The traffic explosion and the rising of diverse requirements lead to many challenges for traditional mobile network architecture on flexibility, scalability, and deployability. To meet new requirements in the 5 G era,...The traffic explosion and the rising of diverse requirements lead to many challenges for traditional mobile network architecture on flexibility, scalability, and deployability. To meet new requirements in the 5 G era, service based architecture is introduced into mobile networks. The monolithic network elements(e.g., MME, PGW, etc.) are split into smaller network functions to provide customized services. However, the management and deployment of network functions in service based 5 G core network are still big challenges. In this paper, we propose a novel management architecture for 5 G service based core network based on NFV and SDN. Combined with SDN, NFV and edge computing, the proposed framework can provide distributed and on-demand deployment of network functions, service guaranteed network slicing, flexible orchestration of network functions and optimal workload allocation. Simulations are conducted to show that the proposed framework and algorithm are effective in terms of reducing network operating cost.展开更多
Recent developments in the aerospace industry have led to a dramatic reduction in the manufacturing and launch costs of low Earth orbit satellites.The new trend enables the paradigm shift of satelliteterrestrial integ...Recent developments in the aerospace industry have led to a dramatic reduction in the manufacturing and launch costs of low Earth orbit satellites.The new trend enables the paradigm shift of satelliteterrestrial integrated networks with global coverage.In particular,the integration of 5G communication systems and satellites has the potential to restructure nextgeneration mobile networks.By leveraging the network function virtualization and network slicing,the satellite 5G core networks will facilitate the coordination and management of network functions in satellite-terrestrial integrated networks.We are the first to deploy a 5G core network on a real-world satellite to investigate its feasibility.We conducted experiments to validate the satellite 5G core network functions.The validated procedures include registration and session setup procedures.The results show that the satellite 5G core network can function normally and generate correct signaling.展开更多
Secure authentication between user equipment and 5G core network is a critical issue for 5G system.However,the traditional authentication protocol 5 G-AKA and the centralized key database are at risk of several securi...Secure authentication between user equipment and 5G core network is a critical issue for 5G system.However,the traditional authentication protocol 5 G-AKA and the centralized key database are at risk of several security problems,e.g.key leakage,impersonation attack,MitM attack and single point of failure.In this paper,a blockchain based asymmetric authentication and key agreement protocol(BC-AKA)is proposed for distributed 5G core network.In particular,the key used in the authentication process is replaced from a symmetric key to an asymmetric key,and the database used to store keys in conventional 5G core network is replaced with a blockchain network.A proof of concept system for distributed 5G core network is built based on Ethereum and ECC-Secp256 k1,and the efficiency and effectiveness of the proposed scheme are verified by the experiment results.展开更多
The Internet of Things(IoTs)has become an essential component of the 5th Generation(5G)network and beyond,accelerating the transition to digital society.The increasing signaling traffic generated by billions of IoT de...The Internet of Things(IoTs)has become an essential component of the 5th Generation(5G)network and beyond,accelerating the transition to digital society.The increasing signaling traffic generated by billions of IoT devices has placed significant strain on the 5G Core network(5GC)control plane.To address this issue,the 3rd Gener-ation Partnership Project(3GPP)first proposed a Service-Based Architecture(SBA),intending to create a flexible,scalable,and agile cloud-native 5GC.However,considering the coupling of protocol states and functions,there are still many challenges to fully utilize the benefits of the cloud computing and orchestrate the 5GC in a cloud-native manner.We propose a Message-Level StateLess Design(ML-SLD)to provide a cloud-native 5GC from an architectural standpoint in this paper.Firstly,we propose an innovative mechanism for servitization of the N2 interface to maintain the connection between Radio Access Network(RAN)and the 5GC,avoiding interruptions and dropouts of large-scale user data.Furthermore,we propose an On-demand Message Forwarding(OMF)al-gorithm to reduce the impact of cloud fluctuations on the performance of cloud-native 5GC.Finally,we create a prototype that is based on the OpenAirInterface(OAI)5G core network projects,with all Network Functions(NFs)packaged in dockers and deployed in a kubernetes-based cloud environment.Several experiments have been built with UERANSIM and Chaosblade simulation tools.The findings demonstrate the viability and efficiency of our proposed methods.展开更多
This paper studies and analyzes the rigorous requirements of railway 5G private network core network(5GC)equipment based on network function virtualization(NFV)technology in terms of reliability,security,latency and o...This paper studies and analyzes the rigorous requirements of railway 5G private network core network(5GC)equipment based on network function virtualization(NFV)technology in terms of reliability,security,latency and other aspects of communication cloud,compares cloud platform schemes with different decoupling modes,and proposes that railway 5GC should be implemented by software and hardware integration scheme or software and hardware two-layer decoupling scheme.At the same time,the redundancy and disaster recovery schemes and measures that can be taken by 5GC based on cloud platform are proposed.Finally,taking the products of ZTE Corporation as an example,the implementation architecture of railway 5GC cloud platform in 1+1 redundancy mode is given.It serves as a reference for the engineering construction of 5G-R core network.展开更多
