A survey on artificial intelligence techniques for security event correlation: models, challenges, and opportunities

Gaifulina, Diana; Kotenko, Igor

doi:10.1007/s10462-022-10381-4

Cited by 15 publications

(8 citation statements)

References 131 publications

(164 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Currently, the studies on APT attack detection are relatively developed and have many different approaches [4][5][6][7]. However, the most popular and effective approach is still to combine techniques analyzing abnormal behaviors on network traffic datasets, and machine learning or deep learning algorithms [8][9][10][11]. According to the Network Traffic-based APT attack detection approach, previous studies often focused on two main solutions: i) Analyzing Network Traffic into different components such as DNS log [12,13], HTTP log [14], TLS log, etc., and then trying to detect abnormal behaviors of APT attack on each of these components [5,6], or building the behavior profile of each APT IP based on the correlation between the above components [15][16][17][18][19][20][21][22]; ii) Analyzing Network Traffic into flow or NetFlow and then extracting abnormal behaviors of APT attack.…”

Section: Attack Apt: Challenges and Solutionsmentioning

confidence: 99%

A novel approach for APT attack detection based on feature intelligent extraction and representation learning

Do Xuan,

Cuong

2024

PLoS ONE

View full text Add to dashboard Cite

Advanced Persistent Threat (APT) attacks are causing a lot of damage to critical organizations and institutions. Therefore, early detection and warning of APT attack campaigns are very necessary today. In this paper, we propose a new approach for APT attack detection based on the combination of Feature Intelligent Extraction (FIE) and Representation Learning (RL) techniques. In particular, the proposed FIE technique is a combination of the Bidirectional Long Short-Term Memory (BiLSTM) deep learning network and the Attention network. The FIE combined model has the function of aggregating and extracting unusual behaviors of APT IPs in network traffic. The RL method proposed in this study aims to optimize classifying APT IPs and normal IPs based on two main techniques: rebalancing data and contrastive learning. Specifically, the rebalancing data method supports the training process by rebalancing the experimental dataset. And the contrastive learning method learns APT IP’s important features based on finding and pulling similar features together as well as pushing contrasting data points away. The combination of FIE and RL (abbreviated as the FIERL model) is a novel proposal and innovation and has not been proposed and published by any research. The experimental results in the paper have proved that the proposed method in the paper is correct and reasonable when it has shown superior efficiency compared to some other studies and approaches over 5% on all measurements.

show abstract

Section: Attack Apt: Challenges and Solutionsmentioning

confidence: 99%

A novel approach for APT attack detection based on feature intelligent extraction and representation learning

Do Xuan,

Cuong

2024

PLoS ONE

View full text Add to dashboard Cite

show abstract

“…The growth of AI has been impressive. Attempts to advance AI technologies over the past 50-65 years have emerged in several incredible innovations and developments (Arbib, 2002;Baldi, 2021;Cybenko, 1989;Deng et al, 2013;Dignum, 2019;Frey et al, 1995;Fukushima, 1980;Groumpos, 2016;Hawkins, 2019;Heykin, 2009;Hubel & Wiesel, 1959;Ivakhnenko, 1971;Levshun & Kotenko, 2023;Mendez et al, 2022;O'Reilly et al, 2021;Schmidhuber, 2015;McCulloch & Pitts, 1943;Roberts et al, 2022;Schmidhuber & Prelinger, 1993;Russel & Norvig, 2020;Shrager & Johnson, 1995). To comprehend better the several challenging issues of AI, we need to understand well the four basic AI concepts: (1) ML, (2) NNs, (3) DL, and (4) EI as follows.…”

Section: Basic Of Aimentioning

confidence: 99%

“…Other related technologies such as ML, NNs, DL, EI, and big data-driven algorithms are following suit. These technologies have numerous widely beneficial applications (Arbib, 2002;Baldi, 2021;Ball et al, 2017;Bengio, 2009;Bierly et al, 2000;Cybenko, 1989;Deng et al, 2013;Dignum, 2019;Frey et al, 1995;Fukushima, 1980;Groumpos, 2016;Hawkins, 2019;Heykin, 2009;Hochreiter & Schmidhuber, 1997;Hubel & Wiesel, 1959;Ivakhnenko, 1971;Levshun & Kotenko, 2023;Marcus, 2012;Marwala, 2015;McCulloch & Pitts, 1943;Mendez et al, 2022;Murphy, 2012;O'Reilly et al, 2021;Roberts et al, 2022;Russel & Norvig, 2020;Schmidhuber & Prelinger, 1993;Schmidhuber, 2015;Shrager & Johnson, 1995;Utgoff & Stracuzzi, 2002;Weng et al, 1992;Weng et al, 1997). Historically, less attention has been paid to the malicious uses of AI, which poses a challenge to the AI community.…”

