Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments

Detalhes bibliográficos
Autor(a) principal: Ashfaq, Fiza
Data de Publicação: 2025
Outros Autores: Wasim, Muhammad, Shah, Mumtaz Ali, Ahad, Abdul, Pires, Ivan Miguel
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Texto Completo: http://hdl.handle.net/10773/44564
Resumo: The Internet has been vulnerable to several attacks as it has expanded, including spoofing, viruses, malicious code attacks, and Distributed Denial of Service (DDoS). The three main types of attacks most frequently reported in the current period are viruses, DoS attacks, and DDoS attacks. Advanced DDoS and DoS attacks are too complex for traditional security solutions, such as intrusion detection systems and firewalls, to detect. The combination of machine learning methods with AI-based machine learning has led to the introduction of several novel attack detection systems. Due to their remarkable performance, machine learning models, in particular, have been essential in identifying DDoS attacks. However, there is a considerable gap in the work on real-time detection of such attacks. This study uses Mininet with the POX Controller to simulate an environment to detect DDoS attacks in real-time settings. The CICDDoS2019 dataset identifies and classifies such attacks in the simulated environment. In addition, a virtual software-defined network (SDN) is used to collect network information from the surrounding area. When an attack occurs, the pre-trained models are used to analyze the traffic and predict the attack in real-time. The performance of the proposed methodology is evaluated based on two metrics: accuracy and detection time. The results reveal that the proposed model achieves an accuracy of 99% within 1 s of the detection time.
id RCAP_055da09356d180b35fc9099a4ea4d3ba
oai_identifier_str oai:ria.ua.pt:10773/44564
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environmentsCyber securitySDNMachine learningZero trustReal-timeIntrusion detectionIntrusion preventionThe Internet has been vulnerable to several attacks as it has expanded, including spoofing, viruses, malicious code attacks, and Distributed Denial of Service (DDoS). The three main types of attacks most frequently reported in the current period are viruses, DoS attacks, and DDoS attacks. Advanced DDoS and DoS attacks are too complex for traditional security solutions, such as intrusion detection systems and firewalls, to detect. The combination of machine learning methods with AI-based machine learning has led to the introduction of several novel attack detection systems. Due to their remarkable performance, machine learning models, in particular, have been essential in identifying DDoS attacks. However, there is a considerable gap in the work on real-time detection of such attacks. This study uses Mininet with the POX Controller to simulate an environment to detect DDoS attacks in real-time settings. The CICDDoS2019 dataset identifies and classifies such attacks in the simulated environment. In addition, a virtual software-defined network (SDN) is used to collect network information from the surrounding area. When an attack occurs, the pre-trained models are used to analyze the traffic and predict the attack in real-time. The performance of the proposed methodology is evaluated based on two metrics: accuracy and detection time. The results reveal that the proposed model achieves an accuracy of 99% within 1 s of the detection time.MDPI2025-03-21T18:08:13Z2025-03-02T00:00:00Z2025-03-02info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10773/44564eng10.3390/s25061905Ashfaq, FizaWasim, MuhammadShah, Mumtaz AliAhad, AbdulPires, Ivan Miguelinfo:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2025-03-31T01:52:39Zoai:ria.ua.pt:10773/44564Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-29T04:43:04.118323Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
title Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
spellingShingle Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
Ashfaq, Fiza
Cyber security
SDN
Machine learning
Zero trust
Real-time
Intrusion detection
Intrusion prevention
title_short Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
title_full Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
title_fullStr Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
title_full_unstemmed Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
title_sort Enhancing security in 5G edge networks: predicting real-time zero trust attacks using machine learning in SDN environments
author Ashfaq, Fiza
author_facet Ashfaq, Fiza
Wasim, Muhammad
Shah, Mumtaz Ali
Ahad, Abdul
Pires, Ivan Miguel
author_role author
author2 Wasim, Muhammad
Shah, Mumtaz Ali
Ahad, Abdul
Pires, Ivan Miguel
author2_role author
author
author
author
dc.contributor.author.fl_str_mv Ashfaq, Fiza
Wasim, Muhammad
Shah, Mumtaz Ali
Ahad, Abdul
Pires, Ivan Miguel
dc.subject.por.fl_str_mv Cyber security
SDN
Machine learning
Zero trust
Real-time
Intrusion detection
Intrusion prevention
topic Cyber security
SDN
Machine learning
Zero trust
Real-time
Intrusion detection
Intrusion prevention
description The Internet has been vulnerable to several attacks as it has expanded, including spoofing, viruses, malicious code attacks, and Distributed Denial of Service (DDoS). The three main types of attacks most frequently reported in the current period are viruses, DoS attacks, and DDoS attacks. Advanced DDoS and DoS attacks are too complex for traditional security solutions, such as intrusion detection systems and firewalls, to detect. The combination of machine learning methods with AI-based machine learning has led to the introduction of several novel attack detection systems. Due to their remarkable performance, machine learning models, in particular, have been essential in identifying DDoS attacks. However, there is a considerable gap in the work on real-time detection of such attacks. This study uses Mininet with the POX Controller to simulate an environment to detect DDoS attacks in real-time settings. The CICDDoS2019 dataset identifies and classifies such attacks in the simulated environment. In addition, a virtual software-defined network (SDN) is used to collect network information from the surrounding area. When an attack occurs, the pre-trained models are used to analyze the traffic and predict the attack in real-time. The performance of the proposed methodology is evaluated based on two metrics: accuracy and detection time. The results reveal that the proposed model achieves an accuracy of 99% within 1 s of the detection time.
publishDate 2025
dc.date.none.fl_str_mv 2025-03-21T18:08:13Z
2025-03-02T00:00:00Z
2025-03-02
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10773/44564
url http://hdl.handle.net/10773/44564
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 10.3390/s25061905
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv MDPI
publisher.none.fl_str_mv MDPI
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833602129632165888

Registros relacionados