With the commercialization of 5th-generation mobile communications(5G)networks,a large-scale internet of things(IoT)environment is being built.Security is becoming increasingly crucial in 5G network environments due t...With the commercialization of 5th-generation mobile communications(5G)networks,a large-scale internet of things(IoT)environment is being built.Security is becoming increasingly crucial in 5G network environments due to the growing risk of various distributed denial of service(DDoS)attacks across vast IoT devices.Recently,research on automated intrusion detection using machine learning(ML)for 5G environments has been actively conducted.However,5G traffic has insufficient data due to privacy protection problems and imbalance problems with significantly fewer attack data.If this data is used to train an ML model,it will likely suffer from generalization errors due to not training enough different features on the attack data.Therefore,this paper aims to study a training method to mitigate the generalization error problem of the ML model that classifies IoT DDoS attacks even under conditions of insufficient and imbalanced 5G traffic.We built a 5G testbed to construct a 5G dataset for training to solve the problem of insufficient data.To solve the imbalance problem,synthetic minority oversampling technique(SMOTE)and generative adversarial network(GAN)-based conditional tabular GAN(CTGAN)of data augmentation were used.The performance of the trained ML models was compared and meaningfully analyzed regarding the generalization error problem.The experimental results showed that CTGAN decreased the accuracy and f1-score compared to the Baseline.Still,regarding the generalization error,the difference between the validation and test results was reduced by at least 1.7 and up to 22.88 times,indicating an improvement in the problem.This result suggests that the ML model training method that utilizes CTGANs to augment attack data for training data in the 5G environment mitigates the generalization error problem.展开更多
As the railway sector intensifies its efforts in the technology research,system R&D and technology application of 5G-R,the paper conducts a preliminary study on its application frequency in terms of its frequency ...As the railway sector intensifies its efforts in the technology research,system R&D and technology application of 5G-R,the paper conducts a preliminary study on its application frequency in terms of its frequency propagation,network carrying capacity,its ability to work as industrial pillar,system applicability,and the compatibility of 5G-R with other systems.In line with China's GSM-R application practice and the application needs,the paper focuses on the study of key technologies such as model alignment of base station equipment,and optimization of 5G-R terminal and core network,identifying the priorities for the China's efforts to develop 5G-R and providing references for the research and application of related technologies.展开更多
基金supported by China Ministry of Education-CMCC Research Fund Project No.MCM20160104National Science and Technology Major Project No.No.2018ZX03001016+1 种基金Beijing Municipal Science and technology Commission Research Fund Project No.Z171100005217001Fundamental Research Funds for Central Universities NO.2018RC06
文摘The traffic explosion and the rising of diverse requirements lead to many challenges for traditional mobile network architecture on flexibility, scalability, and deployability. To meet new requirements in the 5 G era, service based architecture is introduced into mobile networks. The monolithic network elements(e.g., MME, PGW, etc.) are split into smaller network functions to provide customized services. However, the management and deployment of network functions in service based 5 G core network are still big challenges. In this paper, we propose a novel management architecture for 5 G service based core network based on NFV and SDN. Combined with SDN, NFV and edge computing, the proposed framework can provide distributed and on-demand deployment of network functions, service guaranteed network slicing, flexible orchestration of network functions and optimal workload allocation. Simulations are conducted to show that the proposed framework and algorithm are effective in terms of reducing network operating cost.
基金supported by the National Key R&D Program of China(2020YFB1805500)National Natural Science Foundation of China(61922017,62032003 and 61921003)。
文摘Recent developments in the aerospace industry have led to a dramatic reduction in the manufacturing and launch costs of low Earth orbit satellites.The new trend enables the paradigm shift of satelliteterrestrial integrated networks with global coverage.In particular,the integration of 5G communication systems and satellites has the potential to restructure nextgeneration mobile networks.By leveraging the network function virtualization and network slicing,the satellite 5G core networks will facilitate the coordination and management of network functions in satellite-terrestrial integrated networks.We are the first to deploy a 5G core network on a real-world satellite to investigate its feasibility.We conducted experiments to validate the satellite 5G core network functions.The validated procedures include registration and session setup procedures.The results show that the satellite 5G core network can function normally and generate correct signaling.
