A robust intelligent zero-day cyber-attack detection technique

Kumar, Vikash; Sinha, Ditipriya

doi:10.1007/s40747-021-00396-9

Cited by 39 publications

(12 citation statements)

References 49 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A zero-day attack refers to a new network signature for Denial of Service (DOS) or Distributed Denial of Service (DDOS). Kumar et al [ 26 ] stated that zero-day attacks are a comparison between genuine network data to find heavy hitters in attack data. A heavy hitter is to find a new signature responsible for DOS or DDOS in network traffic data.…”

Section: Experimental Results and Analysismentioning

confidence: 99%

Zero-Day Malware Detection and Effective Malware Analysis Using Shapley Ensemble Boosting and Bagging Approach

Kumar

Geetha

2022

Sensors

View full text Add to dashboard Cite

Software products from all vendors have vulnerabilities that can cause a security concern. Malware is used as a prime exploitation tool to exploit these vulnerabilities. Machine learning (ML) methods are efficient in detecting malware and are state-of-art. The effectiveness of ML models can be augmented by reducing false negatives and false positives. In this paper, the performance of bagging and boosting machine learning models is enhanced by reducing misclassification. Shapley values of features are a true representation of the amount of contribution of features and help detect top features for any prediction by the ML model. Shapley values are transformed to probability scale to correlate with a prediction value of ML model and to detect top features for any prediction by a trained ML model. The trend of top features derived from false negative and false positive predictions by a trained ML model can be used for making inductive rules. In this work, the best performing ML model in bagging and boosting is determined by the accuracy and confusion matrix on three malware datasets from three different periods. The best performing ML model is used to make effective inductive rules using waterfall plots based on the probability scale of features. This work helps improve cyber security scenarios by effective detection of false-negative zero-day malware.

show abstract

Section: Experimental Results and Analysismentioning

confidence: 99%

Zero-Day Malware Detection and Effective Malware Analysis Using Shapley Ensemble Boosting and Bagging Approach

Kumar

Geetha

2022

Sensors

View full text Add to dashboard Cite

show abstract

“…that security systems have no awareness of existing. The current approach [24,6,12] for detecting these attacks requires consistently analyzing incoming traffic using a plethora of models and artificial intelligence techniques that are designed to detect any anomalies or suspicious activity not present in any up-to-date attack-signature databases.…”

Section: Chapter 2 Related Workmentioning

confidence: 99%

“…Kumar et al [24] proposes a framework to detect unknown cyber-attacks by introducing a robust intelligent, novel approach following a multi-phase approach to distinguish attacks of both high volumes (HVA), e.g. DoS and DDos, and low volumes (LVA), e.g.…”

Section: Chapter 2 Related Workmentioning

confidence: 99%

Soteria: An Approach for Detecting Multi-Institution Attacks

Zabarah

Naman

Salahuddin

et al. 2023

2023 26th Conference on Innovation in Clouds, Internet and Networks and Workshops (ICIN)

View full text Add to dashboard Cite

Please read the Statement of Contributions for details. This is a true copy of the thesis, including any required final revisions, as accepted by my examiners.I understand that my thesis may be made electronically available to the public. Statement of ContributionsThe results of this work are descirbed in a paper that is under review at the 26 th Conference on Innovation in Clouds, Internet and Networks. I am the first author of this work and it was done in collaboration with Omar Naman under the supervision of Prof. Raouf Boutaba and Prof. Samer Al-Kiswany. Omar helped with surveying related work and writing the related work chapter.

show abstract

“…In 2021 Kumar and Sinha [104], suggested a novel robust intelligent cyber-attack detection method. The ML and DNN approach are used to defend against anomaly attacks, which are zero-day attacks that target unknown vulnerabilities in systems.…”

Section: Literature Reviewmentioning

confidence: 99%

Cyber security: performance analysis and challenges for cyber attacks detection

Salih

Abdulrazzaq

2023

IJEECS

View full text Add to dashboard Cite

Nowadays, with the occurrence of new attacks and raised challenges have been facing the security of computer systems. Cyber security techniques have become essential for information technology services to detect and react against cyber-attacks. The strategy of cyber security enables visibility of various types of attacks and vulnerabilities throughout computer networks, whilst also provides detecting cyber-attacks and effective ways of identifying and preventing them. This study mainly focuses on the performance analysis and challenges faced by cyber security using the latest techniques. It also provides a review of the attack detection process including the robust effectiveness of intelligent techniques. Finally, summarize and discuss some methods to increase attack detection performance utilizing deep learning (DL) architectures.

show abstract

A robust intelligent zero-day cyber-attack detection technique

Cited by 39 publications

References 49 publications

Zero-Day Malware Detection and Effective Malware Analysis Using Shapley Ensemble Boosting and Bagging Approach

Zero-Day Malware Detection and Effective Malware Analysis Using Shapley Ensemble Boosting and Bagging Approach

Soteria: An Approach for Detecting Multi-Institution Attacks

Cyber security: performance analysis and challenges for cyber attacks detection

Contact Info

Product

Resources

About