Razavi, Kamran ; Davari Fard, Shayan ; Karlos, George ; Nigade, Vinod ; Mühlhäuser, Max ; Wang, Lin (2024)
NetNN: Neural Intrusion Detection System in Programmable Networks.
doi: 10.48550/arXiv.2406.19990
Report, Bibliographie
Kurzbeschreibung (Abstract)
The rise of deep learning has led to various successful attempts to apply deep neural networks (DNNs) for important networking tasks such as intrusion detection. Yet, running DNNs in the network control plane, as typically done in existing proposals, suffers from high latency that impedes the practicality of such approaches. This paper introduces NetNN, a novel DNN-based intrusion detection system that runs completely in the network data plane to achieve low latency. NetNN adopts raw packet information as input, avoiding complicated feature engineering. NetNN mimics the DNN dataflow execution by mapping DNN parts to a network of programmable switches, executing partial DNN computations on individual switches, and generating packets carrying intermediate execution results between these switches. We implement NetNN in P4 and demonstrate the feasibility of such an approach. Experimental results show that NetNN can improve the intrusion detection accuracy to 99\% while meeting the real-time requirement.
| Typ des Eintrags: | Report |
|---|---|
| Erschienen: | 2024 |
| Autor(en): | Razavi, Kamran ; Davari Fard, Shayan ; Karlos, George ; Nigade, Vinod ; Mühlhäuser, Max ; Wang, Lin |
| Art des Eintrags: | Bibliographie |
| Titel: | NetNN: Neural Intrusion Detection System in Programmable Networks |
| Sprache: | Englisch |
| Publikationsjahr: | 28 Juni 2024 |
| Verlag: | arXiv |
| Reihe: | Cryptography and Security |
| Auflage: | 1. Version |
| DOI: | 10.48550/arXiv.2406.19990 |
| Kurzbeschreibung (Abstract): | The rise of deep learning has led to various successful attempts to apply deep neural networks (DNNs) for important networking tasks such as intrusion detection. Yet, running DNNs in the network control plane, as typically done in existing proposals, suffers from high latency that impedes the practicality of such approaches. This paper introduces NetNN, a novel DNN-based intrusion detection system that runs completely in the network data plane to achieve low latency. NetNN adopts raw packet information as input, avoiding complicated feature engineering. NetNN mimics the DNN dataflow execution by mapping DNN parts to a network of programmable switches, executing partial DNN computations on individual switches, and generating packets carrying intermediate execution results between these switches. We implement NetNN in P4 and demonstrate the feasibility of such an approach. Experimental results show that NetNN can improve the intrusion detection accuracy to 99\% while meeting the real-time requirement. |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Telekooperation |
| TU-Projekte: | DFG|SFB1053|SFB1053 TPA01 Mühlhä DFG|SFB1053|SFB1053 TPB02 Mühlhä |
| Hinterlegungsdatum: | 02 Aug 2024 08:10 |
| Letzte Änderung: | 02 Aug 2024 08:10 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum