УЗАГАЛЬНЕНА МОДЕЛЬ ПРОГНОЗУВАННЯ ТА ВИЯВЛЕННЯ КІБЕРБЕЗПЕКОВИХ АНОМАЛІЙ НА ОСНОВІ ШТУЧНОГО ІНТЕЛЕКТУ

Yevheniia Ivanchenko; Ihor Averichev; Mykola Ryzhakov

doi:10.28925/2663-4023.2025.28.823

Authors

Yevheniia Ivanchenko State University of Information and Communication Technologies https://orcid.org/0000-0003-3017-5752
Ihor Averichev State University of Information and Communication Technologies https://orcid.org/0009-0008-9766-0115
Mykola Ryzhakov State University of Information and Communication Technologies https://orcid.org/0009-0006-3377-7061

DOI:

https://doi.org/10.28925/2663-4023.2025.28.823

Keywords:

artificial intelligence, deep learning, anomaly detection, autoencoder, information security, traffic forecasting, situation criticality

Abstract

The article presents the development of an integrated mathematical model for forecasting network load and detecting cybersecurity anomalies, based on modern deep learning methods and the autoencoder architecture. The proposed approach combines neural network-based forecasting functionality with automated mechanisms for identifying deviations in network traffic behavior. At the initial stage, the model performs preprocessing of historical data using normalization and exponential smoothing, which allows for the effective extraction of current load patterns. Forecasting is carried out using a deep neural network optimized by gradient descent to minimize the mean squared error (MSE). An autoencoder is applied for anomaly detection, trained on normal data and employing the Euclidean norm of the difference between input and reconstructed signals to quantify the anomaly level. Anomaly boundaries are adaptively generated based on standard deviation and a sensitivity parameter, enhancing detection accuracy under dynamic network conditions. Additionally, the study introduces a model for assessing the criticality of network states by considering the proportion of anomalous values within the overall data stream. This allows for event classification by threat level and ensures timely system response. The integrated model operates as a multi-level self-learning system capable of not only forecasting the future network state but also detecting potentially dangerous conditions in real time. Practical implementation of the proposed approach achieves high forecasting accuracy (up to 95%) even in the presence of anomalies and significantly reduces false alarms. The relevance of this research is supported by current challenges related to digitalization, network scalability, and the growing need for security amid increasing complexity of IT infrastructures. The presented model is an effective tool for monitoring, analysis, and threat response in the context of NFV/SDN technologies, IoT, and cloud computing.

Downloads

Download data is not yet available.

References

Zhang, Y., Wang, Y., & Lin, Y. (2018). Deep Learning-Based Traffic Forecasting in SDN. IEEE Access, 6, 65773–65782. https://doi.org/10.1109/ACCESS.2018.2878158

Bonomi, F., Milito, R., Zhu, J., & Addepalli, S. (2012). Fog computing and its role in the internet of things. Proceedings of the first edition of the MCC workshop on Mobile cloud computing. https://doi.org/10.1145/2342509.2342513

Wang, J., Liu, P., & Chen, L. (2020). LSTM-based anomaly detection for network traffic. Neural Computing and Applications, 32, 10227–10239. https://doi.org/10.1007/s00521-019-04438-0

Liu, Y., Wang, H., & Yang, J. (2022). Hybrid models combining deep learning and traditional routing for anomaly detection in SDN. Journal of Network and Computer Applications, 198, 103312. https://doi.org/10.1016/j.jnca.2021.103312

Li, X., Zhang, T., & Zhou, J. (2021). Anomaly Detection using Autoencoder in Cybersecurity Applications. Computers & Security, 108, 102372. https://doi.org/10.1016/j.cose.2021.102372

Feamster, N., Rexford, J., & Zegura, E. (2014). The Road to SDN: An Intellectual History of Programmable Networks. ACM SIGCOMM Computer Communication Review, 44(2), 87–98. https://doi.org/10.1145/2602204.2602219

Gupta, A., & Kumar, R. (2021). AI-enabled NFV Resource Management: Challenges and Opportunities. Computer Communications, 176, 109–124. https://doi.org/10.1016/j.comcom.2021.04.009

Huang, Z., Li, X., & Wu, J. (2021). Autoencoder-based anomaly detection in software-defined networks. Computers & Electrical Engineering, 91, 107011. https://doi.org/10.1016/j.compeleceng.2021.107011

Patel, S., Chauhan, N., & Sharma, K. (2023). AI-Driven Cybersecurity Solutions for SDN: A Review. Security and Privacy, 6(2), e180. https://doi.org/10.1002/spy2.180

Zhao, Z., Chen, W., & Yu, Z. (2022). Anomaly Detection with GANs in Network Systems. Neurocomputing, 501, 50–60. https://doi.org/10.1016/j.neucom.2021.09.116

A GENERALIZED MODEL FOR PREDICTING AND DETECTING CYBERSECURITY ANOMALIES BASED ON ARTIFICIAL INTELLIGENCE

Authors

DOI:

Keywords:

Abstract

Downloads

References

Downloads

Published

How to Cite

Issue

Section

License

Most read articles by the same author(s)

index

Language

Make a Submission

counter

Information

Developed By

Current Issue