Abstract
Intrusion Detection Systems (IDSs) are an essential element of modern cyber defense, alerting users to when and where cyber-attacks occur. Machine learning can enable IDSs to further distinguish between benign and malicious behaviors, but it comes with several challenges, including lack of quality training data and high false-positive rates. Generative Machine Learning Models (GMLMs) can help overcome these challenges. This article offers an in-depth exploration of GMLMs' application to intrusion detection. It gives (1) a systematic mapping study of research at the intersection of GMLMs and IDSs, and (2) a detailed review providing insights and directions for future research.
Original language | English |
---|---|
Article number | 257 |
Journal | ACM Computing Surveys |
Volume | 56 |
Issue number | 10 |
Early online date | Jun 22 2024 |
DOIs | |
State | Published - Jun 22 2024 |
Keywords
- Cyber Alert Generation
- Evaluation Metrics
- Flow Generation
- Generative Models
- Penetration Testing
- Unbalanced Datasets