Bibhu Dash,Meraj Farheen Ansari,Pawankumar Sharma,Azad Ali

DOI: https://doi.org/10.5121/ijsea.2022.13502

2022-09-30

International Journal of Software Engineering & Applications

Abstract:Internet usage has increased quickly, particularly in the previous decade. With the widespread use of the internet, cybercrime is growing at an alarming rate in our daily lives. However, with the growth of artificial intelligence (AI), businesses are concentrating more on preventing cybercrime. AI is becoming an essential component of every business, affecting individuals worldwide. Cybercrime is one of the most prominent domains where AI has begun demonstrating valuable inputs. As a result, AI is being deployed as the first line of defense in most firms' systems. Because AI can detect new assaults faster than humans, it is the best alternative for constructing better protection against cybercrime. AI technologies also offer more significant potential in the development of such technology. This paper discusses recent cyber intrusions and how the AI-enabled industry is preparing to defend itself in the long run.

Asma’u Shehu,Mahmood Umar,Abdulmalik Aliyu

DOI: https://doi.org/10.9734/ajrcos/2023/v16i3357

2023-08-08

Asian Journal of Research in Computer Science

Abstract:Artificial Intelligence (AI) tools are promising multifaceted techniques for addressing the most mundane tasks for greater efficiency and high productivity. Cyber security space is one of the areas that AI is promising to revolutionize. This study will develop a conceptual and theoretical framework to support a research design that can simulate research in understanding how AI can be applied to Cyber Kill Chain phases. This study has reviewed 21 journal and conference articles mostly from IEEE Xplore database. An overview of the application of artificial intelligence (AI) in cybersecurity, particularly within the framework of the Cyber Kill Chain was provided in this study. It also emphasizes the limitations of traditional security approaches and the necessity for innovative and intelligent defense methodologies. The results of reviewing the relevant literatures discovered that the key components of cybersecurity, includes identity, asset management, automated configuration management, security control validation, governance, risk assessment, and vulnerability identification. A theoretical framework was developed which introduces the Cyber Kill Chain model with a Unified Kill Chain model to address its shortcomings. Application of AI in cybersecurity offers an optimistic solutions to address the evolving threat landscape. AI techniques, such as machine learning, anomaly detection, and behavioural analysis, have shown great potential in enhancing various aspects of cybersecurity. However, challenges related to data quality, adversarial attacks, and privacy concerns need to be addressed for successful implementation. Further research and development are crucial to fully harness the power of AI in cybersecurity and stay ahead of evolving cyber threats.

Chinenye Cordelia Nnamani

DOI: https://doi.org/10.58578/ijemt.v2i3.3904

2024-10-05

Abstract:This Article thoroughly examines the revolutionary impact of Artificial Intelligence (AI) on improving threat detection and response tactics within the swiftly changing realm of cybersecurity. Conventional security measures, struggling against the complexity of contemporary cyber threats, fail to provide adequate protection. In response, AI, driven by machine learning algorithms and predictive analytics, becomes a dynamic and adaptive entity strengthening digital defenses. The investigation commences with a comprehensive analysis of the methods by which AI enhances danger detection. Behavioral analytics utilizes AI to assess user behaviors and network activity, creating a proactive baseline, while anomaly detection and predictive analysis harness machine learning to recognize deviations from the norm and forecast potential dangers. This comprehensive strategy enables organizations to remain proactive against emerging cyber threats. Moreover, the study explores the crucial function of AI in incident response. AI-driven automated incident analysis expedites reaction times by rapidly analyzing and prioritizing security warnings. The amalgamation of AI with threat intelligence streams guarantees a perpetually updated knowledge repository, enabling organizations to respond adeptly to emerging dangers. The dynamic flexibility of AI allows systems to evolve and learn from each incidence, hence enhancing their defensive capacities over time. The discourse recognizes the significant advantages of AI in cybersecurity while simultaneously addressing the obstacles associated with its application. False positives, a potential drawback, require a measured approach to prevent the perception of typical action as harmful. Ethical factors, including privacy concerns and responsible AI practices, highlight the necessity for a judicious and principled incorporation of AI in cybersecurity. The paper underscores the essential collaborative synergy between human expertise and AI technologies. The essay emphasizes the importance of continuous investment in AI training programs for cybersecurity professionals, acknowledging that AI is best successful when enhanced by human insights. Additionally, it advocates for routine security audits to assess and refine cybersecurity protocols, collaborative research efforts to tackle ethical issues, and user education activities to strengthen collective defenses. As the digital landscape evolves, the incorporation of AI in cybersecurity seems not as a cure-all but as a formidable ally. This partnership guarantees a robust protection against increasingly complex cyber-attacks, reinforcing the basis for a secure digital future.

