Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation

The ever-increasing number of internet-connected devices, along with the continuous evolution of cyber-attacks, in terms of volume and ingenuity, has led to a widened cyber-threat landscape, rendering infrastructures prone to malicious attacks. Towards addressing systems’ vulnerabilities and allevia...

Descripción completa

Detalles Bibliográficos
Autores principales: Nikoloudakis, Yannis, Kefaloukos, Ioannis, Klados, Stylianos, Panagiotakis, Spyros, Pallis, Evangelos, Skianis, Charalabos, Markakis, Evangelos K.
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2021
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8309766/
https://www.ncbi.nlm.nih.gov/pubmed/34300676
http://dx.doi.org/10.3390/s21144939
_version_ 1783728598391193600
author Nikoloudakis, Yannis
Kefaloukos, Ioannis
Klados, Stylianos
Panagiotakis, Spyros
Pallis, Evangelos
Skianis, Charalabos
Markakis, Evangelos K.
author_facet Nikoloudakis, Yannis
Kefaloukos, Ioannis
Klados, Stylianos
Panagiotakis, Spyros
Pallis, Evangelos
Skianis, Charalabos
Markakis, Evangelos K.
author_sort Nikoloudakis, Yannis
collection PubMed
description The ever-increasing number of internet-connected devices, along with the continuous evolution of cyber-attacks, in terms of volume and ingenuity, has led to a widened cyber-threat landscape, rendering infrastructures prone to malicious attacks. Towards addressing systems’ vulnerabilities and alleviating the impact of these threats, this paper presents a machine learning based situational awareness framework that detects existing and newly introduced network-enabled entities, utilizing the real-time awareness feature provided by the SDN paradigm, assesses them against known vulnerabilities, and assigns them to a connectivity-appropriate network slice. The assessed entities are continuously monitored by an ML-based IDS, which is trained with an enhanced dataset. Our endeavor aims to demonstrate that a neural network, trained with heterogeneous data stemming from the operational environment (common vulnerability enumeration IDs that correlate attacks with existing vulnerabilities), can achieve more accurate prediction rates than a conventional one, thus addressing some aspects of the situational awareness paradigm. The proposed framework was evaluated within a real-life environment and the results revealed an increase of more than 4% in the overall prediction accuracy.
format Online
Article
Text
id pubmed-8309766
institution National Center for Biotechnology Information
language English
publishDate 2021
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-83097662021-07-25 Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation Nikoloudakis, Yannis Kefaloukos, Ioannis Klados, Stylianos Panagiotakis, Spyros Pallis, Evangelos Skianis, Charalabos Markakis, Evangelos K. Sensors (Basel) Article The ever-increasing number of internet-connected devices, along with the continuous evolution of cyber-attacks, in terms of volume and ingenuity, has led to a widened cyber-threat landscape, rendering infrastructures prone to malicious attacks. Towards addressing systems’ vulnerabilities and alleviating the impact of these threats, this paper presents a machine learning based situational awareness framework that detects existing and newly introduced network-enabled entities, utilizing the real-time awareness feature provided by the SDN paradigm, assesses them against known vulnerabilities, and assigns them to a connectivity-appropriate network slice. The assessed entities are continuously monitored by an ML-based IDS, which is trained with an enhanced dataset. Our endeavor aims to demonstrate that a neural network, trained with heterogeneous data stemming from the operational environment (common vulnerability enumeration IDs that correlate attacks with existing vulnerabilities), can achieve more accurate prediction rates than a conventional one, thus addressing some aspects of the situational awareness paradigm. The proposed framework was evaluated within a real-life environment and the results revealed an increase of more than 4% in the overall prediction accuracy. MDPI 2021-07-20 /pmc/articles/PMC8309766/ /pubmed/34300676 http://dx.doi.org/10.3390/s21144939 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Nikoloudakis, Yannis
Kefaloukos, Ioannis
Klados, Stylianos
Panagiotakis, Spyros
Pallis, Evangelos
Skianis, Charalabos
Markakis, Evangelos K.
Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation
title Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation
title_full Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation
title_fullStr Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation
title_full_unstemmed Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation
title_short Towards a Machine Learning Based Situational Awareness Framework for Cybersecurity: An SDN Implementation
title_sort towards a machine learning based situational awareness framework for cybersecurity: an sdn implementation
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8309766/
https://www.ncbi.nlm.nih.gov/pubmed/34300676
http://dx.doi.org/10.3390/s21144939
work_keys_str_mv AT nikoloudakisyannis towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation
AT kefaloukosioannis towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation
AT kladosstylianos towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation
AT panagiotakisspyros towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation
AT pallisevangelos towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation
AT skianischaralabos towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation
AT markakisevangelosk towardsamachinelearningbasedsituationalawarenessframeworkforcybersecurityansdnimplementation

Ejemplares similares