connectivity to billions of devices, known as Internet of Things (IoT). However, IoT devices will inevitably be the main target of various cyberattack types. The most common one is known as distributed denial-of-service (DDoS) attack. In order to mitigate such attacks, network functions virtualization (NFV) has a great potential to provide the benefit of elasticity and low-cost solutions for protecting 5G networks. In this context, this study proposes a new mechanism developed to mitigate DDoS attacks in 5G NFV networks. The proposed mechanism utilizes intrusion prevention system's (IPS) virtual machines (VMs) to intercept the queries. Based on the volume of DDoS traffic, IPS's VMs are dynamically deployed by means of management and orchestration (MANO) in order to balance the load. To evaluate the effectiveness of the mechanism, experiments are conducted in a real 5G NFV environment built by using 5G NFV environment tools. To our best knowledge, this is the first time that NFV-based mechanism is experimentally tested in a real 5G NFV environment for mitigating DDoS attacks in 5G networks. The experimental results verify that the proposed mechanism can mitigate DDoS attacks effectively. en_US
dc.identifier.doi 10.1002/dac.4825
dc.identifier.issn 1074-5351
dc.identifier.issn 1099-1131
dc.identifier.scopus 2-s2.0-85104232812
dc.identifier.uri https://doi.org/10.1002/dac.4825
dc.identifier.uri https://hdl.handle.net/20.500.14411/2066
dc.language.iso en en_US
dc.publisher Wiley en_US
dc.rights info:eu-repo/semantics/closedAccess en_US
dc.subject 5G security en_US
dc.subject DDoS en_US
dc.subject MANO en_US
dc.subject NFV en_US
dc.subject OpenStack en_US
dc.title Distributed denial-of-service attack mitigation in network functions virtualization-based 5G networks using management and orchestration en_US
dc.type Article en_US
dspace.entity.type Publication
gdc.author.id Kara, Ali/0000-0002-9739-7619
gdc.author.id Maiga, Bamoye/0000-0003-4219-6630
gdc.author.institutional Dalveren, Yaser
gdc.author.institutional Kara, Ali
gdc.author.scopusid 57222958869
gdc.author.scopusid 51763497600
gdc.author.scopusid 57222965218
gdc.author.scopusid 7102824862
gdc.author.wosid Kara, Ali/R-8038-2019
gdc.coar.access metadata only access
gdc.coar.type text::journal::journal article
gdc.description.department Atılım University en_US
gdc.description.departmenttemp [Koksal, Sarp; Maiga, Bamoye; Kara, Ali] Atilim Univ, Dept Elect & Elect Engn, Ankara, Turkey; [Koksal, Sarp] Nokia, Network Infrastruct, Ankara, Turkey; [Dalveren, Yaser] Atilim Univ, Dept Avion, Ankara, Turkey; [Kara, Ali] Gazi Univ, Dept Elect & Elect Engn, Ankara, Turkey en_US
gdc.description.issue 9 en_US
gdc.description.publicationcategory Makale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanı en_US
gdc.description.scopusquality Q2
gdc.description.volume 34 en_US
gdc.description.wosquality Q3
gdc.identifier.wos WOS:000639789700001
gdc.scopus.citedcount 14
gdc.wos.citedcount 5
relation.isAuthorOfPublication 55e082ac-14c0-46a6-b8fa-50c5e40b59c8
relation.isAuthorOfPublication be728837-c599-49c1-8e8d-81b90219bb15
relation.isAuthorOfPublication.latestForDiscovery 55e082ac-14c0-46a6-b8fa-50c5e40b59c8
relation.isOrgUnitOfPublication c3c9b34a-b165-4cd6-8959-dc25e91e206b
relation.isOrgUnitOfPublication.latestForDiscovery c3c9b34a-b165-4cd6-8959-dc25e91e206b

Files

Collections

WoS
Scopus