Distributed AI-based Security for Massive Numbers of Network Slices in 5G & Beyond Mobile Systems

The envisioned massive deployment of network slices in 5G and beyond mobile systems makes the shift towards zero-touch, scalable and secure slice lifecycle management a necessity. This is to harvest the benefits of network slicing in enabling profitable services. These benefits will not be attained without ensuring a high level security of the created network slices and the underlying infrastructure, above all in a zero-touch automated fashion. In this vein, this paper presents the architecture of an innovative network slicing security orchestration framework, being developed within the EU H2020 MonB5G project. The framework leverages the potential of Security as a Service (SECaaS) and Artificial Intelligence (AI) to foster fully-distributed, autonomic and fine-grained management of network slicing security from the node level to the end-to-end and inter-slice levels.

[1]  Tarik Taleb,et al.  Trust in 5G and Beyond Networks , 2021, IEEE Network.

[2]  Edgardo Montes de Oca,et al.  White Paper: Intelligent Security Architecture for 5G and Beyond Networks , 2020 .

[3]  Tarik Taleb,et al.  AI for Beyond 5G Networks: A Cyber-Security Defense or Offense Enabler? , 2020, IEEE Network.

[4]  Tarik Taleb,et al.  CDN Slicing over a Multi-Domain Edge Cloud , 2020, IEEE Transactions on Mobile Computing.

[5]  Tarik Taleb,et al.  AI-Driven Zero Touch Network and Service Management in 5G and Beyond: Challenges and Research Directions , 2020, IEEE Network.

[6]  Tarik Taleb,et al.  On Multi-Domain Network Slicing Orchestration Architecture and Federated Resource Control , 2019, IEEE Network.

[7]  Slawomir Kuklinski,et al.  DASMO: A scalable approach to network slices management and orchestration , 2018, NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium.

[8]  Tarik Taleb,et al.  Network Slicing and Softwarization: A Survey on Principles, Enabling Technologies, and Solutions , 2018, IEEE Communications Surveys & Tutorials.

[9]  Antonio F. Gómez-Skarmeta,et al.  Towards provisioning of SDN/NFV-based security enablers for integrated protection of IoT systems , 2017, 2017 IEEE Conference on Standards for Communications and Networking (CSCN).

[10]  Vijay Varadharajan,et al.  Security as a Service Model for Cloud Environment , 2014, IEEE Transactions on Network and Service Management.

[11]  David D. Clark,et al.  A knowledge plane for the internet , 2003, SIGCOMM '03.