I. Introduction

The advent of 5G networks has ushered in a new era of connectivity, promising unprecedented speed, reliability, and capacity [1], [2]. These networks rely on Software-Defined Networking (SDN) as the backbone architecture, serving as the infrastructure that enhances both control and flexibility [1]. However, with this technological leap comes the inevitable challenge of securing these networks against evolving cyber threats. Traditional cybersecurity approaches, such as signature-, blockchain- and rule-based systems, are unable to address the evolved techniques of modern cyber threats as they rely on static and rigid rules, which can result in their inability to effectively deal with unseen attack patterns. Additionally, they may introduce latencies that are unacceptable for real-time applications. In response to these challenges, there is a growing interest in leveraging Machine Learning (ML) and Reinforcement Learning (RL) techniques to enhance the security of 5G networks [3] as they can autonomously discover effective defense strategies in dynamic and uncertain environments. Additionally, RL can iteratively improve its performance over time by adjusting its strategies based on the environment’s feedback, enhancing the resilience of the 5G networks against emerging threats. To provide a comprehensive understanding, we survey relevant literature on the role of ML and Deep Reinforcement Learning (DRL) in enhancing the security of 5G networks including various perspectives and methodologies. In particular, we focus on defenses against distributed denial-of-service (DDoS) attacks given their severe threat to 5G infrastructures. These attacks can control a large number of compromised devices to amplify their malicious impact, making it harder for defenders to simply drop or disconnect the attacker hosts [4], [5]. Furthermore, in recent years, the rise of IoT devices with low-cost, high-bandwidth connections has exacerbated these attacks by providing a vast pool of vulnerable devices for exploitation.