ВИЯВЛЕННЯ КІБЕРАТАК У МЕРЕЖЕВОМУ ТРАФІКУ НА ОСНОВІ АЛГОРИТМІВ МАШИННОГО НАВЧАННЯ

Anastasiia Shlyakhova; Olha Shevchuk; Volodymyr Onishchenko

doi:10.28925/2663-4023.2026.33.1158

Authors

Anastasiia Shlyakhova Institute of Special Communications and Information Protection of Igor Sikorsky Kyiv Polytechnic Institute https://orcid.org/0009-0009-5926-2105
Olha Shevchuk Institute of Special Communications and Information Protection of Igor Sikorsky Kyiv Polytechnic Institute https://orcid.org/0000-0002-2866-439X
Volodymyr Onishchenko Institute of Special Communications and Information Protection of Igor Sikorsky Kyiv Polytechnic Institute https://orcid.org/0009-0000-1355-9178

DOI:

https://doi.org/10.28925/2663-4023.2026.33.1158

Keywords:

cybersecurity, machine learning, intrusion detection systems, anomaly detection, novelty detection, real-time monitoring

Abstract

The article examines the role and significance of machine learning (ML) methods as the methodological foundation of modern artificial intelligence. It is substantiated that the ability of information systems to self-learn and adapt in dynamic environments is a key factor in their effectiveness. The rapid growth in demand for ML technologies across all spheres of human activity is analyzed, which inevitably leads to the accumulation and processing of vast volumes of sensitive information. The concentration of such data creates new threat vectors, as it becomes a priority target for cyber adversaries. Special attention is paid to the implementation of ML algorithms in modern security ecosystems. The experience of using leading industrial solutions that replace traditional signature-based approaches with intelligent analysis is reviewed. The mechanisms for implementing network attacks aimed at poisoning initial data and manipulating the training process are described in detail. The results of the conducted experimental studies confirm that the use of irrelevant or compromised models in cybersecurity systems creates an illusion of security, leaving critical infrastructure vulnerable to targeted attacks. The article offers a conceptual outlook on the necessity of developing secure training protocols to ensure the resilience of intelligent systems.

Downloads

Download data is not yet available.

References

Instytut informatsii, bezpeky i prava NAPrN Ukrainy, & Natsionalna biblioteka Ukrainy imeni V. I. Vernadskoho. (2024). Kiberbezpeka v informatsiinomu suspilstvi: Informatsiino-analitychnyi daidzhest (No. 5, p. 29). (in Ukrainian)

BBC News Україна. (2025, January 24). Реєстри відновили: Які наслідки кібератаки для України. https://www.bbc.com/ukrainian/articles/c5ye75y8415o

Derzhavna sluzhba spetsialnoho zviazku ta zakhystu informatsii Ukrainy. (2025). Ohliad kiberzahroz ta stratehii zakhystu v 2025 rotsi: dosvid CERT-UA. https://cip.gov.ua/ua/faqs/cyber-threat-overview-and-defense-strategies-in-2025-cert-ua-s-experience

Zakon Ukrainy “Pro zakhyst personalnykh danykh” No. 2297-VI. (2010, June 1; rev. 2025). https://zakon.rada.gov.ua/laws/card/2297-17/ed20250101

Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 (Artificial Intelligence Act). (2024). Official Journal of the European Union. https://eur-lex.europa.eu/eli/reg/2024/1689/oj

Pradhan, R. (2022). Decision tree based classifications on CICIDS 2017 dataset for the identification of DDoS, botnet, and web attack. NeuroQuantology, 20(12).

Alshahrani, E., Alghazzawi, D., Alotaibi, R., & Rabie, O. (2022). Adversarial attacks against supervised machine learning-based network intrusion detection systems. Peer-to-Peer Networking and Applications. https://doi.org/10.1007/s12083-024-01859-9

Han, D., Wang, Z., Zhong, Y., Chen, W., Yang, J., Lu, S., Shi, X., & Yin, X. (2020). Evaluating and improving adversarial robustness of machine learning-based network intrusion detectors. arXiv. https://arxiv.org/abs/2005.07519

Omdena. (2025, July 30). Top machine learning issues for businesses in 2025. https://www.omdena.com/blog/machine-learning-issues-businesses-2025

Denovo. (2025). Що таке machine learning? https://denovo.ua/resources/what-is-machine-learning

Palo Alto Networks. (2023). Machine learning in the next-generation firewall (White paper).

Fuhrman, S., Gungor, O., & Rosing, T. (2025). CND IDS: Continual novelty detection for intrusion detection systems. arXiv. https://arxiv.org/abs/2502.14094

Li, E., Gungor, O., Shang, Z., & Rosing, T. (2025). CITADEL: Continual anomaly detection for enhanced learning in IoT intrusion detection. arXiv. https://arxiv.org/abs/2508.19450

Domingos, P., & Hulten, G. (2000). Mining high-speed data streams. In Proceedings of the sixth ACM SIGKDD international conference on knowledge discovery and data mining (KDD ’00) (pp. 71–80). ACM. https://doi.org/10.1145/347090.347107

Rios, A., Ahuja, N., Ndiour, I., Genc, U., Itti, L., & Tickoo, O. (2022). incDFM: Incremental deep feature modeling for continual novelty detection. In European conference on computer vision (pp. 588–604). Springer.

A generalized and real-time network intrusion detection system through incremental feature encoding and similarity embedding learning. (2025). Sensors, 25(16), Article 4961. https://doi.org/10.3390/s25164961

Sharma, V., & Kumar, M. (2025). Comparative analysis of machine learning models for intrusion detection systems. Panamerican Mathematical Journal, 35(3s), 273–285. https://doi.org/10.52783/pmj.v35.i3s.3891

DETECTION OF CYBERATTACKS IN NETWORK TRAFFIC BASED ON MACHINE LEARNING ALGORITHMS

Authors

DOI:

Keywords:

Abstract

Downloads

References

Downloads

Published

How to Cite

Issue

Section

License

index

Language

Make a Submission

counter

Information

Developed By

Current Issue