Skoči na glavni sadržaj

Promet - Traffic&Transportation, Vol. 37 No. 3, 2025.

Izvorni znanstveni članak

https://doi.org/10.7307/ptt.v37i3.1088

Proactive Detection and Mitigation Strategies for Advanced Persistent Threats

Raghav MITTAL orcid id orcid.org/0009-0009-5433-486X ; Vellore Institute of Technology, School of Computer Science and Engineering
Ivan CVITIĆ orcid id orcid.org/0000-0003-3728-6711 ; University of Zagreb, Faculty of Transport and Traffic Sciences
Dragan PERAKOVIĆ orcid id orcid.org/0000-0002-0476-9373 ; University of Zagreb, Faculty of Transport and Traffic Sciences
Soosaimarian Peter RAJA ; Vellore Institute of Technology, School of Computer Science and Engineering

Puni tekst: engleski pdf 775 Kb

str. 546-569

preuzimanja: 241

citiraj

Sažetak

This research explores the growing threat of advanced persistent threats (APTs), which pose significant risks to national security, organisational operations and critical infrastructure. APTs have become increasingly sophisticated, targeting various sectors and demanding more effective defences to protect sensitive data and key systems. The focus of this paper is on addressing the rising frequency and complexity of APT attacks, aiming to provide a detailed analysis of their evolving tactics and the need for proactive security measures. Specifically, the paper examines current gaps in APT detection, from the initial stages of infiltration through to the complete removal of the threat. To address these challenges, the study introduces several detection strategies, including advanced correlation techniques, behavioural analysis of network traffic and user activity, and the application of machine learning and AI to improve threat identification. The paper analyses real-world APT incidents and discusses how monitoring and deception tactics can enhance security measures. It highlights the ongoing challenges presented by APTs, particularly their adaptive and dynamic attack methods, and emphasises the need for continuous improvement in defensive strategies. In conclusion, the paper outlines key areas for future research and stresses the importance of a proactive, evolving approach to counter the persistent and evolving nature of APTs.

Ključne riječi

advanced persistent threats; Stuxnet; Nashequilibrium; game theory; online adaptive metric learning; hidden Markov model; Carbanak; Hydraq

Hrčak ID:

331750

URI

https://hrcak.srce.hr/331750

Datum izdavanja:

5.6.2025.

Posjeta: 409 *