Cargando…

Explainable Security in SDN-Based IoT Networks

The significant advances in wireless networks in the past decade have made a variety of Internet of Things (IoT) use cases possible, greatly facilitating many operations in our daily lives. IoT is only expected to grow with 5G and beyond networks, which will primarily rely on software-defined networ...

Descripción completa

Detalles Bibliográficos
Autores principales: Sarica, Alper Kaan, Angin, Pelin
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2020
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7765879/
https://www.ncbi.nlm.nih.gov/pubmed/33419302
http://dx.doi.org/10.3390/s20247326
_version_ 1783628585519546368
author Sarica, Alper Kaan
Angin, Pelin
author_facet Sarica, Alper Kaan
Angin, Pelin
author_sort Sarica, Alper Kaan
collection PubMed
description The significant advances in wireless networks in the past decade have made a variety of Internet of Things (IoT) use cases possible, greatly facilitating many operations in our daily lives. IoT is only expected to grow with 5G and beyond networks, which will primarily rely on software-defined networking (SDN) and network functions virtualization for achieving the promised quality of service. The prevalence of IoT and the large attack surface that it has created calls for SDN-based intelligent security solutions that achieve real-time, automated intrusion detection and mitigation. In this paper, we propose a real-time intrusion detection and mitigation solution for SDN, which aims to provide autonomous security in the high-traffic IoT networks of the 5G and beyond era, while achieving a high degree of interpretability by human experts. The proposed approach is built upon automated flow feature extraction and classification of flows while using random forest classifiers at the SDN application layer. We present an SDN-specific dataset that we generated for IoT and provide results on the accuracy of intrusion detection in addition to performance results in the presence and absence of our proposed security mechanism. The experimental results demonstrate that the proposed security approach is promising for achieving real-time, highly accurate detection and mitigation of attacks in SDN-managed IoT networks.
format Online
Article
Text
id pubmed-7765879
institution National Center for Biotechnology Information
language English
publishDate 2020
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-77658792020-12-28 Explainable Security in SDN-Based IoT Networks Sarica, Alper Kaan Angin, Pelin Sensors (Basel) Article The significant advances in wireless networks in the past decade have made a variety of Internet of Things (IoT) use cases possible, greatly facilitating many operations in our daily lives. IoT is only expected to grow with 5G and beyond networks, which will primarily rely on software-defined networking (SDN) and network functions virtualization for achieving the promised quality of service. The prevalence of IoT and the large attack surface that it has created calls for SDN-based intelligent security solutions that achieve real-time, automated intrusion detection and mitigation. In this paper, we propose a real-time intrusion detection and mitigation solution for SDN, which aims to provide autonomous security in the high-traffic IoT networks of the 5G and beyond era, while achieving a high degree of interpretability by human experts. The proposed approach is built upon automated flow feature extraction and classification of flows while using random forest classifiers at the SDN application layer. We present an SDN-specific dataset that we generated for IoT and provide results on the accuracy of intrusion detection in addition to performance results in the presence and absence of our proposed security mechanism. The experimental results demonstrate that the proposed security approach is promising for achieving real-time, highly accurate detection and mitigation of attacks in SDN-managed IoT networks. MDPI 2020-12-20 /pmc/articles/PMC7765879/ /pubmed/33419302 http://dx.doi.org/10.3390/s20247326 Text en © 2020 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Sarica, Alper Kaan
Angin, Pelin
Explainable Security in SDN-Based IoT Networks
title Explainable Security in SDN-Based IoT Networks
title_full Explainable Security in SDN-Based IoT Networks
title_fullStr Explainable Security in SDN-Based IoT Networks
title_full_unstemmed Explainable Security in SDN-Based IoT Networks
title_short Explainable Security in SDN-Based IoT Networks
title_sort explainable security in sdn-based iot networks
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7765879/
https://www.ncbi.nlm.nih.gov/pubmed/33419302
http://dx.doi.org/10.3390/s20247326
work_keys_str_mv AT saricaalperkaan explainablesecurityinsdnbasediotnetworks
AT anginpelin explainablesecurityinsdnbasediotnetworks