Masike Malatji

DOI: https://doi.org/10.1109/ICDATE58146.2023.10248780

2023-07-14

Abstract:In recent years, the use of artificial intelligence (AI) has become increasingly prevalent in various industries, including cybersecurity. However, the same capabilities that make AI effective in protecting systems can also be used by attackers to launch sophisticated and complex cyberattacks. In this paper, the author conducted a systematic literature review to identify recent AI-driven cyberattacks and their characteristics, which could be used by cybersecurity experts to develop effective countermeasures. Preliminary findings indicate that some of the AI-driven attack types include data manipulation attacks (e.g. AI model data misclassification), access and penetration attacks (e.g. automated payload generation), and social engineering attacks (e.g. custom-made phishing). The paper also provides recommendations for policymakers, researchers, and practitioners to promote cybersecurity best practices, educate the public, and encourage international cooperation. Future research could delve deeper into the technical aspects of AI-driven cyberthreats and the strategies and techniques utilised to combat them. Overall, this paper emphasises the growing concern over offensive AI and adversarial AI and the need for continuous research and innovation to combat these evolving smart threats.

Computer Science

Ramanpreet Kaur,Dušan Gabrijelčič,Tomaž Klobučar

DOI: https://doi.org/10.1016/j.inffus.2023.101804

IF: 18.6

2023-04-09

Information Fusion

Abstract:Artificial intelligence (AI) is a powerful technology that helps cybersecurity teams automate repetitive tasks, accelerate threat detection and response, and improve the accuracy of their actions to strengthen the security posture against various security issues and cyberattacks. This article presents a systematic literature review and a detailed analysis of AI use cases for cybersecurity provisioning. The review resulted in 2395 studies, of which 236 were identified as primary. This article classifies the identified AI use cases based on a NIST cybersecurity framework using a thematic analysis approach. This classification framework will provide readers with a comprehensive overview of the potential of AI to improve cybersecurity in different contexts. The review also identifies future research opportunities in emerging cybersecurity application areas, advanced AI methods, data representation, and the development of new infrastructures for the successful adoption of AI-based cybersecurity in today's era of digital transformation and polycrisis.

computer science, artificial intelligence, theory & methods

Lampis Alevizos,Martijn Dekker

DOI: https://doi.org/10.3390/electronics13112021

IF: 2.9

2024-05-23

Electronics

Abstract:Cyber threats continue to evolve in complexity, thereby traditional cyber threat intelligence (CTI) methods struggle to keep pace. AI offers a potential solution, automating and enhancing various tasks, from data ingestion to resilience verification. This paper explores the potential of integrating artificial intelligence (AI) into CTI. We provide a blueprint of an AI-enhanced CTI processing pipeline and detail its components and functionalities. The pipeline highlights the collaboration between AI and human expertise, which is necessary to produce timely and high-fidelity cyber threat intelligence. We also explore the automated generation of mitigation recommendations, harnessing AI's capabilities to provide real-time, contextual, and predictive insights. However, the integration of AI into CTI is not without its challenges. Thereby, we discuss the ethical dilemmas, potential biases, and the imperative for transparency in AI-driven decisions. We address the need for data privacy, consent mechanisms, and the potential misuse of technology. Moreover, we highlight the importance of addressing biases both during CTI analysis and within AI models, warranting their transparency and interpretability. Lastly, our work points out future research directions, such as the exploration of advanced AI models to augment cyber defenses, and human–AI collaboration optimization. Ultimately, the fusion of AI with CTI appears to hold significant potential in the cybersecurity domain.

engineering, electrical & electronic,computer science, information systems,physics, applied

