Cargando…
Explainable Security in SDN-Based IoT Networks
The significant advances in wireless networks in the past decade have made a variety of Internet of Things (IoT) use cases possible, greatly facilitating many operations in our daily lives. IoT is only expected to grow with 5G and beyond networks, which will primarily rely on software-defined networ...
Autores principales: | , |
---|---|
Formato: | Online Artículo Texto |
Lenguaje: | English |
Publicado: |
MDPI
2020
|
Materias: | |
Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7765879/ https://www.ncbi.nlm.nih.gov/pubmed/33419302 http://dx.doi.org/10.3390/s20247326 |
_version_ | 1783628585519546368 |
---|---|
author | Sarica, Alper Kaan Angin, Pelin |
author_facet | Sarica, Alper Kaan Angin, Pelin |
author_sort | Sarica, Alper Kaan |
collection | PubMed |
description | The significant advances in wireless networks in the past decade have made a variety of Internet of Things (IoT) use cases possible, greatly facilitating many operations in our daily lives. IoT is only expected to grow with 5G and beyond networks, which will primarily rely on software-defined networking (SDN) and network functions virtualization for achieving the promised quality of service. The prevalence of IoT and the large attack surface that it has created calls for SDN-based intelligent security solutions that achieve real-time, automated intrusion detection and mitigation. In this paper, we propose a real-time intrusion detection and mitigation solution for SDN, which aims to provide autonomous security in the high-traffic IoT networks of the 5G and beyond era, while achieving a high degree of interpretability by human experts. The proposed approach is built upon automated flow feature extraction and classification of flows while using random forest classifiers at the SDN application layer. We present an SDN-specific dataset that we generated for IoT and provide results on the accuracy of intrusion detection in addition to performance results in the presence and absence of our proposed security mechanism. The experimental results demonstrate that the proposed security approach is promising for achieving real-time, highly accurate detection and mitigation of attacks in SDN-managed IoT networks. |
format | Online Article Text |
id | pubmed-7765879 |
institution | National Center for Biotechnology Information |
language | English |
publishDate | 2020 |
publisher | MDPI |
record_format | MEDLINE/PubMed |
spelling | pubmed-77658792020-12-28 Explainable Security in SDN-Based IoT Networks Sarica, Alper Kaan Angin, Pelin Sensors (Basel) Article The significant advances in wireless networks in the past decade have made a variety of Internet of Things (IoT) use cases possible, greatly facilitating many operations in our daily lives. IoT is only expected to grow with 5G and beyond networks, which will primarily rely on software-defined networking (SDN) and network functions virtualization for achieving the promised quality of service. The prevalence of IoT and the large attack surface that it has created calls for SDN-based intelligent security solutions that achieve real-time, automated intrusion detection and mitigation. In this paper, we propose a real-time intrusion detection and mitigation solution for SDN, which aims to provide autonomous security in the high-traffic IoT networks of the 5G and beyond era, while achieving a high degree of interpretability by human experts. The proposed approach is built upon automated flow feature extraction and classification of flows while using random forest classifiers at the SDN application layer. We present an SDN-specific dataset that we generated for IoT and provide results on the accuracy of intrusion detection in addition to performance results in the presence and absence of our proposed security mechanism. The experimental results demonstrate that the proposed security approach is promising for achieving real-time, highly accurate detection and mitigation of attacks in SDN-managed IoT networks. MDPI 2020-12-20 /pmc/articles/PMC7765879/ /pubmed/33419302 http://dx.doi.org/10.3390/s20247326 Text en © 2020 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
spellingShingle | Article Sarica, Alper Kaan Angin, Pelin Explainable Security in SDN-Based IoT Networks |
title | Explainable Security in SDN-Based IoT Networks |
title_full | Explainable Security in SDN-Based IoT Networks |
title_fullStr | Explainable Security in SDN-Based IoT Networks |
title_full_unstemmed | Explainable Security in SDN-Based IoT Networks |
title_short | Explainable Security in SDN-Based IoT Networks |
title_sort | explainable security in sdn-based iot networks |
topic | Article |
url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7765879/ https://www.ncbi.nlm.nih.gov/pubmed/33419302 http://dx.doi.org/10.3390/s20247326 |
work_keys_str_mv | AT saricaalperkaan explainablesecurityinsdnbasediotnetworks AT anginpelin explainablesecurityinsdnbasediotnetworks |