TY - JOUR
T1 - Enhancing Security of Software Defined Mobile Networks
AU - Liyanage, Madhusanka
AU - Ahmed, Ijaz
AU - Okwuibe, Jude
AU - Ylianttila, Mika
AU - Kabir, Hammad
AU - Santos, Jesus Llorente
AU - Kantola, Raimo
AU - Perez, Oscar Lopez
AU - Itzazelaia, Mikel Uriarte
AU - De Oca, Edgardo Montes
N1 - Funding Information:
This work was supported in part by Tekes, Finland, and in part by the Academy of Finland.
PY - 2017
Y1 - 2017
N2 - Traffic volumes in mobile networks are rising and end-user needs are rapidly changing. Mobile network operators need more flexibility, lower network operating costs, faster service roll-out cycles, and new revenue sources. The 5th Generation (5G) and future networks aim to deliver ultra-fast and ultra-reliable network access capable of supporting the anticipated surge in data traffic and connected nodes in years to come. Several technologies have been developed to meet these emergent demands of future mobile networks, among these are software defined networking, network function virtualization, and cloud computing. In this paper, we discuss the security challenges these new technologies are prone to in the context of the new telecommunication paradigm. We present a multi-tier component-based security architecture to address these challenges and secure 5G software defined mobile network (SDMN), by handling security at different levels to protect the network and its users. The proposed architecture contains five components, i.e., secure communication, policy-based communication, security information and event management, security defined monitoring, and deep packet inspection components for elevated security in the control and the data planes of SDMNs. Finally, the proposed security mechanisms are validated using test bed experiments.
AB - Traffic volumes in mobile networks are rising and end-user needs are rapidly changing. Mobile network operators need more flexibility, lower network operating costs, faster service roll-out cycles, and new revenue sources. The 5th Generation (5G) and future networks aim to deliver ultra-fast and ultra-reliable network access capable of supporting the anticipated surge in data traffic and connected nodes in years to come. Several technologies have been developed to meet these emergent demands of future mobile networks, among these are software defined networking, network function virtualization, and cloud computing. In this paper, we discuss the security challenges these new technologies are prone to in the context of the new telecommunication paradigm. We present a multi-tier component-based security architecture to address these challenges and secure 5G software defined mobile network (SDMN), by handling security at different levels to protect the network and its users. The proposed architecture contains five components, i.e., secure communication, policy-based communication, security information and event management, security defined monitoring, and deep packet inspection components for elevated security in the control and the data planes of SDMNs. Finally, the proposed security mechanisms are validated using test bed experiments.
KW - 5G
KW - mobile networks
KW - monitoring
KW - NFV
KW - SDN
KW - security
UR - http://www.scopus.com/inward/record.url?scp=85028921181&partnerID=8YFLogxK
U2 - 10.1109/ACCESS.2017.2701416
DO - 10.1109/ACCESS.2017.2701416
M3 - Article
AN - SCOPUS:85028921181
SN - 2169-3536
VL - 5
SP - 9422
EP - 9438
JO - IEEE Access
JF - IEEE Access
M1 - 7921532
ER -