ML-Based Threat Detection for Container Network Security in Kubernetes
Author(s): Hariprasad Sivaraman
Publication #: 2411103
Date of Publication: 06.01.2024
Country: USA
Pages: 1-8
Published In: Volume 10 Issue 1 January-2024
DOI: https://doi.org/10.5281/zenodo.14250606
Abstract
Considering the rise of containerized environments, especially those that run on Kubernetes, throughout enterprise infrastructures, ensuring security of these networks against changing cyber threats is a must. Kubernetes environments are fundamentally dynamic: workloads are short-lived, and network policies change constantly; a paradigm that fails for traditional network security solutions. This paper introduces a novel Machine Learning(ML) based model for detection and monitoring such threats in container networks built on Kubernetes framework. These solutions leverage ML to analyze various network behaviors and detect manifestations of intrusions as well as the processes of privilege escalation and lateral movement inside the container infrastructure. The approach is validated by real-world case scenarios and model evaluations showing that the proposed solution can achieve a significant enhancement of the security aspect while keeping a high level of performance.
Keywords: Kubernetes, Machine Learning, Threat Detection, Container Security, Network Security, Anomaly Detection
Download/View Count: 149
Share this Article