Dimitar Stevo Bogatinov,Mitko Bogdanoski,Slavko Angelevski

DOI: https://doi.org/10.4018/978-1-4666-8793-6.ch011

2016-01-01

Abstract:The growing network attacks and intrusions have put the government organizations at a great risk. In cyberspace, humans have great limitations in data analyze and cyber defense because of the amount of data they have to process and the limited response time. Considering these parameters one of the best solutions is when the cyber defense mechanisms are AI (Artificial intelligence)-based because they can easily determine and respond to the attacks that are underway. The responses can be easily managed using man in the loop or fully atomized techniques. This chapter gives brief review of the usage of artificial intelligence in support of cyber defense, explains some useful applications that already exist, emphasizing the neural nets, expert systems and intelligent agents in cyber defense. Furthermore the chapter will propose a technical AI-based cyber defense model which can support the governmental and non-governmental efforts against cyber threats and can improve the success against malicious attack in the cyberspace.

Leroy Jacob Valencia

2024-05-10

Abstract:In the vast domain of cybersecurity, the transition from reactive defense to offensive has become critical in protecting digital infrastructures. This paper explores the integration of Artificial Intelligence (AI) into offensive cybersecurity, particularly through the development of an autonomous AI agent, ReaperAI, designed to simulate and execute cyberattacks. Leveraging the capabilities of Large Language Models (LLMs) such as GPT-4, ReaperAI demonstrates the potential to identify, exploit, and analyze security vulnerabilities autonomously. This research outlines the core methodologies that can be utilized to increase consistency and performance, including task-driven penetration testing frameworks, AI-driven command generation, and advanced prompting techniques. The AI agent operates within a structured environment using Python, enhanced by Retrieval Augmented Generation (RAG) for contextual understanding and memory retention. ReaperAI was tested on platforms including, Hack The Box, where it successfully exploited known vulnerabilities, demonstrating its potential power. However, the deployment of AI in offensive security presents significant ethical and operational challenges. The agent's development process revealed complexities in command execution, error handling, and maintaining ethical constraints, highlighting areas for future enhancement. This study contributes to the discussion on AI's role in cybersecurity by showcasing how AI can augment offensive security strategies. It also proposes future research directions, including the refinement of AI interactions with cybersecurity tools, enhancement of learning mechanisms, and the discussion of ethical guidelines for AI in offensive roles. The findings advocate for a unique approach to AI implementation in cybersecurity, emphasizing innovation.

Cryptography and Security,Artificial Intelligence

Ricardo Morla

DOI: https://doi.org/10.48550/arXiv.1912.06817

2019-12-14

Cryptography and Security

Abstract:With the turmoil in cybersecurity and the mind-blowing advances in AI, it is only natural that cybersecurity practitioners consider further employing learning techniques to help secure their organizations and improve the efficiency of their security operation centers. But with great fears come great opportunities for both the good and the evil, and a myriad of bad deals. This paper discusses ten issues in cybersecurity that hopefully will make it easier for practitioners to ask detailed questions about what they want from an AI system in their cybersecurity operations. We draw on the state of the art to provide factual arguments for a discussion on well-established AI in cybersecurity issues, including the current scope of AI and its application to cybersecurity, the impact of privacy concerns on the cybersecurity data that can be collected and shared externally to the organization, how an AI decision can be explained to the person running the operations center, and the implications of the adversarial nature of cybersecurity in the learning techniques. We then discuss the use of AI by attackers on a level playing field including several issues in an AI battlefield, and an AI perspective on the old cat-and-mouse game including how the adversary may assess your AI power.

