Graph Neural Networks for Detecting Lateral Movement in Hybrid Cloud Environments
DOI:
https://doi.org/10.32996/agjcsts.2025.2.1.3Keywords:
Graph Neural Networks (GNN), Hybrid Cloud Security, Lateral Movement Detection, Temporal Graph Modeling, Threat HuntingAbstract
This study proposes a Graph Neural Network (GNN)-based approach for detecting lateral movement in hybrid cloud environments, where attackers traverse across on-premises and cloud resources using stealthy, low-and-slow techniques. Traditional rule-based and signature-driven methods often struggle with the complexity, scale, and dynamic topology of hybrid infrastructures. We model the enterprise as a heterogeneous, temporal graph integrating identity events, network flows, endpoint telemetry, and cloud control-plane logs. Nodes represent users, service accounts, hosts, containers, virtual machines, and resources, while edges encode authentication, process lineage, resource access, and east-west communication with time-aware attributes. Using this unified graph, we employ a hybrid architecture that combines relational GNN layers with temporal attention to capture both structural anomalies and suspicious attack sequences. The system is trained with a mix of weak supervision from security alerts and self-supervised objectives to improve robustness under sparse labels and evolving attack patterns. Experimental evaluation on simulated hybrid attack scenarios and real-world-inspired datasets demonstrates improved early detection of multi-hop adversarial behavior, reduced false positives, and better interpretability through path-based explanations that highlight probable intrusion routes. The results suggest that graph-centric learning can provide a scalable, context-rich foundation for proactive threat hunting and automated response in modern hybrid cloud security operations.
Downloads
References
[1] Dalal, A. (2018). Cybersecurity And Artificial Intelligence: How AI Is Being Used in Cybersecurity To Improve Detection And Response To Cyber Threats. Turkish Journal of Computer and Mathematics Education Vol, 9(3), 1704-1709.
[2] Mohammad, A., & Mahjabeen, F. (2023). Revolutionizing solar energy with AI-driven enhancements in photovoltaic technology. BULLET: Jurnal Multidisiplin Ilmu, 2(4), 1174-1187.
[3] Dalal, Aryendra. (2019). Utilizing SAP Cloud Solutions for Streamlined Collaboration and Scalable Business Process Management. SSRN Electronic Journal. 10.2139/ssrn.5422334.
[4] Tiwari, A. (2023). Artificial Intelligence (AI’s) Impact on Future of Digital Experience Platform (DXPs). Voyage Journal of Economics & Business Research, 2(2), 93-109.
[5] Dalal, A. (2020). Harnessing the Power of SAP Applications to Optimize Enterprise Resource Planning and Business Analytics. Available at SSRN 5422375.
[6] Hegde, P. (2021). Automated Content Creation in Telecommunications. Jurnal Komputer, Informasi dan Teknologi, 1(2), 20–20.
[7] Dalal, A. (2015). Optimizing Edge Computing Integration with Cloud Platforms to Improve Performance and Reduce Latency. SSRN Electronic Journal. 10.2139/ssrn.5268128.
[8] Bahadur, S., Mondol, K., Mohammad, A., Al-Alam, T., & Bulbul Ahammed, M. (2022). Design and Implementation of Low Cost MPPT Solar Charge Controller.
[9] Dalal, A. (2020). Cyber Threat Intelligence: How to Collect and Analyse Data. International Journal on Recent and Innovation Trends in Computing and Communication.
[10] Mohammad, A., & Mahjabeen, F. (2023). Revolutionizing solar energy: The impact of artificial intelligence on photovoltaic systems. International Journal of Multidisciplinary Sciences and Arts, 2(3), 591856.
[11] Dalal, A. (2023). Data Management Using Cloud Computing. Available at SSRN 5198760.
[12] Dalal, A. (2023). Building Comprehensive Cybersecurity Policies to Protect Sensitive Data in the Digital Era. Available at SSRN 5424094.
[13] Dalal, Aryendra. (2019). Maximizing Business Value through Artificial Intelligence and Machine Learning in SAP Platforms. SSRN Electronic Journal. 10.2139/ssrn.5424315.