Section: Challenges and Opportunities Of Aimentioning

confidence: 99%

“…deep neural networks (DNNs) (3) convolutional deep neural networks (CDNNs) (4) Deep belief network (DBNs) (5) Recurrent neural networks (RNNs) and (6) long short-term memory (LSTM) More details and full analysis of the six and other DL methods can be found inPhilbeck & Davis (2018);Hinton (2009);Deng & Yu (2014);Hochreiter & Schmidhuber (1997);Murphy (2012);Utgoff & Stracuzzi (2002);Weng et al (1997);Weng et al (1992);Bengio (2009);Bierly et al (2000); Marwala (2015);Levshun & Kotenko (2023);Arbib (2002);Heykin (2009);Roberts et al (2022); Baldi (2021); Russel & Norvig (2020); Dignum (2019); O'Reilly et al (2021); and Ball et al (2017). However, studying them carefully, all are revised old methods of AI including ML and NN!…”

mentioning

confidence: 99%

See 1 more Smart Citation

A Critical Historic Overview of Artificial Intelligence: Issues, Challenges, Opportunities, and Threats

Groumpos¹

2023

AIA

View full text Add to dashboard Cite

Artificial Intelligence (AI) has been considered a revolutionary and world-changing science, although it is still a young field and has a long way to go before it can be established as a viable theory. Every day, new knowledge is created at an unthinkable speed, and the Big Data Driven World is already upon us. AI has developed a wide range of theories and software tools that have shown remarkable success in addressing difficult and challenging societal problems. However, the field also faces many challenges and drawbacks that have led some people to view AI with skepticism. One of the main challenges facing AI is the difference between correlation and causation, which plays an important role in AI studies. Additionally, although the term Cybernetics should be a part of AI, it was ignored for many years in AI studies. To address these issues, the Cybernetic Artificial Intelligence (CAI) field has been proposed and analyzed here for the first time. Despite the optimism and enthusiasm surrounding AI, its future may turn out to be a "catastrophic Winter" for the whole world, depending on who controls its development. The only hope for the survival of the planet lies in the quick development of Cybernetic Artificial Intelligence and the Wise Anthropocentric Revolution. The text proposes specific solutions for achieving these two goals. Furthermore, the importance of differentiating between professional/personal ethics and eternal values is highlighted, and their importance in future AI applications is emphasized for solving challenging societal problems. Ultimately, the future of AI heavily depends on accepting certain ethical values.

show abstract

“…To build intelligent machines more efficiently we should use ourselves as blueprint. Over the last 50-55 years several AI amazing innovations have been developed and significant scientific results [17][18][19][20][21][22].…”

Section: Artificial Intelligence (Ai)mentioning

confidence: 99%

Soft computing algorithms for infrastructure monitoring: preliminary results of PROION project

Nikolakopoulos,

Mpelogianni,

Groumpos

et al. 2023

Ninth International Conference on Remote Sensing and Geoinformation of the Environment (RSCy2023)

View full text Add to dashboard Cite

Structural health monitoring of civil infrastructures is a complex engineering problem that requires the use of advanced soft computing algorithms. The rapid advances in soft computing have been a step forward in the direction of infrastructure monitoring. The field of computer science has given promising results in monitoring systems when applied along with engineering technologies. In this framework, Artificial Intelligence (AI) Deep and Machine Learning applications, Neural Networks, Fuzzy Logic, Fuzzy Cognitive Maps (FCM), Genetics Algorithms and Hybrid systems are growing exponentially in the field of structural health monitoring, including structural recognition, change detection, crack detection, damage identification, damage quantification and damage prediction. Specifically, some of the above-mentioned more sophisticated infrastructure soft computing monitoring algorithms are utilized to generate strategies and processing pipelines towards structural building damage mapping and assessment. In this paper remote sensing data, acquired by Global Navigation Satellite System (GNSS), Synthetic Aperture Radar (SAR), Light Detection and Ranging (LiDAR) and Unmanned Aerial Vehicles (UAV) sensors will be processed and a state-of-theart unified platform imbedding Neural Networks, Fuzzy Cognitive Maps and Hybrid systems in the field of Structural Health Monitoring of civil structures is proposed.

show abstract

A survey on artificial intelligence techniques for security event correlation: models, challenges, and opportunities

Cited by 15 publications

References 131 publications

A novel approach for APT attack detection based on feature intelligent extraction and representation learning

A novel approach for APT attack detection based on feature intelligent extraction and representation learning

A Critical Historic Overview of Artificial Intelligence: Issues, Challenges, Opportunities, and Threats

Soft computing algorithms for infrastructure monitoring: preliminary results of PROION project

Contact Info

Product

Resources

About