An Enhanced Classification Model for Likelihood of Zero-Day Attack Detection and Estimation

Emmah, Victor T.; Ugwu, Chidiebere; Onyejegbu, L N

doi:10.24018/ejece.2021.5.4.350

Cited by 1 publication

(1 citation statement)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This attack cannot be discovered until it happens, that is the most dreaded part of it. One best way to prevent this kind of cyber-attack is to purchase software products that have passed through series of tests and confirmations from trusted software and programmers should ensure every loophole is sealed in order to avoid attackers from exploiting any vulnerable loophole in an application [9]. People who have cloud storage and use applications or API to read and process data should ensure there is maximum testing for those cloud applications.…”

Section: Introductionmentioning

confidence: 99%

Securing Against Zero-Day Attacks: A Machine Learning Approach for Classification and Organizations’ Perception of its Impact

Ekong,

Etuk,

Inyang

et al. 2023

J. Inf. Syst. Informatics

View full text Add to dashboard Cite

Zero-day malware is a type of malware that exploits system vulnerabilities before it is detected and sealed. This type of malware is a significant threat to enterprise cybersecurity and has tremendous impact on organizations’ performance, as it can spread widely before organizations can clamp down on the threat. Unfortunately, exploit developers can attack system’s vulnerabilities at a pace that is faster than defensive patches. In this research, classification of zero-day attack was carried out. Exploratory Data Analysis (EDA) on malware zero data was conducted. Then feature selection was carried out using Principal Component Analysis (PCA) for the selection of the most important features in the dataset after which a Random Forest (RF) Algorithm was adopted for the classification of zero-day attack. The impact of such attacks was also analyzed, and results were evaluated using confusion matrix and an accuracy of 95% in the classification of zero-day attack with a class error of 3.8% was obtained. A survey of the perception of the potential impacts of these attacks on organization was also carried out. These results indicate efficiency of machine learning algorithm in the classification of attacks as zero-day malware attacks or not. The research also offered pragmatic insights into the perception by organizations of its potential negative impacts and their eagerness to embrace and prioritize proffered cyber security solution(s) to avoid such attacks in order to avert undesirable consequences.

show abstract

Section: Introductionmentioning

confidence: 99%