A new initiative aims to ensure 5G networks are reliable and secure
Later this year, in a lab in the Durand Building at Stanford School of Engineering, a team of researchers will demonstrate how a tight formation of computer-controlled drones can be managed with precision even when the 5G network controlling it is under continual cyberattack.
The demo’s ultimate success or failure will depend on the ability of an experimental network control technology to detect the hacks and defeat them within a second to safeguard the navigation systems.
On hand to observe this demonstration will be officials from DARPA, the Defense Advanced Research Projects Agency, the government agency that’s underwriting Project Pronto. The $30 million effort, led by Nick McKeown, a professor of electrical engineering and computer science at Stanford, is largely funded and technically supported through the nonprofit Open Networking Foundation (ONF), with help from Princeton and Cornell universities. Their goal: to make sure that the wireless world — namely, 5G networks that will support the autonomous planes, trains and automobiles of the future — remains secure and reliable as the wired networks we rely on today.
This is no small task and the consequences could not be greater. The transition to 5G will affect every device connected to the internet and, by extension, the lives of every person who relies on such networks for safe transportation. But, as recent intrusions into wired networks have shown, serious vulnerabilities exist.
The pending Pronto demo is designed to solve that problem by way of a fix that McKeown and colleagues have devised that wraps a virtually instantaneous shield around wirelessly accessible computers using a technology known as software-defined networking (SDN).
Invented by McKeown’s group more than a dozen years ago, SDN is a simplified approach to traditional “black box” proprietary networking that decouples a network’s data and routing functions for faster, easier reconfiguration on the fly. Now, McKeown and his collaborators are applying advanced SDN techniques to secure the 5G and wireline networks.
These techniques make networks more secure and more resilient, with the goal of recovering from a cyberattack in less than a single second — orders of magnitude faster than today’s networks. In particular, the group will demonstrate how such a network can support flying of drones in a tight formation — one of the most demanding applications of 5G in the presence of network and computer failures and attacks.
McKeown’s group invented SDN to solve technical and commercial problems that had begun to crop up, first on wired networks like the early internet, but later on cellular and wireless as well, as those networks began to proliferate.
All this information must flow like water through pipes, but in this case, the pipes are physical wires or wireless channels. The goal in networking is simply to not fail — maintaining the flow of data even in the face of a nuclear attack. To do that, computer scientists developed a technology that parsed big buckets of information, such as text, images, music or streaming movies, into gazillions of smaller droplets of data known as “packets.”
The network essentially has two tasks: First, the data packets must be addressed and forwarded toward their intended destinations and reassembled into their original form. Second, the data must get routed through the network by way of wires or wireless channels — the pipes in this analogy. If one pipe is slowed or clogged, the router simply chooses a different pipe.
But, as data traffic exploded over the subsequent years, and more and more packets coursed through these channels, router manufacturers started adding proprietary software to their once-simple routing boxes. “You had barnacles upon barnacles of inscrutable code clogging up the routers, making it difficult for network operators to fix data interruptions when they occurred,” McKeown said.
In 2007, Martin Casado, then a Stanford graduate student and now a Silicon Valley venture capitalist, wrote a seminal paper proposing to create software-defined networks — virtual plumbing that scrapped the proprietary code for open source programs. Suddenly, network operators could control the data flow, remotely, all the way from Point A to Point B, and relegate the routers back to their original job of merely reading the addresses off packets and sending them on their way.
Internet companies, chip makers and other network stakeholders quickly got behind SDN, working together to create the necessary hardware and software — like the P4 network control software — that enable cloud computing operations to manage ever-growing data flows with rarely a blip.
Today, this paradigm faces a new hurdle: the fact that the makers of base stations, and routers for 5G wireless networks are no longer headquartered in America, but in China and Europe.
“For the first time in the history of the internet and of cellular telephony, there is not a single U.S. manufacturer of cellular telephone equipment. Meanwhile, the world is building 5G infrastructure on equipment where you have no idea what’s in the boxes,” McKeown said. “This is DARPA’s worry. This is the government’s worry. And they should be worried.”
“This is the more worrying part. For the first time in the history of the internet and of cellular telephony, there is not a single U.S. manufacturer. Meanwhile, the world is building 5G infrastructure on equipment where you have no idea what’s in the boxes,” McKeown said. “This is DARPA’s worry. This is the government’s worry. And they should be worried.”
Against that backdrop, roughly two years ago DARPA solicited the research proposals that coalesced into Project Pronto. The demo on the Stanford campus is a proof of concept that SDN systems, adapted to work on 5G networks, can thwart hacks on drones flown by the lab of Stanford aeronautics and astronautics professor Mac Schwager, all in under a second — far quicker than the minutes or hours it might take today.
This first test will be fairly simple: When the computer scientists flip on the SDN shield, the drones should fly true through the attack. When they toggle off the protection, the craft should crash to the ground or collide. “We will smash up a few drones, but fortunately they’re fairly robust,” said McKeown, who is to receive the IEEE Alexander Graham Bell Medal for his continuing contributions to network technology.
Project Pronto’s second and longer-term goal will be to demonstrate that experimental SDN systems at each of the collaborating universities can also run 5G network test beds. Here, the university researchers are working with dozens of industry players — cloud service companies, chip makers, data security vendors, and network traffic carriers — brought together through the ONF.
ONF will translate SDN research from the universities into wireless network management protocols that would have an important intellectual property characteristic — they would have no IP at all thanks to their open source development model. Like the original internet, open source adheres to simple rules. Anyone is free to download any open source product, and to modify and improve upon the product as they wish, so long as they throw any modifications or improvements they make back to the open source community for further adaptation or refinement.
“I think it’s this combination of the open source ethos and the deep programmability of SDN that will make future wireless networks more reliable and more secure,” McKeown said.