Mosa Sankaram,,Ms Roopesh,Sasank Rasetti,Nourin Nishat,,

DOI: https://doi.org/10.62304/jbedpm.v3i05.180

2024-07-10

Abstract:This literature review explores the transformative impact of artificial intelligence (AI) on enhancing cybersecurity measures across various domains. The study systematically examines the integration of AI in Intrusion Detection Systems (IDS), malware detection, phishing detection, threat intelligence, network security, and endpoint protection. Key findings reveal that AI-driven techniques significantly outperform traditional methods, particularly in real-time threat detection, accuracy, and adaptive response capabilities. Network-based IDS benefit from supervised and unsupervised learning algorithms, improving the identification of malicious network traffic and novel attack patterns. In malware detection, AI-enhanced static and dynamic analysis methods surpass signature-based approaches by detecting previously unknown malware and complex behaviors. Phishing detection has seen substantial improvements with AI applications in email filtering and URL analysis, reducing phishing incidents despite challenges like false positives. AI's role in threat intelligence is critical, automating data analysis to uncover hidden threats and employing predictive analytics to anticipate and mitigate cyber attacks. AI techniques in network security and endpoint protection enhance real-time monitoring and authentication processes, providing robust defenses against cyber intrusions. Despite these advancements, challenges such as handling high data volumes and the need for continuous learning to adapt to emerging threats remain. This review underscores the significant advancements, practical implementations, and ongoing challenges of leveraging AI in cybersecurity, highlighting its potential to fortify digital defenses and address the complexities of contemporary cyber threats.

Ensar Şeker

DOI: https://doi.org/10.48550/arXiv.1905.12556

IF: 14.4

2019-05-24

Artificial Intelligence

Abstract:Nowadays, considering the speed of the processes and the amount of data used in cyber defense, it cannot be expected to have an effective defense by using only human power without the help of automation systems. However, for the effective defense against dynamically evolving attacks on networks, it is difficult to develop software with conventional fixed algorithms. This can be achieved by using artificial intelligence methods that provide flexibility and learning capability. The likelihood of developing cyber defense capabilities through increased intelligence of defense systems is quite high. Given the problems associated with cyber defense in real life, it is clear that many cyber defense problems can be successfully solved only when artificial intelligence methods are used. In this article, the current artificial intelligence practices and techniques are reviewed and the use and importance of artificial intelligence in cyber defense systems is mentioned. The aim of this article is to be able to explain the use of these methods in the field of cyber defense with current examples by considering and analyzing the artificial intelligence technologies and methodologies that are currently being developed and integrating them with the role and adaptation of the technology and methodology in the defense of cyberspace.

Zhimin Zhang,Huansheng Ning,Feifei Shi,Fadi Farha,Yang Xu,Jiabo Xu,Fan Zhang,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1007/s10462-021-09976-0

IF: 9.588

2021-03-13

Artificial Intelligence Review

Abstract:In recent times, there have been attempts to leverage artificial intelligence (AI) techniques in a broad range of cyber security applications. Therefore, this paper surveys the existing literature (comprising 54 papers mainly published between 2016 and 2020) on the applications of AI in user access authentication, network situation awareness, dangerous behavior monitoring, and abnormal traffic identification. This paper also identifies a number of limitations and challenges, and based on the findings, a conceptual human-in-the-loop intelligence cyber security model is presented.

computer science, artificial intelligence

Valentine A. Onih,Yufenyuy S. Sevidzem,Sulaimon Adeniji

DOI: https://doi.org/10.37502/ijsmr.2024.7404

2024-01-01

International Journal of Scientific and Management Research

Abstract:Introduction: Considering growing cyber risks, this study aims to investigate how artificial intelligence (AI) can enhance threat detection and response rates, thereby enhancing cybersecurity systems. It specifically focuses on addressing the urgent requirement for enhanced defence strategies. Methodology: The research utilised a quantitative approach to analyse data gathered from cybersecurity professionals. Surveys are carried out to assess how well AI technologies work in ensuring safety, the challenges faced, and their practical use in various industries. Discussion: The findings show that artificial intelligence, specifically utilizing machine learning and deep learning, significantly improves the capability to detect and mitigate potential risks. Despite this, there are major challenges including high implementation costs, lack of skilled employees, and concerns about data security that act as significant barriers. The study also highlights the broad consensus on the transformative power of AI in revolutionizing cybersecurity, despite the existence of these challenges. Conclusion: It has become obvious that AI technologies have the capability to improve cybersecurity practices through improved identification and response to cyberattacks. However, to make this work, allocating strategic resources for AI infrastructure development, providing extensive training for professionals, and thoroughly assessing ethical implications are crucial.

