Blockchain and explainable AI for enhanced decision making in cyber threat detection

Blockchain and explainable AI for enhanced decision making in cyber threat detection

Summary Artificial Intelligence (AI) based cyber threat detection tools are widely used to process and analyze a large amount of data for improved intrusion detection performance. However, these models are often considered as black box by the cybersecurity experts due to their inability to comprehen...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Software, practice & experience practice & experience, 2024-08, Vol.54 (8), p.1337-1360
Hauptverfasser: Kumar, Prabhat, Javeed, Danish, Kumar, Randhir, Islam, A.K.M Najmul
Format: Artikel
Sprache:eng
Schlagworte:
Artificial intelligence
Blockchain
Cybersecurity
Decision making
Decision support systems
explainable AI
Explainable artificial intelligence
Hunting
intrusion detection system
Machine learning
smart healthcare system
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 1360
container_issue 8
container_start_page 1337
container_title Software, practice & experience
container_volume 54
creator Kumar, Prabhat
Javeed, Danish
Kumar, Randhir
Islam, A.K.M Najmul
description Summary Artificial Intelligence (AI) based cyber threat detection tools are widely used to process and analyze a large amount of data for improved intrusion detection performance. However, these models are often considered as black box by the cybersecurity experts due to their inability to comprehend or interpret the reasoning behind the decisions. Moreover, AI‐based threat hunting is data‐driven and is usually modeled using the data provided by multiple cloud vendors. This is another critical challenge, as a malicious cloud can provide false information (i.e., insider attacks) and can degrade the threat‐hunting capability. In this paper, we present a blockchain‐enabled eXplainable AI (XAI) for enhancing the decision‐making capability of cyber threat detection in the context of Smart Healthcare Systems. Specifically, first, we use blockchain to validate and store data between multiple cloud vendors by implementing a Clique Proof‐of‐Authority (C‐PoA) consensus. Second, a novel deep learning‐based threat‐hunting model is built by combining Parallel Stacked Long Short Term Memory (PSLSTM) networks with a multi‐head attention mechanism for improved attack detection. The extensive experiment confirms its potential to be used as an enhanced decision support system by cybersecurity analysts.
doi_str_mv 10.1002/spe.3319
format Article
fullrecord <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_3075906549</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>3075906549</sourcerecordid><originalsourceid>FETCH-LOGICAL-c3279-d0d0efa58d79a5cfc3359fc2c608c357adde6b9e746fafb2441aeb8b6682c7a83</originalsourceid><addsrcrecordid>eNp10FFLwzAQB_AgCs4p-BECvvjSeWnatHmcY-pgoOAE30KaXFy3rp1Jh-7bmzlffbqD-90d_Am5ZjBiAOld2OKIcyZPyICBLBJIs_dTMgDgZQIiy87JRQgrAMbyVAzI4r7pzNosdd1S3VqK39sm9rpqkI5n1HWeYrvUrUFLLZo61F1LN3pdtx80rph9hZ72S4-6j_MeTR_BJTlzugl49VeH5O1hupg8JfPnx9lkPE8MTwuZWLCATuelLaTOjTOc59KZ1AgoDc8LbS2KSmKRCaddlWYZ01iVlRBlagpd8iG5Od7d-u5zh6FXq27n2_hScShyCSLPZFS3R2V8F4JHp7a-3mi_VwzUITMVM1OHzCJNjvSrbnD_r1OvL9Nf_wMqoW38</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>3075906549</pqid></control><display><type>article</type><title>Blockchain and explainable AI for enhanced decision making in cyber threat detection</title><source>Wiley Online Library Journals Frontfile Complete</source><creator>Kumar, Prabhat ; Javeed, Danish ; Kumar, Randhir ; Islam, A.K.M Najmul</creator><creatorcontrib>Kumar, Prabhat ; Javeed, Danish ; Kumar, Randhir ; Islam, A.K.M Najmul</creatorcontrib><description>Summary Artificial Intelligence (AI) based cyber threat detection tools are widely used to process and analyze a large amount of data for improved intrusion detection performance. However, these models are often considered as black box by the cybersecurity experts due to their inability to comprehend or interpret the reasoning behind the decisions. Moreover, AI‐based threat hunting is data‐driven and is usually modeled using the data provided by multiple cloud vendors. This is another critical challenge, as a malicious cloud can provide false information (i.e., insider attacks) and can degrade the threat‐hunting capability. In this paper, we present a blockchain‐enabled eXplainable AI (XAI) for enhancing the decision‐making capability of cyber threat detection in the context of Smart Healthcare Systems. Specifically, first, we use blockchain to validate and store data between multiple cloud vendors by implementing a Clique Proof‐of‐Authority (C‐PoA) consensus. Second, a novel deep learning‐based threat‐hunting model is built by combining Parallel Stacked Long Short Term Memory (PSLSTM) networks with a multi‐head attention mechanism for improved attack detection. The extensive experiment confirms its potential to be used as an enhanced decision support system by cybersecurity analysts.