Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Enhancing Network Anomaly Detection Using Graph Neural Networks

Conference · · 2024 22nd Mediterranean Communication and Computer Networking Conference (MedComNet)
 [1];  [1];  [1]
  1. University of Texas at El Paso,Department of Computer Science,El Paso,USA
+ Show Author Affiliations

In the world of Internet of Things (IoT) networks, where devices are constantly communicating, keeping them secure from cyber threats is critical. This paper introduces a novel approach to detecting unusual and potentially harmful activities in these networks using graph neural networks (GNNs). We combine two specific types of GNNs-GraphSAGE and graph attention networks (GAT)-to create a model that understands and represents the behaviors and interactions in a network. GraphSAGE creates an embedding of network activities by examining local data interactions, while GAT directs the model's focus to the most critical interactions. By integrating these two methods in a single model that considers different types of interactions (both host and flow nodes), we aim to create a system that accurately represents the current state of a network and can also spot anomalies effectively while reducing false positives and negatives. Our innovative approach has demonstrated promising results, achieving an accuracy of 98% on the UNSW-NB15 dataset, significantly outperforming standalone GraphSAGE and GAT models. This underscores its potential as a robust framework for securing IoT networks against cyber threats and anomalies.

Research Organization:
Univ. of Texas at El Paso, TX (United States)
Sponsoring Organization:
USDOE Office of Fossil Energy and Carbon Management (FECM)
DOE Contract Number:
DE-FE0032089
OSTI ID:
2426922
Journal Information:
2024 22nd Mediterranean Communication and Computer Networking Conference (MedComNet), Conference: 22nd Mediterranean Communication and Computer Networking Conference (MedComNet)
Country of Publication:
United States
Language:
English

References (17)

Network Anomaly Detection Using Federated Learning November 2022
Condition monitoring and anomaly detection in cyber-physical systems June 2022
Anomaly Detection in In-Vehicle Networks with Graph Neural Networks July 2023
Graph Anomaly Detection With Graph Neural Networks: Current Status and Challenges January 2022
Network Anomaly Detection Using a Graph Neural Network February 2023
Performance Analysis of Intrusion Detection Systems Using a Feature Selection Method on the UNSW-NB15 Dataset November 2020
Detection of Message Injection Attacks Onto the CAN Bus Using Similarities of Successive Messages-Sequence Graphs January 2021
The Elements of Statistical Learning January 2009
Graph Neural Networks for Anomaly Detection in Industrial Internet of Things June 2022
UNSW-NB15: a comprehensive data set for network intrusion detection systems (UNSW-NB15 network data set) November 2015
An Anomaly Mitigation Framework for IoT Using Fog Computing September 2020
Towards Network Anomaly Detection Using Graph Embedding June 2020
Exploiting Edge Features for Graph Neural Networks June 2019
A Novel Multimodal-Sequential Approach Based on Multi-View Features for Network Intrusion Detection January 2019
An ensemble learning and fog-cloud architecture-driven cyber-attack detection framework for IoMT networks January 2021
An Experimental Analysis of Attack Classification Using Machine Learning in IoT Networks January 2021
E-GraphSAGE: A Graph Neural Network based Intrusion Detection System for IoT April 2022

Similar Records

Graph neural networks for detecting anomalies in scientific workflows
Journal Article · 2023 · International Journal of High Performance Computing Applications · OSTI ID:1975863
+5 more
CPES-QSM: A Quantitative Method Towards the Secure Operation of Cyber-Physical Energy Systems
Journal Article · 2022 · IEEE Internet of Things Journal (Online) · OSTI ID:1901938
Facility Cybersecurity Framework Best Practices
Technical Report · 2020 · OSTI ID:1660771
+1 more

Related Subjects