We present a systematic review of 63 high-quality peer-reviewed studies (2020–2024) aimed at AI-based cybersecurity solutions. We propose a new taxonomy that categorizes the identified works into four broad categories: traditional machine learning (SVM, XGBoost), deep learning approaches (LSTM, CNN), blockchain hybrids, and new neuro-symbolic methods. Our meta-analysis shows that hybrid models demonstrate the best detection rates (>99% correctness), but higher operational latency (>100 ms). Despite this, selected optimized machine learning models showed the best overall performance for phishing with a mean correctness of 97.61%. The primary research gaps included bias when keeping datasets (70% of studies utilized outdated benchmark datasets) and the lack of explainability in black-box methods. We make practical recommendations for addressing these gaps, including the need for” real-world” testing environments, lightweight AI-based architectures, and common evaluation metrics to guide evaluation. These findings provide practitioners with an evidence-based framework for selecting the best-supported AI-based cyber defences to outsmart the ever-more-cunning cyber exit strategies.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

AI-Driven Cyberattack Detection and Prevention: A Systematic Review of Emerging Trends and Future Challenges

  • Hanan Moufid,
  • Mohamed El Ghazouani,
  • Moulay Ahmed El Kiram

摘要

We present a systematic review of 63 high-quality peer-reviewed studies (2020–2024) aimed at AI-based cybersecurity solutions. We propose a new taxonomy that categorizes the identified works into four broad categories: traditional machine learning (SVM, XGBoost), deep learning approaches (LSTM, CNN), blockchain hybrids, and new neuro-symbolic methods. Our meta-analysis shows that hybrid models demonstrate the best detection rates (>99% correctness), but higher operational latency (>100 ms). Despite this, selected optimized machine learning models showed the best overall performance for phishing with a mean correctness of 97.61%. The primary research gaps included bias when keeping datasets (70% of studies utilized outdated benchmark datasets) and the lack of explainability in black-box methods. We make practical recommendations for addressing these gaps, including the need for” real-world” testing environments, lightweight AI-based architectures, and common evaluation metrics to guide evaluation. These findings provide practitioners with an evidence-based framework for selecting the best-supported AI-based cyber defences to outsmart the ever-more-cunning cyber exit strategies.