</description><identifier>ISSN: 0038-0644</identifier><identifier>EISSN: 1097-024X</identifier><identifier>DOI: 10.1002/spe.3319</identifier><language>eng</language><publisher>Bognor Regis: Wiley Subscription Services, Inc</publisher><subject>Artificial intelligence ; Blockchain ; Cybersecurity ; Decision making ; Decision support systems ; explainable AI ; Explainable artificial intelligence ; Hunting ; intrusion detection system ; Machine learning ; smart healthcare system</subject><ispartof>Software, practice &amp; experience, 2024-08, Vol.54 (8), p.1337-1360</ispartof><rights>2024 The Authors. published by John Wiley &amp; Sons Ltd.</rights><rights>2024. This article is published under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c3279-d0d0efa58d79a5cfc3359fc2c608c357adde6b9e746fafb2441aeb8b6682c7a83</citedby><cites>FETCH-LOGICAL-c3279-d0d0efa58d79a5cfc3359fc2c608c357adde6b9e746fafb2441aeb8b6682c7a83</cites><orcidid>0000-0002-0723-0752</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://onlinelibrary.wiley.com/doi/pdf/10.1002%2Fspe.3319$$EPDF$$P50$$Gwiley$$Hfree_for_read</linktopdf><linktohtml>$$Uhttps://onlinelibrary.wiley.com/doi/full/10.1002%2Fspe.3319$$EHTML$$P50$$Gwiley$$Hfree_for_read</linktohtml><link.rule.ids>314,776,780,1411,27903,27904,45553,45554</link.rule.ids></links><search><creatorcontrib>Kumar, Prabhat</creatorcontrib><creatorcontrib>Javeed, Danish</creatorcontrib><creatorcontrib>Kumar, Randhir</creatorcontrib><creatorcontrib>Islam, A.K.M Najmul</creatorcontrib><title>Blockchain and explainable AI for enhanced decision making in cyber threat detection</title><title>Software, practice &amp; experience</title><description>Summary Artificial Intelligence (AI) based cyber threat detection tools are widely used to process and analyze a large amount of data for improved intrusion detection performance. However, these models are often considered as black box by the cybersecurity experts due to their inability to comprehend or interpret the reasoning behind the decisions. Moreover, AI‐based threat hunting is data‐driven and is usually modeled using the data provided by multiple cloud vendors. This is another critical challenge, as a malicious cloud can provide false information (i.e., insider attacks) and can degrade the threat‐hunting capability. In this paper, we present a blockchain‐enabled eXplainable AI (XAI) for enhancing the decision‐making capability of cyber threat detection in the context of Smart Healthcare Systems. Specifically, first, we use blockchain to validate and store data between multiple cloud vendors by implementing a Clique Proof‐of‐Authority (C‐PoA) consensus. Second, a novel deep learning‐based threat‐hunting model is built by combining Parallel Stacked Long Short Term Memory (PSLSTM) networks with a multi‐head attention mechanism for improved attack detection. The extensive experiment confirms its potential to be used as an enhanced decision support system by cybersecurity analysts.</description><subject>Artificial intelligence</subject><subject>Blockchain</subject><subject>Cybersecurity</subject><subject>Decision making</subject><subject>Decision support systems</subject><subject>explainable AI</subject><subject>Explainable artificial intelligence</subject><subject>Hunting</subject><subject>intrusion detection system</subject><subject>Machine learning</subject><subject>smart healthcare system</subject><issn>0038-0644</issn><issn>1097-024X</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2024</creationdate><recordtype>article</recordtype><sourceid>24P</sourceid><recordid>eNp10FFLwzAQB_AgCs4p-BECvvjSeWnatHmcY-pgoOAE30KaXFy3rp1Jh-7bmzlffbqD-90d_Am5ZjBiAOld2OKIcyZPyICBLBJIs_dTMgDgZQIiy87JRQgrAMbyVAzI4r7pzNosdd1S3VqK39sm9rpqkI5n1HWeYrvUrUFLLZo61F1LN3pdtx80rph9hZ72S4-6j_MeTR_BJTlzugl49VeH5O1hupg8JfPnx9lkPE8MTwuZWLCATuelLaTOjTOc59KZ1AgoDc8LbS2KSmKRCaddlWYZ01iVlRBlagpd8iG5Od7d-u5zh6FXq27n2_hScShyCSLPZFS3R2V8F4JHp7a-3mi_VwzUITMVM1OHzCJNjvSrbnD_r1OvL9Nf_wMqoW38</recordid><startdate>202408</startdate><enddate>202408</enddate><creator>Kumar, Prabhat</creator><creator>Javeed, Danish</creator><creator>Kumar, Randhir</creator><creator>Islam, A.K.M Najmul</creator><general>Wiley Subscription