Machine Learning for Optical Network Security Monitoring: A Practical Perspective

In order to accomplish cost-efficient management of complex optical communication networks, operators are seeking automation of network diagnosis and management by means of Machine Learning (ML). To support these objectives, new functions are needed to enable cognitive, autonomous management of optical network security. This article focuses on the challenges related to the performance of ML-based approaches for detection and localization of optical-layer attacks, and to their integration with standard Network Management Systems (NMSs). We propose a framework for cognitive security diagnostics that comprises an attack detection module with Supervised Learning (SL), Semi-Supervised Learning (SSL), and Unsupervised Learning (UL) approaches, and an attack localization module that deduces the location of a harmful connection and/or a breached link. The influence of false positives and false negatives is addressed by a newly proposed Window-based Attack Detection (WAD) approach. We provide practical implementation guidelines for the integration of the framework into the NMS and evaluate its performance in an experimental network testbed subjected to attacks, resulting with the largest optical-layer security experimental dataset reported to date.

[1]  Francesco Musumeci,et al.  A Tutorial on Machine Learning for Failure Management in Optical Networks , 2019, Journal of Lightwave Technology.

[2]  F. Jenau,et al.  Demanding response time requirements on coherent receivers due to fast polarization rotations caused by lightning events. , 2016, Optics express.

[3]  Pablo Pavón-Mariño,et al.  Wavelength assignment for reducing in-band crosstalk attack propagation in optical networks: ILP formulations and heuristic algorithms , 2012, Eur. J. Oper. Res..

[4]  Jing Zhu,et al.  Leveraging Game Theory to Achieve Efficient Attack-Aware Service Provisioning in EONs , 2017, Journal of Lightwave Technology.

[5]  Lena Wosinska,et al.  A New Approach to Optical Networks Security: Attack-Aware Routing and Wavelength Assignment , 2010, IEEE/ACM Transactions on Networking.

[6]  S. Bigo,et al.  Toward efficient, reliable, and autonomous optical networks: the ORCHESTRA solution [Invited] , 2019, IEEE/OSA Journal of Optical Communications and Networking.

[7]  Lena Wosinska,et al.  Experimental Study of Machine-Learning-Based Detection and Identification of Physical-Layer Attacks in Optical Networks , 2019, Journal of Lightwave Technology.

[8]  Paul R. Prucnal,et al.  Optical Layer Security in Fiber-Optic Networks , 2011, IEEE Transactions on Information Forensics and Security.

[9]  Domenico Siracusa,et al.  Towards Secure Optical Networks: A Framework to Aid Localization of Harmful Connections , 2018, 2018 Optical Fiber Communications Conference and Exposition (OFC).

[10]  Tao Wu,et al.  Cross-talk attack monitoring and localization in all-optical networks , 2005, IEEE/ACM Transactions on Networking.

[11]  Mohit Chamania,et al.  Artificial Intelligence (AI) Methods in Optical Networks: A Comprehensive Survey , 2018, Opt. Switch. Netw..

[12]  Vincent W. S. Chan,et al.  Network-Wide Localization of Optical-Layer Attacks , 2019, ONDM.

[13]  Danish Rafique,et al.  Machine learning for network automation: overview, architecture, and applications [Invited Tutorial] , 2018, IEEE/OSA Journal of Optical Communications and Networking.

[14]  F. Cugini,et al.  Monitoring and Data Analytics for Optical Networking: Benefits, Architectures, and Use Cases , 2019, IEEE Network.

[15]  Yanlong Li,et al.  Light Source and Trail Recognition via Optical Spectrum Feature Analysis for Optical Network Security , 2018, IEEE Communications Letters.

[16]  Lena Wosinska,et al.  Demonstration of Machine-Learning-Assisted Security Monitoring in Optical Networks , 2019 .

[17]  Ozan K. Tonguz,et al.  Failure location algorithm for transparent optical networks , 2005, IEEE Journal on Selected Areas in Communications.

