A GPT-Based Approach for Cyber Threat Assessment
Background: The increasing prevalence of cyber threats in industrial cyber–physical systems (ICPSs) necessitates advanced solutions for threat detection and analysis. This research proposes a novel GPT-based framework for assessing cyber threats, leveraging artificial intelligence to process and ana...
Saved in:
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2025-05-01
|
| Series: | AI |
| Subjects: | |
| Online Access: | https://www.mdpi.com/2673-2688/6/5/99 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849327657851813888 |
|---|---|
| author | Fahim Sufi |
| author_facet | Fahim Sufi |
| author_sort | Fahim Sufi |
| collection | DOAJ |
| description | Background: The increasing prevalence of cyber threats in industrial cyber–physical systems (ICPSs) necessitates advanced solutions for threat detection and analysis. This research proposes a novel GPT-based framework for assessing cyber threats, leveraging artificial intelligence to process and analyze large-scale cyber event data. Methods: The framework integrates multiple components, including data ingestion, preprocessing, feature extraction, and analysis modules such as knowledge graph construction, clustering, and anomaly detection. It utilizes a hybrid methodology combining spectral residual transformation and Convolutional Neural Networks (CNNs) to identify anomalies in time-series cyber event data, alongside regression models for evaluating the significant factors associated with cyber events. Results: The system was evaluated using 9018 cyber-related events sourced from 44 global news portals. Performance metrics, including precision (0.999), recall (0.998), and F1-score (0.998), demonstrate the framework’s efficacy in accurately classifying and categorizing cyber events. Notably, anomaly detection identified six significant deviations during the monitored timeframe, starting from 25 September 2023 to 25 November 2024, with a sensitivity of 75%, revealing critical insights into unusual activity patterns. The fully deployed automated model also identified 11 correlated factors and five unique clusters associated with high-rated cyber incidents. Conclusions: This approach provides actionable intelligence for stakeholders by offering real-time monitoring, anomaly detection, and knowledge graph-based insights into cyber threats. The outcomes highlight the system’s potential to enhance ICPS security, supporting proactive threat management and resilience in increasingly complex industrial environments. |
| format | Article |
| id | doaj-art-c243d3716bd54ac491c017c2b07c443d |
| institution | Kabale University |
| issn | 2673-2688 |
| language | English |
| publishDate | 2025-05-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | AI |
| spelling | doaj-art-c243d3716bd54ac491c017c2b07c443d2025-08-20T03:47:48ZengMDPI AGAI2673-26882025-05-01659910.3390/ai6050099A GPT-Based Approach for Cyber Threat AssessmentFahim Sufi0COEUS Institute, New Market, VA 22844, USABackground: The increasing prevalence of cyber threats in industrial cyber–physical systems (ICPSs) necessitates advanced solutions for threat detection and analysis. This research proposes a novel GPT-based framework for assessing cyber threats, leveraging artificial intelligence to process and analyze large-scale cyber event data. Methods: The framework integrates multiple components, including data ingestion, preprocessing, feature extraction, and analysis modules such as knowledge graph construction, clustering, and anomaly detection. It utilizes a hybrid methodology combining spectral residual transformation and Convolutional Neural Networks (CNNs) to identify anomalies in time-series cyber event data, alongside regression models for evaluating the significant factors associated with cyber events. Results: The system was evaluated using 9018 cyber-related events sourced from 44 global news portals. Performance metrics, including precision (0.999), recall (0.998), and F1-score (0.998), demonstrate the framework’s efficacy in accurately classifying and categorizing cyber events. Notably, anomaly detection identified six significant deviations during the monitored timeframe, starting from 25 September 2023 to 25 November 2024, with a sensitivity of 75%, revealing critical insights into unusual activity patterns. The fully deployed automated model also identified 11 correlated factors and five unique clusters associated with high-rated cyber incidents. Conclusions: This approach provides actionable intelligence for stakeholders by offering real-time monitoring, anomaly detection, and knowledge graph-based insights into cyber threats. The outcomes highlight the system’s potential to enhance ICPS security, supporting proactive threat management and resilience in increasingly complex industrial environments.https://www.mdpi.com/2673-2688/6/5/99cyber attack on industrycyber threat analyticsGPTregressionanomaly detectionknowledge graph |
| spellingShingle | Fahim Sufi A GPT-Based Approach for Cyber Threat Assessment AI cyber attack on industry cyber threat analytics GPT regression anomaly detection knowledge graph |
| title | A GPT-Based Approach for Cyber Threat Assessment |
| title_full | A GPT-Based Approach for Cyber Threat Assessment |
| title_fullStr | A GPT-Based Approach for Cyber Threat Assessment |
| title_full_unstemmed | A GPT-Based Approach for Cyber Threat Assessment |
| title_short | A GPT-Based Approach for Cyber Threat Assessment |
| title_sort | gpt based approach for cyber threat assessment |
| topic | cyber attack on industry cyber threat analytics GPT regression anomaly detection knowledge graph |
| url | https://www.mdpi.com/2673-2688/6/5/99 |
| work_keys_str_mv | AT fahimsufi agptbasedapproachforcyberthreatassessment AT fahimsufi gptbasedapproachforcyberthreatassessment |