Services, Inc</general><scope>24P</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>8FD</scope><scope>F28</scope><scope>FR3</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><orcidid>https://orcid.org/0000-0002-0723-0752</orcidid></search><sort><creationdate>202408</creationdate><title>Blockchain and explainable AI for enhanced decision making in cyber threat detection</title><author>Kumar, Prabhat ; Javeed, Danish ; Kumar, Randhir ; Islam, A.K.M Najmul</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c3279-d0d0efa58d79a5cfc3359fc2c608c357adde6b9e746fafb2441aeb8b6682c7a83</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2024</creationdate><topic>Artificial intelligence</topic><topic>Blockchain</topic><topic>Cybersecurity</topic><topic>Decision making</topic><topic>Decision support systems</topic><topic>explainable AI</topic><topic>Explainable artificial intelligence</topic><topic>Hunting</topic><topic>intrusion detection system</topic><topic>Machine learning</topic><topic>smart healthcare system</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Kumar, Prabhat</creatorcontrib><creatorcontrib>Javeed, Danish</creatorcontrib><creatorcontrib>Kumar, Randhir</creatorcontrib><creatorcontrib>Islam, A.K.M Najmul</creatorcontrib><collection>Wiley Online Library Open Access</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Technology Research Database</collection><collection>ANTE: Abstracts in New Technology &amp; Engineering</collection><collection>Engineering Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>Software, practice &amp; experience</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Kumar, Prabhat</au><au>Javeed, Danish</au><au>Kumar, Randhir</au><au>Islam, A.K.M Najmul</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Blockchain and explainable AI for enhanced decision making in cyber threat detection</atitle><jtitle>Software, practice &amp; experience</jtitle><date>2024-08</date><risdate>2024</risdate><volume>54</volume><issue>8</issue><spage>1337</spage><epage>1360</epage><pages>1337-1360</pages><issn>0038-0644</issn><eissn>1097-024X</eissn><abstract>Summary Artificial Intelligence (AI) based cyber threat detection tools are widely used to process and analyze a large amount of data for improved intrusion detection performance. However, these models are often considered as black box by the cybersecurity experts due to their inability to comprehend or interpret the reasoning behind the decisions. Moreover, AI‐based threat hunting is data‐driven and is usually modeled using the data provided by multiple cloud vendors. This is another critical challenge, as a malicious cloud can provide false information (i.e., insider attacks) and can degrade the threat‐hunting capability. In this paper, we present a blockchain‐enabled eXplainable AI (XAI) for enhancing the decision‐making capability of cyber threat detection in the context of Smart Healthcare Systems. Specifically, first, we use blockchain to validate and store data between multiple cloud vendors by implementing a Clique Proof‐of‐Authority (C‐PoA) consensus. Second, a novel deep learning‐based threat‐hunting model is built by combining Parallel Stacked Long Short Term Memory (PSLSTM) networks with a multi‐head attention mechanism for improved attack detection. The extensive experiment confirms its potential to be used as an enhanced decision support system by cybersecurity analysts.</abstract><cop>Bognor Regis</cop><pub>Wiley Subscription Services, Inc</pub><doi>10.1002/spe.3319</doi><tpages>24</tpages><orcidid>https://orcid.org/0000-0002-0723-0752</orcidid><oa>free_for_read</oa></addata></record>
fulltext fulltext
identifier ISSN: 0038-0644
ispartof Software, practice & experience, 2024-08, Vol.54 (8), p.1337-1360
issn 0038-0644
1097-024X
language eng
recordid cdi_proquest_journals_3075906549
source Wiley Online Library Journals Frontfile Complete
subjects Artificial intelligence
Blockchain
Cybersecurity
Decision making
Decision support systems
explainable AI
Explainable artificial intelligence
Hunting
intrusion detection system
Machine learning
smart healthcare system
title Blockchain and explainable AI for enhanced decision making in cyber threat detection
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-28T02%3A44%3A18IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Blockchain%20and%20explainable%20AI%20for%20enhanced%20decision%20making%20in%20cyber%20threat%20detection&rft.jtitle=Software,%20practice%20&%20experience&rft.au=Kumar,%20Prabhat&rft.date=2024-08&rft.volume=54&rft.issue=8&rft.spage=1337&rft.epage=1360&rft.pages=1337-1360&rft.issn=0038-0644&rft.eissn=1097-024X&rft_id=info:doi/10.1002/spe.3319&rft_dat=%3Cproquest_cross%3E3075906549%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=3075906549&rft_id=info:pmid/&rfr_iscdi=true