Graph Neural Network-Based Edge Classification Approach for Detection of Cybersecurity Attacks

Authors

Sathish Kumar, Cleveland State UniversityFollow
Danny DeJesus, Cleveland State University
Fataneh Farahani, Islamic Azad University, Iran

Document Type

Conference Paper

Publication Date

2025

Publication Title

2025 Conference on Artificial Intelligence-CAI-Annual

Abstract

Cybersecurity attacks, such as denial-of-service and infiltration attempts, can disrupt networks, compromise sensitive data, and result in financial losses. The growing prevalence of IoT devices exacerbates these risks, demanding advanced intrusion detection systems (NIDS). This study proposes a Graph Neural Network (GNN)-based framework for detecting and classifying multiple cybersecurity attacks. Unlike traditional NIDS approaches relying on node classification, our method introduces edge classification using network flow data, embedding features for source-destination pairs to improve detection accuracy. The GNN model achieves high performance even with limited training samples, making it suitable for rare attack scenarios. Evaluated against benchmark models such as decision trees (DT), artificial neural networks (ANN), and support vector machines (SVM), our GNN outperforms these methods, achieving 97% accuracy on the CIC-IDS2017 dataset. These results highlight the potential of edge-based GNN classification to enhance network security frameworks significantly.

Comments

Paper presented at: 2025 Conference on Artificial Intelligence-CAI-Annual, Santa Clara, CA, MAY 05-07, 2025

This work was supported by the Department of Energy Grant No.DE-SC0024686.

DOI

10.1109/CAI64502.2025.00174

Recommended Citation

Kumar, Sathish; DeJesus, Danny; and Farahani, Fataneh, "Graph Neural Network-Based Edge Classification Approach for Detection of Cybersecurity Attacks" (2025). Computer Science Faculty Publications. 12.
https://engagedscholarship.csuohio.edu/encs_facpub/12