DEVELOPMENT OF A METHOD FOR INVESTIGATING CYBERCRIMES BY THE TYPE OF RANSOMWARE USING ARTIFICIAL INTELLIGENCE MODELS IN THE INFORMATION SECURITY MANAGEMENT SYSTEM OF CRITICAL INFRASTRUCTURE

Computer systems and network Pub Date : 2024-06-01 DOI:10.23939/csn2024.01.015

A. Partyka, O. Harasymchuk, E. Nyemkova, Y. Sovyn, V. Dudykevych

{"title":"DEVELOPMENT OF A METHOD FOR INVESTIGATING CYBERCRIMES BY THE TYPE OF RANSOMWARE USING ARTIFICIAL INTELLIGENCE MODELS IN THE INFORMATION SECURITY MANAGEMENT SYSTEM OF CRITICAL INFRASTRUCTURE","authors":"A. Partyka, O. Harasymchuk, E. Nyemkova, Y. Sovyn, V. Dudykevych","doi":"10.23939/csn2024.01.015","DOIUrl":null,"url":null,"abstract":"In this article the authors focused on analyzing the possibilities of using artificial intelligence models for effective detection and analysis of cybercrimes. A comprehensive method using artificial intelligence algorithms such as Random Forest and Isolation Forest algorithms is developed and described to detect ransomware which is one of the main threats to information security management systems (ISMS) in the field of critical infrastructure. The result of the study is the determination of the compatibility of such methods with the requirements of ISO 27001:2022 emphasizing the importance of integrating innovative AI technologies into already existing security systems. In addition the article analyzes the potential advantages of such integration including compliance with the requirements of international information security frameworks. Keywords: Isolation Forest Random Forest critical infrastructure information security management system ISO 27001 cyber security cyber security standard cybercrime ISMS ransomware siem edr security monitoring antivirus machine learning computer networks information systems.","PeriodicalId":504130,"journal":{"name":"Computer systems and network","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer systems and network","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23939/csn2024.01.015","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

In this article the authors focused on analyzing the possibilities of using artificial intelligence models for effective detection and analysis of cybercrimes. A comprehensive method using artificial intelligence algorithms such as Random Forest and Isolation Forest algorithms is developed and described to detect ransomware which is one of the main threats to information security management systems (ISMS) in the field of critical infrastructure. The result of the study is the determination of the compatibility of such methods with the requirements of ISO 27001:2022 emphasizing the importance of integrating innovative AI technologies into already existing security systems. In addition the article analyzes the potential advantages of such integration including compliance with the requirements of international information security frameworks. Keywords: Isolation Forest Random Forest critical infrastructure information security management system ISO 27001 cyber security cyber security standard cybercrime ISMS ransomware siem edr security monitoring antivirus machine learning computer networks information systems.

查看原文本刊更多论文

利用关键基础设施信息安全管理系统中的人工智能模型，开发一种按勒索软件类型调查网络犯罪的方法

在本文中，作者重点分析了使用人工智能模型有效检测和分析网络犯罪的可能性。作者开发并描述了一种使用随机森林算法和隔离森林算法等人工智能算法的综合方法，用于检测勒索软件，勒索软件是关键基础设施领域信息安全管理系统（ISMS）面临的主要威胁之一。研究结果确定了这些方法与 ISO 27001:2022 要求的兼容性，强调了将创新人工智能技术集成到现有安全系统中的重要性。此外，文章还分析了这种整合的潜在优势，包括符合国际信息安全框架的要求。关键词隔离林随机林关键基础设施信息安全管理系统 ISO 27001 网络安全网络安全标准网络犯罪 ISMS 勒索软件 siem edr 安全监控反病毒机器学习计算机网络信息系统。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer systems and network

自引率

0.00%

发文量