Optimal deployment of virtual network functions for securing telecommunication networks against distributed denial of service attacks: a robust optimization approach - Archive ouverte HAL Accéder directement au contenu
Article Dans Une Revue Computers and Operations Research Année : 2022

Optimal deployment of virtual network functions for securing telecommunication networks against distributed denial of service attacks: a robust optimization approach

Résumé

Distributed Denial of Service (DDoS) cyberattacks represent a major security risk for network operators and internet service providers. They thus need to invest in security solutions to protect their network against DDoS attacks. The present work focuses on deploying a network function virtualization based architecture to secure a network against an ongoing DDoS attack. We assume that the target, sources and volume of the attack have been identified. However, due to 5G network slicing, the exact routing of the illegitimate flow in the network is not known by the internet service provider. We seek to determine the optimal number and locations of virtual network functions in order to remove all the illegitimate traffic while minimizing the total cost of the activated virtual network functions. We propose a robust optimization framework to solve this problem. The uncertain input parameters correspond to the amount of illegitimate flow on each path connecting an attack source to the target and can take values within a predefined uncertainty set. In order to solve this robust optimization problem, we develop an adversarial approach in which the adversarial sub-problem is solved by a Branch & Price algorithm. The results of our computational experiments, carried out on medium-size randomly generated instances, show that the
Fichier principal
Vignette du fichier
Gicqueletal2022.pdf (347.31 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)

Dates et versions

hal-03647126 , version 1 (20-04-2022)
hal-03647126 , version 2 (06-06-2022)

Identifiants

Citer

Céline Gicquel, Sonia Vanier, Alexandros Papadimitriou. Optimal deployment of virtual network functions for securing telecommunication networks against distributed denial of service attacks: a robust optimization approach. Computers and Operations Research, 2022, 146, pp.105890. ⟨10.1016/j.cor.2022.105890⟩. ⟨hal-03647126v2⟩
116 Consultations
174 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More