• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

相似文献

1
A Survey of Machine Learning-Based Zero-Day Attack Detection: Challenges and Future Directions.基于机器学习的零日攻击检测综述:挑战与未来方向
Comput Commun. 2023 Jan;198. doi: 10.1016/j.comcom.2022.11.001.
2
A Scalable Approach to Internet of Things and Industrial Internet of Things Security: Evaluating Adaptive Self-Adjusting Memory K-Nearest Neighbor for Zero-Day Attack Detection.一种适用于物联网和工业物联网安全的可扩展方法:评估用于零日攻击检测的自适应自调整内存K近邻算法
Sensors (Basel). 2025 Jan 2;25(1):216. doi: 10.3390/s25010216.
3
Cyber security Enhancements with reinforcement learning: A zero-day vulnerabilityu identification perspective.基于强化学习的网络安全增强:零日漏洞识别视角
PLoS One. 2025 May 27;20(5):e0324595. doi: 10.1371/journal.pone.0324595. eCollection 2025.
4
A robust intelligent zero-day cyber-attack detection technique.一种强大的智能零日网络攻击检测技术。
Complex Intell Systems. 2021;7(5):2211-2234. doi: 10.1007/s40747-021-00396-9. Epub 2021 May 28.
5
IDAC: Federated Learning-Based Intrusion Detection Using Autonomously Extracted Anomalies in IoT.IDAC:基于联邦学习的物联网入侵检测,利用自主提取的异常情况
Sensors (Basel). 2024 May 18;24(10):3218. doi: 10.3390/s24103218.
6
The Effectiveness of Zero-Day Attacks Data Samples Generated via GANs on Deep Learning Classifiers.通过生成对抗网络(GANs)生成的零日攻击数据样本对深度学习分类器的有效性。
Sensors (Basel). 2023 Jan 12;23(2):900. doi: 10.3390/s23020900.
7
usfAD based effective unknown attack detection focused IDS framework.基于usfAD的有效未知攻击检测聚焦入侵检测系统框架。
Sci Rep. 2024 Nov 24;14(1):29103. doi: 10.1038/s41598-024-80021-0.
8
Defending the Defender: Adversarial Learning Based Defending Strategy for Learning Based Security Methods in Cyber-Physical Systems (CPS).捍卫防御者:基于对抗学习的防御策略,用于网络物理系统 (CPS) 中的基于学习的安全方法。
Sensors (Basel). 2023 Jun 9;23(12):5459. doi: 10.3390/s23125459.
9
A Survey of Crypto Ransomware Attack Detection Methodologies: An Evolving Outlook.加密勒索软件攻击检测方法综述:不断发展的前景。
Sensors (Basel). 2022 Feb 25;22(5):1837. doi: 10.3390/s22051837.
10
Intelligent Techniques for Detecting Network Attacks: Review and Research Directions.智能网络攻击检测技术:综述与研究方向。
Sensors (Basel). 2021 Oct 25;21(21):7070. doi: 10.3390/s21217070.

引用本文的文献

1
Cyber security Enhancements with reinforcement learning: A zero-day vulnerabilityu identification perspective.基于强化学习的网络安全增强:零日漏洞识别视角
PLoS One. 2025 May 27;20(5):e0324595. doi: 10.1371/journal.pone.0324595. eCollection 2025.
2
Zero-day exploits detection with adaptive WavePCA-Autoencoder (AWPA) adaptive hybrid exploit detection network (AHEDNet).基于自适应WavePCA自动编码器(AWPA)的自适应混合漏洞利用检测网络(AHEDNet)进行零日漏洞利用检测。
Sci Rep. 2025 Feb 3;15(1):4036. doi: 10.1038/s41598-025-87615-2.
3
Integrating machine learning for sustaining cybersecurity in digital banks.整合机器学习以维持数字银行的网络安全。
Heliyon. 2024 Sep 6;10(17):e37571. doi: 10.1016/j.heliyon.2024.e37571. eCollection 2024 Sep 15.
4
Security Analysis for Smart Healthcare Systems.智能医疗保健系统的安全分析。
Sensors (Basel). 2024 May 24;24(11):3375. doi: 10.3390/s24113375.
5
Windows malware detection based on static analysis with multiple features.基于多特征静态分析的Windows恶意软件检测
PeerJ Comput Sci. 2023 Apr 21;9:e1319. doi: 10.7717/peerj-cs.1319. eCollection 2023.
6
Anomaly Detection Module for Network Traffic Monitoring in Public Institutions.公共机构网络流量监测中的异常检测模块。
Sensors (Basel). 2023 Mar 9;23(6):2974. doi: 10.3390/s23062974.

基于机器学习的零日攻击检测综述:挑战与未来方向

A Survey of Machine Learning-Based Zero-Day Attack Detection: Challenges and Future Directions.

作者信息

Guo Yang

机构信息

NIST, Gaithersburg, MD 20899.

出版信息

Comput Commun. 2023 Jan;198. doi: 10.1016/j.comcom.2022.11.001.

DOI:10.1016/j.comcom.2022.11.001
PMID:36741076
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC9890381/
Abstract

Zero-day attacks exploit unknown vulnerabilities so as to avoid being detected by cybersecurity detection tools. The studies [1], [2], [3] show that zero-day attacks are wide spread and are one of the major threats to computer security. The traditional signature-based detection method is not effective in detecting zero-day attacks as the signatures of zero-day attacks are typically not available beforehand. Machine Learning (ML)-based detection method is capable of capturing attacks' statistical characteristics and is, hence, promising for zero-day attack detection. In this paper, a comprehensive survey of ML-based zero-day attack detection approaches is conducted, and their ML models, training and testing data sets used, and evaluation results are compared. While significant efforts have been put forth to develop accurate and robust zero-attack detection tools, the existing methods fall short in accuracy, recall, and uniformity against different types of zero-day attacks. Major challenges toward the ML-based methods are identified and future research directions are recommended last.

摘要

零日攻击利用未知漏洞,以避免被网络安全检测工具检测到。研究[1]、[2]、[3]表明,零日攻击广泛存在,是计算机安全的主要威胁之一。传统的基于签名的检测方法在检测零日攻击时无效,因为零日攻击的签名通常事先不可用。基于机器学习(ML)的检测方法能够捕捉攻击的统计特征,因此在零日攻击检测方面很有前景。本文对基于ML的零日攻击检测方法进行了全面综述,并比较了它们的ML模型、使用的训练和测试数据集以及评估结果。虽然已经付出了巨大努力来开发准确且强大的零攻击检测工具,但现有方法在针对不同类型零日攻击的准确性、召回率和一致性方面仍存在不足。识别了基于ML方法面临的主要挑战,并最后推荐了未来的研究方向。