@inproceedings{c7ffd04504c74ae18843404b00e87674,
title = "5G-IoT-IDS: Intrusion Detection System for CIoT as Network Function in 5G Core Network",
abstract = "In this paper, our objective is to design, develop and deploy a novel 5G-IoT IDS as a 5G core network function compliant with 3GPP R17. 5G-IoT IDS provides protection against malicious behaviors targeting IoT networks. To satisfy the 3GPP standard, our proposal respects the design architecture of the 5G system and only uses functionalities defined by the 3GPP technical specifications. Using Open5GS emulating the 5G core network, we implemented and integrated the 5G-IoT IDS as an NF to inspect IoT MQTT traffic on the user plane with common ML algorithms to demonstrate feasibility and effectiveness of our proposal. We explored a different way of handling MQTT packets, delving deeper into the structure of the packet. Based on extensive emulations, we compared our results with analogous studies focused on the MQTT protocol, and it revealed that our emulations exhibit strong performance, which aligns with those highlighted in the related studies, when up against a variant attack of the same flood-based principle. We believe our method of packet handling demonstrates a more comprehensive consideration of MQTT packet characteristics.",
keywords = "3GPP, 5G, 5G Network Function, CIoT, Core Network, IDS, Machine Learning",
author = "{Linh Le}, {Tan Nhat} and Salem, {Boussad Ait} and Ahad, {Emile Abdel} and Nadjib Aitsaadi and Xiaojiang Du",
note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 2023 IEEE Global Communications Conference, GLOBECOM 2023 ; Conference date: 04-12-2023 Through 08-12-2023",
year = "2023",
doi = "10.1109/GLOBECOM54140.2023.10437158",
language = "English",
series = "Proceedings - IEEE Global Communications Conference, GLOBECOM",
pages = "4773--4778",
booktitle = "GLOBECOM 2023 - 2023 IEEE Global Communications Conference",
}