Back to articles
Articles
Volume: 32 | Article ID: art00014
Image
AI-based anomaly detection for cyberattacks on Windows systems - Creation of a prototype for automated monitoring of the process environment
Benjamin Yüksel
Klaus Schwarz
Reiner Creutzburg
  DOI :  10.2352/ISSN.2470-1173.2020.3.MOBMU-331  Published OnlineJanuary 2020
Abstract

Cyber security has become an increasingly important topic in recent years. The increasing popularity of systems and devices such as computers, servers, smartphones, tablets and smart home devices is causing a rapidly increasing attack surface. In addition, there are a variety of security vulnerabilities in software and hardware that make the security situation more complex and unclear. Many of these systems and devices also process personal or secret data and control critical processes in the industry. The need for security is tremendously high. The owners and administrators of modern computer systems are often overwhelmed with the task of securing their systems as the systems become more complex and the attack methods increasingly intelligent. In these days a there are a lot of encryption and hiding techniques available. They are used to make the detection of malicious software with signature based scanning methods very difficult. Therefore, novel methods for the detection of such threats are necessary. This paper examines whether cyber threats can be detected using modern artificial intelligence methods. We develop, describe and test a prototype for windows systems based on neural networks. In particular, an anomaly detection based on autoencoders is used. As this approach has shown, it is possible to detect a wide range of threats using artificial intelligence. Based on the approach in this work, this research topic should be continued to be investigated. Especially cloud-based solutions based on this principle seem to be very promising to protect against modern threats in the world of cyber security.

Journal Title : Electronic Imaging
Publisher Name : Society for Imaging Science and Technology
Publisher Location : 7003 Kilworth Lane, Springfield, VA 22151 USA
Subject Areas :
Views 25
Downloads 4
 DOI 10.2352/ISSN.2470-1173.2020.3.MOBMU-331
 articleview.views 25
 articleview.downloads 4
  Cite this article 

Benjamin Yüksel, Klaus Schwarz, Reiner Creutzburg, "AI-based anomaly detection for cyberattacks on Windows systems - Creation of a prototype for automated monitoring of the process environmentin Proc. IS&T Int’l. Symp. on Electronic Imaging: Mobile Devices and Multimedia: Technologies, Algorithms & Applications,  2020,  pp 331-1 - 331-13,  https://doi.org/10.2352/ISSN.2470-1173.2020.3.MOBMU-331

 Copy citation
  Copyright statement 
Copyright © Society for Imaging Science and Technology 2020
72010604
Electronic Imaging
2470-1173
Society for Imaging Science and Technology
7003 Kilworth Lane, Springfield, VA 22151 USA
10.2352/ISSN.2470-1173.2020.3.MOBMU-331
2470-1173(20200126)2020:3L.3311;1-
ei_24701173_v2020n3_input/s15.xml
/ist/ei/2020/00002020/00000003/art00014
Articles
AI-based anomaly detection for cyberattacks on Windows systems - Creation of a prototype for automated monitoring of the process environment
YükselBenjamin
SchwarzKlaus
CreutzburgReiner
26012020
2020
3
331-1
331-13
2020
Cyber security has become an increasingly important topic in recent years. The increasing popularity of systems and devices such as computers, servers, smartphones, tablets and smart home devices is causing a rapidly increasing attack surface. In addition, there are a variety of security vulnerabilities in software and hardware that make the security situation more complex and unclear. Many of these systems and devices also process personal or secret data and control critical processes in the industry. The need for security is tremendously high. The owners and administrators of modern computer systems are often overwhelmed with the task of securing their systems as the systems become more complex and the attack methods increasingly intelligent. In these days a there are a lot of encryption and hiding techniques available. They are used to make the detection of malicious software with signature based scanning methods very difficult. Therefore, novel methods for the detection of such threats are necessary. This paper examines whether cyber threats can be detected using modern artificial intelligence methods. We develop, describe and test a prototype for windows systems based on neural networks. In particular, an anomaly detection based on autoencoders is used. As this approach has shown, it is possible to detect a wide range of threats using artificial intelligence. Based on the approach in this work, this research topic should be continued to be investigated. Especially cloud-based solutions based on this principle seem to be very promising to protect against modern threats in the world of cyber security.
cybersecurityartificial intelligenceanomaly detectionneural networksmachine learningautomated Windows system monitoring