Adebunmi Okechukwu Adewusi,Ugochukwu Ikechukwu Okoli,Temidayo Olorunsogo,Ejuma Adaga,Donald Obinna Daraojimba,Ogugua Chimezie Obi

DOI: https://doi.org/10.30574/wjarr.2024.21.1.0313

2024-01-30

World Journal of Advanced Research and Reviews

Abstract:Artificial Intelligence (AI) has emerged as a transformative force in the field of cybersecurity, playing a pivotal role in safeguarding national infrastructure. This review focuses on the application of AI technologies within the context of the United States, examining their efficacy in fortifying critical systems against evolving cyber threats. The paper delves into various AI-driven cybersecurity strategies, ranging from anomaly detection and predictive analysis to threat intelligence and automated response mechanisms. The integration of AI in cybersecurity not only enhances the speed and accuracy of threat detection but also addresses the dynamic nature of cyber threats. The specific AI technologies employed in the United States, including machine learning, natural language processing, and neural networks, highlighting their contributions to bolstering the resilience of national infrastructure are also examined. Furthermore, the challenges and ethical considerations associated with the widespread adoption of AI in cybersecurity are assessed. It discusses the need for robust regulatory frameworks to govern the deployment of AI in sensitive domains and emphasizes the importance of collaboration between government agencies, private enterprises, and research institutions to foster innovation and address emerging threats. In conclusion, this review provides a comprehensive analysis of the role of AI in cybersecurity within the United States, emphasizing its significance in protecting critical national infrastructure. By exploring technological advancements, challenges, and ethical considerations, this paper contributes to the ongoing discourse on leveraging AI to safeguard against the ever-evolving landscape of cyber threats.

Gourav Nagar

DOI: https://doi.org/10.18535/ijsrm/v6i7.ec05

2018-07-28

Abstract:It is now clear that as new cyberthreats emerge, old security measures are less successful in thwarting increasingly sophisticated cyberattacks. One of the most significant and influential technologies of the last few years, artificial intelligence (AI) is a game-changer for security operations because it can automate critical processes, maintain real-time threat recognition, and respond with equal speed and efficiency. Based on the automation of threats, vulnerabilities, and events, this abstract analyzes the use of AI in security. It looks at specific AI use cases, such as automated patch management, UEBA, and machine learning-based anomalous activity detection, and explains how the technologies greatly increase the speed and accuracy of thwarting cyberthreats. As a tool, AI offers massive advantages: it helps minimize human effort, act faster, and scale easily but is not without risks inherent to operating on the internet. Namely, some responsibilities involve inputting relevant context, making ethical decisions, and interpreting what AI systems have to offer to human operators will always be needed.This abstract also explores the further discussion of the integration of AI security processing capabilities and experienced security personnel so that both facets are achieved efficiently and rightfully ethically. Finally, the abstract concludes that the key to the future advancement of cybersecurity is the ability to find the best conditions for the collaboration of artificial intelligence and human thought, to strengthen the security of organizations and reduce the consequences of plan implementation.

Petar Radanliev,David De Roure,Rob Walton,Max Van Kleek,Rafael Mantilla Montalvo,La’Treall Maddox,Omar Santos,Peter Burnap,Eirini Anthi

DOI: https://doi.org/10.1007/s42452-020-03559-4

2020-10-06

SN Applied Sciences

Abstract:Abstract We explore the potential and practical challenges in the use of artificial intelligence (AI) in cyber risk analytics, for improving organisational resilience and understanding cyber risk. The research is focused on identifying the role of AI in connected devices such as Internet of Things (IoT) devices. Through literature review, we identify wide ranging and creative methodologies for cyber analytics and explore the risks of deliberately influencing or disrupting behaviours to socio-technical systems. This resulted in the modelling of the connections and interdependencies between a system's edge components to both external and internal services and systems. We focus on proposals for models, infrastructures and frameworks of IoT systems found in both business reports and technical papers. We analyse this juxtaposition of related systems and technologies, in academic and industry papers published in the past 10 years. Then, we report the results of a qualitative empirical study that correlates the academic literature with key technological advances in connected devices. The work is based on grouping future and present techniques and presenting the results through a new conceptual framework. With the application of social science's grounded theory, the framework details a new process for a prototype of AI-enabled dynamic cyber risk analytics at the edge.

