IDEAS home Printed from https://ideas.repec.org/a/gam/jmathe/v11y2023i16p3448-d1213248.html
   My bibliography  Save this article

Threat Hunting System for Protecting Critical Infrastructures Using a Machine Learning Approach

Author

Listed:
  • Mario Aragonés Lozano

    (Communications Department, Universitat Politècnica de València, 46022 Valencia, Spain)

  • Israel Pérez Llopis

    (Communications Department, Universitat Politècnica de València, 46022 Valencia, Spain)

  • Manuel Esteve Domingo

    (Communications Department, Universitat Politècnica de València, 46022 Valencia, Spain)

Abstract

Cyberattacks are increasing in number and diversity in nature daily, and the tendency for them is to escalate dramatically in the forseeable future, with critical infrastructures (CI) assets and networks not being an exception to this trend. As time goes by, cyberattacks are more complex than before and unknown until they spawn, being very difficult to detect and remediate. To be reactive against those cyberattacks, usually defined as zero-day attacks, cyber-security specialists known as threat hunters must be in organizations’ security departments. All the data generated by the organization’s users must be processed by those threat hunters (which are mainly benign and repetitive and follow predictable patterns) in short periods to detect unusual behaviors. The application of artificial intelligence, specifically machine learning (ML) techniques (for instance NLP, C-RNN-GAN, or GNN), can remarkably impact the real-time analysis of those data and help to discriminate between harmless data and malicious data, but not every technique is helpful in every circumstance; as a consequence, those specialists must know which techniques fit the best at every specific moment. The main goal of the present work is to design a distributed and scalable system for threat hunting based on ML, and with a special focus on critical infrastructure needs and characteristics.

Suggested Citation

  • Mario Aragonés Lozano & Israel Pérez Llopis & Manuel Esteve Domingo, 2023. "Threat Hunting System for Protecting Critical Infrastructures Using a Machine Learning Approach," Mathematics, MDPI, vol. 11(16), pages 1-18, August.
    • Handle: RePEc:gam:jmathe:v:11:y:2023:i:16:p:3448-:d:1213248
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/2227-7390/11/16/3448/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/2227-7390/11/16/3448/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Zhixuan Xu & Minghui Qian, 2023. "Predicting Popularity of Viral Content in Social Media through a Temporal-Spatial Cascade Convolutional Learning Framework," Mathematics, MDPI, vol. 11(14), pages 1-29, July.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.

      Corrections

      All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jmathe:v:11:y:2023:i:16:p:3448-:d:1213248. See general information about how to correct material in RePEc.

      If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

      If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

      If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

      For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

      Please note that corrections may take a couple of weeks to filter through the various RePEc services.

      IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.