DIVERGENCE: Deep Reinforcement Learning-Based Adaptive Traffic Inspection and Moving Target Defense Countermeasure Framework
| dc.contributor.author | Kim, Sunghwan | en |
| dc.contributor.author | Yoon, Seunghyun | en |
| dc.contributor.author | Cho, Jin-Hee | en |
| dc.contributor.author | Kim, Dong Seong | en |
| dc.contributor.author | Moore, Terrence. J. J. | en |
| dc.contributor.author | Free-Nelson, Frederica | en |
| dc.contributor.author | Lim, Hyuk | en |
| dc.date.accessioned | 2023-04-17T15:05:49Z | en |
| dc.date.available | 2023-04-17T15:05:49Z | en |
| dc.date.issued | 2022-12 | en |
| dc.description.abstract | Reinforcement learning (RL) is a promising approach for intelligent agents to protect a given system under highly hostile environments. RL allows the agent to adaptively make sequential defense decisions based on the perceived current state of system security aiming to achieve the maximum defense performance in terms of fast, efficient, and automated detection, threat analysis, and response to the threat. In this paper, we propose a deep reinforcement learning (DRL)-based adaptive traffic inspection and moving target defense countermeasure framework, called 'DIVERGENCE,' for building a secure networked system. The DIVERGENCE provides two main security services: (1) a DRL-based network traffic inspection mechanism to achieve scalable and intensive network traffic visibility for rapid threat detection; and (2) an address shuffling-based moving target defense (MTD) technique to defend against threats as a proactive intrusion prevention mechanism. Through extensive simulations and experiments, we demonstrate that the DIVERGENCE successfully caught malicious traffic flows while significantly reducing the vulnerability of the network through MTD. | en |
| dc.description.notes | This material is based upon work supported by the International Technology Center Pacific (ITC-PAC) under Contract No. FA520920C0022, and the research was partly supported by the Army Research Office under Grant Contract Numbers W91NF-20-2-014 and NSF Grant 2107450. | en |
| dc.description.sponsorship | International Technology Center Pacific (ITC-PAC) [FA520920C0022]; Army Research Office [W91NF-20-2-014]; NSF [2107450] | en |
| dc.description.version | Published version | en |
| dc.format.mimetype | application/pdf | en |
| dc.identifier.doi | https://doi.org/10.1109/TNSM.2021.3139928 | en |
| dc.identifier.issue | 4 | en |
| dc.identifier.uri | http://hdl.handle.net/10919/114524 | en |
| dc.identifier.volume | 19 | en |
| dc.language.iso | en | en |
| dc.publisher | IEEE | en |
| dc.rights | Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International | en |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | en |
| dc.subject | Inspection | en |
| dc.subject | IP networks | en |
| dc.subject | Switches | en |
| dc.subject | Resource management | en |
| dc.subject | Monitoring | en |
| dc.subject | Uncertainty | en |
| dc.subject | Control systems | en |
| dc.subject | Traffic inspection | en |
| dc.subject | moving target defense | en |
| dc.subject | deep reinforcement learning | en |
| dc.subject | software-defined networking | en |
| dc.title | DIVERGENCE: Deep Reinforcement Learning-Based Adaptive Traffic Inspection and Moving Target Defense Countermeasure Framework | en |
| dc.title.serial | IEEE Transactions on Network and Service Management | en |
| dc.type | Article - Refereed | en |
| dc.type.dcmitype | Text | en |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- KimDivergence.pdf
- Size:
- 3.63 MB
- Format:
- Adobe Portable Document Format
- Description:
- Published version