Mohammed Rizvi

DOI: https://doi.org/10.22161/ijaers.105.8

2023-01-01

International Journal of Advanced Engineering Research and Science

Abstract:Due to its ability to evaluate security threats in real-time and take appropriate action, artificial intelligence has emerged as a key component of cyber security. AI now has a bigger impact on spotting and stopping attacks that keep businesses on the cutting edge. Threat detection and prevention are the main focus of AI's role in cybersecurity. Artificial intelligence can detect trends and anomalies in network traffic and user behavior that may indicate a potential cyberattack through the use of machine learning algorithms and advanced data analysis. This allows security personnel to respond to potential attacks quickly and proactively. Through predictive modeling, AI can be used to prevent attacks. AI also can recognize potential threats before they occur and take action to avoid them by assessing past attacks and detecting similarities. Creating automated incident response systems is another important function of artificial intelligence in cybersecurity. These systems can evaluate data, identify potential risks, and then work to contain or mitigate the attack, minimizing damage and disruption. Businesses must employ artificial intelligence in cybersecurity to protect their networks and sensitive data from ever changing online threats. Because of its ability to analyze vast volumes of data in real time and automate incident response, AI is swiftly becoming into a key tool for efficient cybersecurity in today's digital environment. In this paper, we will discuss the role of AI in cybersecurity including its uses in threat detection and prevention.

Shivam,Yash Yadav,Vimmi Malhotra

DOI: https://doi.org/10.48175/ijarsct-17251

2024-04-14

Abstract:Today day to day there is an increase in cyber threat agents who are continuously coming with strategies which will help them evade the usual defences and end up obtaining or compromising vital information. AI use in monitoring tools by now can count among crucial techniques that help business entities to prevent these dangers. The propelled novel algorithms have replaced ‘human-in-the-loop’ method performing actions to assess security threats making the mechanisms much better. Such a piece dives into the area of AI robots that are utilized in threat intelligence, in order for machines to quickly discover all loop holes that attackers could use to break into a network. The application of Artificial Intelligence by businesses can in advance of the attacks, rather than as a response after the event, thwart them by the use of algorithms and predictive analytics to spot patterns of anomalies or suspicious activities. AI-powered models covering neural-network based threat identification to natural language processing belong to the spectrum of solutions implementing machine learning trained on datasets and cutting-edge algorithms. AI-based threat intelligence was presented to public as in line with practical coverage and real life issues and especially through examples. This technical issue might solve the inefficiency of identifying threats soon and thus increase their accuracy once again, in fact, it will use immediate reaction well too, like it used to. An exploration of computer ethics will touch on the topics of cyber security and data handling among others. As for their practical aspects, they have to be derived from moral righteousness founded on inner values. On the other hand, utilizing AI in threat intelligence processes calls for training of skilled workforce who will, in the long run, be able to face not only today’s cyber threats but also the future ones. In the past ten years reacting was the major issue in analysing cyber intelligence. Through the use of machine learning, enterprises across cyberspace can foresee probabilities of the most burdensome situations for them. Thus, making friendly organizations is the work of great threat intelligence in the 21st century

Zarif Bin Akhtar,Ahmed Tajbiul Rawol

DOI: https://doi.org/10.59400/cai.v2i2.1485

2024-10-25

Abstract:The integration of artificial intelligence (AI) into cybersecurity has brought about transformative advancements in threat detection and mitigation, yet it also introduces new vulnerabilities and potential threats. This research exploration systematically investigates the critical issues surrounding AI within cybersecurity, focusing on specific vulnerabilities and the potential for AI systems to be exploited by malicious actors. The research aims to address these challenges by swotting and analyzing existing methodologies designed to mitigate such risks. Through a detailed exploration of modern scientific research, this manuscript identifies the dual-edged impact of AI on cybersecurity, emphasizing both the opportunities and the dangers. The findings highlight the need for strategic solutions that not only enhance digital security and user privacy but also address the ethical and regulatory aspects of AI in cybersecurity. Key contributions include a comprehensive analysis of emerging trends, challenges, and the development of AI-driven cybersecurity frameworks. The research also provides actionable recommendations for the future development of robust, reliable, and secure AI-based systems, bridging current knowledge gaps and offering valuable insights for academia and industry alike.