<p>The rapid growth of increasingly sophisticated and complex cyber threats has intensified interest in, and reliance on, artificial intelligence (AI), particularly machine learning (ML), within the cybersecurity landscape. ML has demonstrated robust potential to enhance cybersecurity capabilities, including threat detection, anomaly identification, predictive analytics, and automated response; however, practical ML implementation in cybersecurity remains in an early stage, often inconsistent, fragmented, and insufficiently developed. Consequently, ongoing research is essential to identify emerging developments, expand areas of inquiry, and propose improvements to existing approaches. This study provides a comprehensive review of recent ML applications in cybersecurity. Using the Preferred Reporting Items for Systematic Reviews and Meta-Analyses (PRISMA) methodology, the study systematically evaluates the feasibility, effectiveness, and limitations of current approaches. The review reveals several critical gaps, including narrow application scopes, suboptimal algorithm performance in real-world environments, insufficient and imbalanced datasets, and inadequate integration with Security Information and Event Management (SIEM) and Intrusion Prevention Systems (IPS). Additional concerns include ethical dilemmas and governance challenges, all of which limit the operational reliability of ML-driven cybersecurity solutions. The findings emphasize the need to refine ML models, improve interoperability with existing security infrastructures, and strengthen evaluation frameworks. Importantly, the study advocates aligning modern ML-driven innovations with cybersecurity auditing, emphasizing cybersecurity audits' role in assessing ML readiness, validating control effectiveness, and promoting responsible, transparent, and risk-based adoption of ML technologies in cybersecurity environments.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A comprehensive review of machine learning applications in cybersecurity: identifying gaps and advocating for cybersecurity auditing

  • Ndaedzo Rananga,
  • H. S. Venter

摘要

The rapid growth of increasingly sophisticated and complex cyber threats has intensified interest in, and reliance on, artificial intelligence (AI), particularly machine learning (ML), within the cybersecurity landscape. ML has demonstrated robust potential to enhance cybersecurity capabilities, including threat detection, anomaly identification, predictive analytics, and automated response; however, practical ML implementation in cybersecurity remains in an early stage, often inconsistent, fragmented, and insufficiently developed. Consequently, ongoing research is essential to identify emerging developments, expand areas of inquiry, and propose improvements to existing approaches. This study provides a comprehensive review of recent ML applications in cybersecurity. Using the Preferred Reporting Items for Systematic Reviews and Meta-Analyses (PRISMA) methodology, the study systematically evaluates the feasibility, effectiveness, and limitations of current approaches. The review reveals several critical gaps, including narrow application scopes, suboptimal algorithm performance in real-world environments, insufficient and imbalanced datasets, and inadequate integration with Security Information and Event Management (SIEM) and Intrusion Prevention Systems (IPS). Additional concerns include ethical dilemmas and governance challenges, all of which limit the operational reliability of ML-driven cybersecurity solutions. The findings emphasize the need to refine ML models, improve interoperability with existing security infrastructures, and strengthen evaluation frameworks. Importantly, the study advocates aligning modern ML-driven innovations with cybersecurity auditing, emphasizing cybersecurity audits' role in assessing ML readiness, validating control effectiveness, and promoting responsible, transparent, and risk-based adoption of ML technologies in cybersecurity environments.