Advanced Persistent Threat Identification with Boosting and Explainable AI

Hasan, Md. Mahadi; Islam, Muhammad Usama; Uddin, Jasim

doi:10.1007/s42979-023-01744-x

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2023

2024

Publication Types

Select...

Article4

Book1

Relationship

Self Cite0

Independent5

Authors

Journals

Cited by 9 publications

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

From Fine-Grained to Refined: APT Malware Knowledge Graph Construction and Attribution Analysis Driven by Multi-stage Graph Computation

Jing,

Jiang,

Wang

et al. 2024

Lecture Notes in Computer Science

View full text Add to dashboard Cite

From Fine-Grained to Refined: APT Malware Knowledge Graph Construction and Attribution Analysis Driven by Multi-stage Graph Computation

Jing,

Jiang,

Wang

et al. 2024

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Explainable deep learning approach for advanced persistent threats (APTs) detection in cybersecurity: a review

Mutalib,

Sabri,

Wahab

et al. 2024

Artif Intell Rev

View full text Add to dashboard Cite

In recent years, Advanced Persistent Threat (APT) attacks on network systems have increased through sophisticated fraud tactics. Traditional Intrusion Detection Systems (IDSs) suffer from low detection accuracy, high false-positive rates, and difficulty identifying unknown attacks such as remote-to-local (R2L) and user-to-root (U2R) attacks. This paper addresses these challenges by providing a foundational discussion of APTs and the limitations of existing detection methods. It then pivots to explore the novel integration of deep learning techniques and Explainable Artificial Intelligence (XAI) to improve APT detection. This paper aims to fill the gaps in the current research by providing a thorough analysis of how XAI methods, such as Shapley Additive Explanations (SHAP) and Local Interpretable Model-agnostic Explanations (LIME), can make black-box models more transparent and interpretable. The objective is to demonstrate the necessity of explainability in APT detection and propose solutions that enhance the trustworthiness and effectiveness of these models. It offers a critical analysis of existing approaches, highlights their strengths and limitations, and identifies open issues that require further research. This paper also suggests future research directions to combat evolving threats, paving the way for more effective and reliable cybersecurity solutions. Overall, this paper emphasizes the importance of explainability in enhancing the performance and trustworthiness of cybersecurity systems.

show abstract

An efficient eavesdropping model for detection of advanced persistent threat (APT) in high volume network traffic

Veena,

Brahmananda

2023

Multimed Tools Appl

View full text Add to dashboard Cite

Advanced Persistent Threat Identification with Boosting and Explainable AI

Cited by 9 publications

References 33 publications

From Fine-Grained to Refined: APT Malware Knowledge Graph Construction and Attribution Analysis Driven by Multi-stage Graph Computation

From Fine-Grained to Refined: APT Malware Knowledge Graph Construction and Attribution Analysis Driven by Multi-stage Graph Computation

Explainable deep learning approach for advanced persistent threats (APTs) detection in cybersecurity: a review

An efficient eavesdropping model for detection of advanced persistent threat (APT) in high volume network traffic

Contact Info

Product

Resources

About