[18]  Nan Hua,et al.  Fast Lightpath Hopping Enabled by Time Synchronization for Optical Network Security , 2016, IEEE Communications Letters.

[19]  Roberto Proietti,et al.  Self-Taught Anomaly Detection With Hybrid Unsupervised/Supervised Machine Learning in Optical Networks , 2019, Journal of Lightwave Technology.

[20]  Ioannis Tomkos,et al.  Machine Learning for QoT Estimation of Unseen Optical Network States , 2019, 2019 Optical Fiber Communications Conference and Exhibition (OFC).

[21]  Francesco Musumeci,et al.  Machine-Learning-Based Soft-Failure Detection and Identification in Optical Networks , 2018, 2018 Optical Fiber Communications Conference and Exposition (OFC).

[22]  Marija Furdek,et al.  Experiment-based detection of service disruption attacks in optical networks using data analytics and unsupervised learning , 2019, OPTO.

[23]  Piero Castoldi,et al.  Network Telemetry Streaming Services in SDN-Based Disaggregated Optical Networks , 2018, Journal of Lightwave Technology.

[24]  Ippokratis Sartzetakis,et al.  Accurate quality of transmission estimation with machine learning , 2019, IEEE/OSA Journal of Optical Communications and Networking.

[25]  Konstantinos Manousakis,et al.  Multi-Period Attack-Aware Optical Network Planning under Demand Uncertainty , 2017 .

[26]  Lena Wosinska,et al.  Attack-Aware Dedicated Path Protection in Optical Networks , 2016, Journal of Lightwave Technology.

[27]  Takui Uematsu,et al.  Design of a Temporary Optical Coupler Using Fiber Bending for Traffic Monitoring , 2017, IEEE Photonics Journal.

[28]  Senén Barro,et al.  Do we need hundreds of classifiers to solve real world classification problems? , 2014, J. Mach. Learn. Res..

[29]  Zsigmond Szilárd,et al.  Physical-layer security in evolving optical networks , 2016, IEEE Communications Magazine.

[30]  David Lynch,et al.  Two use cases of machine learning for SDN-enabled ip/optical networks: traffic matrix prediction and optical path performance prediction [Invited] , 2018, IEEE/OSA Journal of Optical Communications and Networking.

[31]  Reza Nejabati,et al.  Monitoring and physical-layer attack mitigation in SDN-controlled quantum key distribution networks , 2019, IEEE/OSA Journal of Optical Communications and Networking.

[32]  Achim Autenrieth,et al.  Cognitive Assurance Architecture for Optical Network Fault Management , 2018, Journal of Lightwave Technology.

[33]  I. T. Monroy,et al.  Security attacks in optical access networks - simultaneous detection and localization , 2011, IEEE Photonic Society 24th Annual Meeting.

[34]  Marc Ruiz,et al.  Learning From the Optical Spectrum: Failure Detection and Identification , 2019, Journal of Lightwave Technology.

[35]  Oscar Gonzalez de Dios,et al.  Autonomous network diagnosis from the carrier perspective [Invited] , 2019, IEEE/OSA Journal of Optical Communications and Networking.

[36]  Marco Ruffini,et al.  An Overview on Application of Machine Learning Techniques in Optical Networks , 2018, IEEE Communications Surveys & Tutorials.

[37]  Chao Lu,et al.  An Optical Communication's Perspective on Machine Learning and Its Applications , 2019, Journal of Lightwave Technology.

[38]  Chao Lu,et al.  Optical Performance Monitoring: A Review of Current and Future Technologies , 2016, Journal of Lightwave Technology.

[39]  Admela Jukan,et al.  On Detecting and Preventing Jamming Attacks with Machine Learning in Optical Networks , 2019, 2019 IEEE Global Communications Conference (GLOBECOM).

[40]  Min Zhang,et al.  Failure prediction using machine learning and time series in optical network. , 2017, Optics express.