[14] Hegde, P. (2019). AI-Powered 5G Networks: Enhancing Speed, Efficiency, and Connectivity. International Journal of Research Science and Management, 6(3), 50-61.
[15] Mohammad, A., Mahjabeen, F., Al-Alam, T., Bahadur, S., & Das, R. (2022). Photovoltaic Power Plants: A Possible Solution for Growing Energy Needs of Remote Bangladesh. Available at SSRN 5185365.
[16] Dalal, A. (2018). Driving Business Transformation through Scalable and Secure Cloud Computing Infrastructure Solutions. Available at SSRN 5424274.
[17] Dalal, A. (2018). Revolutionizing Enterprise Data Management Using SAP HANA for Improved Performance and Scalability. Available at SSRN 5424194.
[18] Dalal, Aryendra. (2022). Addressing Challenges in Cybersecurity Implementation Across Diverse Industrial and Organizational Sectors. SSRN Electronic Journal. 10.2139/ssrn.5422294.
[19] Tiwari, A. (2022). AI-Driven Content Systems: Innovation and Early Adoption. Propel Journal of Academic Research, 2(1), 61–79.
[20] Dalal, A. (2020). Exploring Next-Generation Cybersecurity Tools for Advanced Threat Detection and Incident Response. Available at SSRN 5424096.
[21] Dalal, Aryendra. (2020). Exploring Advanced SAP Modules to Address Industry-Specific Challenges. SSRN Electronic Journal. 10.2139/ssrn.5268100.
[22] Hegde, P., & Varughese, R. J. (2023). Elevating Customer Support Experience in Telecom: AI chatbots, virtual assistants, AR. Propel Journal of Academic Research, 3(2), 193–211.
[23] Tiwari, A. (2023). Generative AI in Digital Content Creation, Curation and Automation. International Journal of Research Science and Management, 10(12), 40–53.
[24] Dalal, A. (2020). Cybersecurity and privacy: Balancing security and individual rights in the digital age. Available at SSRN 5171893.
[25] Dalal, A. (2017). Developing Scalable Applications Through Advanced Serverless Architectures in Cloud Ecosystems. Available at SSRN 5423999.
[26] Maizana, D., Situmorang, C., Satria, H., Yahya, Y. B., Ayyoub, M., Bhalerao, M. V., & Mohammad, A. (2023). The Influence of Hot Point on MTU CB Condition. Journal of Renewable Energy, Electrical, and Computer Engineering, 3(2), 37–43.
[27] Tiwari, A. (2022). Ethical AI Governance in Content Systems. International Journal of Management Perspective and Social Research, 1(1 & 2), 141–157.
[28] Hegde, P., & Varughese, R. J. (2022). Predictive Maintenance in Telecom Using AI. Journal of Mechanical, Civil and Industrial Engineering, 3(3), 102–118.
[29] Dalal, A. (2020). Leveraging Artificial Intelligence to Improve Cybersecurity Defences Against Sophisticated Cyber Threats. Available at SSRN 5422354.
[30] Dalal, Aryendra. (2017). Exploring Emerging Trends in Cloud Computing and Their Impact on Enterprise Innovation. SSRN Electronic Journal. 10.2139/ssrn.5268114.
[31] Dalal, Aryendra. (2018). Leveraging Cloud Computing to Accelerate Digital Transformation Across Diverse Business Ecosystems. SSRN Electronic Journal. 10.2139/ssrn.5268112.
[32] Hegde, P., & Varughese, R. J. (2020). AI-Driven Data Analytics: Insights for Telecom Growth Strategies. International Journal of Research Science and Management, 7(7), 52–68.
[33] Mohammad, A., & Mahjabeen, F. (2023). Promises and challenges of perovskite solar cells: a comprehensive review. BULLET: Jurnal Multidisiplin Ilmu, 2(5), 1147–1157.
Downloads
Published
Issue
Section
License
Copyright (c) 2025 https://creativecommons.org/licenses/by/4.0/
This work is licensed under a Creative Commons Attribution 4.0 International License.
