Deep Learning for Network Intrusion Detection in Virtual Networks
2024; Multidisciplinary Digital Publishing Institute; Volume: 13; Issue: 18 Linguagem: Inglês
10.3390/electronics13183617
ISSN2079-9292
AutoresDaniel Spiekermann, Tobias Eggendorfer, Jörg Keller,
Tópico(s)Advanced Malware Detection Techniques
ResumoAs organizations increasingly adopt virtualized environments for enhanced flexibility and scalability, securing virtual networks has become a critical part of current infrastructures. This research paper addresses the challenges related to intrusion detection in virtual networks, with a focus on various deep learning techniques. Since physical networks do not use encapsulation, but virtual networks do, packet analysis based on rules or machine learning outcomes for physical networks cannot be transferred directly to virtual environments. Encapsulation methods in current virtual networks include VXLAN (Virtual Extensible LAN), an EVPN (Ethernet Virtual Private Network), and NVGRE (Network Virtualization using Generic Routing Encapsulation). This paper analyzes the performance and effectiveness of network intrusion detection in virtual networks. It delves into challenges inherent in virtual network intrusion detection with deep learning, including issues such as traffic encapsulation, VM migration, and changing network internals inside the infrastructure. Experiments on detection performance demonstrate the differences between intrusion detection in virtual and physical networks.
Referência(s)