基金supported by National Key Research and Development Program of China under Grant 2021YFE0205300Tianjin Natural Science Foundation(19JCYBJC15700)。
文摘Secure authentication between user equipment and 5G core network is a critical issue for 5G system.However,the traditional authentication protocol 5 G-AKA and the centralized key database are at risk of several security problems,e.g.key leakage,impersonation attack,MitM attack and single point of failure.In this paper,a blockchain based asymmetric authentication and key agreement protocol(BC-AKA)is proposed for distributed 5G core network.In particular,the key used in the authentication process is replaced from a symmetric key to an asymmetric key,and the database used to store keys in conventional 5G core network is replaced with a blockchain network.A proof of concept system for distributed 5G core network is built based on Ethereum and ECC-Secp256 k1,and the efficiency and effectiveness of the proposed scheme are verified by the experiment results.
基金funded by the National Key Research and Development Program of China under Grant 2019YFB1803301Beijing Natural Science Foundation(L202002).
文摘The Internet of Things(IoTs)has become an essential component of the 5th Generation(5G)network and beyond,accelerating the transition to digital society.The increasing signaling traffic generated by billions of IoT devices has placed significant strain on the 5G Core network(5GC)control plane.To address this issue,the 3rd Gener-ation Partnership Project(3GPP)first proposed a Service-Based Architecture(SBA),intending to create a flexible,scalable,and agile cloud-native 5GC.However,considering the coupling of protocol states and functions,there are still many challenges to fully utilize the benefits of the cloud computing and orchestrate the 5GC in a cloud-native manner.We propose a Message-Level StateLess Design(ML-SLD)to provide a cloud-native 5GC from an architectural standpoint in this paper.Firstly,we propose an innovative mechanism for servitization of the N2 interface to maintain the connection between Radio Access Network(RAN)and the 5GC,avoiding interruptions and dropouts of large-scale user data.Furthermore,we propose an On-demand Message Forwarding(OMF)al-gorithm to reduce the impact of cloud fluctuations on the performance of cloud-native 5GC.Finally,we create a prototype that is based on the OpenAirInterface(OAI)5G core network projects,with all Network Functions(NFs)packaged in dockers and deployed in a kubernetes-based cloud environment.Several experiments have been built with UERANSIM and Chaosblade simulation tools.The findings demonstrate the viability and efficiency of our proposed methods.
文摘This paper studies and analyzes the rigorous requirements of railway 5G private network core network(5GC)equipment based on network function virtualization(NFV)technology in terms of reliability,security,latency and other aspects of communication cloud,compares cloud platform schemes with different decoupling modes,and proposes that railway 5GC should be implemented by software and hardware integration scheme or software and hardware two-layer decoupling scheme.At the same time,the redundancy and disaster recovery schemes and measures that can be taken by 5GC based on cloud platform are proposed.Finally,taking the products of ZTE Corporation as an example,the implementation architecture of railway 5GC cloud platform in 1+1 redundancy mode is given.It serves as a reference for the engineering construction of 5G-R core network.
基金This work was supported by Institute of Information&communications Technology Planning&Evaluation(IITP)grant funded by the Korea government(MSIT)(No.2021-0-00796Research on Foundational Technologies for 6GAutonomous Security-by-Design toGuarantee Constant Quality of Security).
文摘With the commercialization of 5th-generation mobile communications(5G)networks,a large-scale internet of things(IoT)environment is being built.Security is becoming increasingly crucial in 5G network environments due to the growing risk of various distributed denial of service(DDoS)attacks across vast IoT devices.Recently,research on automated intrusion detection using machine learning(ML)for 5G environments has been actively conducted.However,5G traffic has insufficient data due to privacy protection problems and imbalance problems with significantly fewer attack data.If this data is used to train an ML model,it will likely suffer from generalization errors due to not training enough different features on the attack data.Therefore,this paper aims to study a training method to mitigate the generalization error problem of the ML model that classifies IoT DDoS attacks even under conditions of insufficient and imbalanced 5G traffic.We built a 5G testbed to construct a 5G dataset for training to solve the problem of insufficient data.To solve the imbalance problem,synthetic minority oversampling technique(SMOTE)and generative adversarial network(GAN)-based conditional tabular GAN(CTGAN)of data augmentation were used.The performance of the trained ML models was compared and meaningfully analyzed regarding the generalization error problem.The experimental results showed that CTGAN decreased the accuracy and f1-score compared to the Baseline.Still,regarding the generalization error,the difference between the validation and test results was reduced by at least 1.7 and up to 22.88 times,indicating an improvement in the problem.This result suggests that the ML model training method that utilizes CTGANs to augment attack data for training data in the 5G environment mitigates the generalization error problem.
文摘As the railway sector intensifies its efforts in the technology research,system R&D and technology application of 5G-R,the paper conducts a preliminary study on its application frequency in terms of its frequency propagation,network carrying capacity,its ability to work as industrial pillar,system applicability,and the compatibility of 5G-R with other systems.In line with China's GSM-R application practice and the application needs,the paper focuses on the study of key technologies such as model alignment of base station equipment,and optimization of 5G-R terminal and core network,identifying the priorities for the China's efforts to develop 5G-R and providing references for the research and application of related technologies.
