Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

A review of machine learning-based zero-day attack detection: Challenges and future directions

Published

Author(s)

Yang Guo

Abstract

Zero-day attacks exploit unknown vulnerabilities so as to avoid being detected by cybersecurity detection tools. The studies Bilge and Dumitraş (2012), Google (0000) and Ponemon Sullivan Privacy Report (2020) show that zero-day attacks are wide spread and are one of the major threats to computer security. The traditional signature-based detection method is not effective in detecting zero-day attacks as the signatures of zero-day attacks are typically not available beforehand. Machine Learning (ML)-based detection method is capable of capturing attacks' statistical characteristics and is, hence, promising for zero-day attack detection. In this survey paper, a comprehensive review of ML-based zero-day attack detection approaches is conducted, and their ML models, training and testing data sets used, and evaluation results are compared. While significant efforts have been put forth to develop accurate and robust zero-attack detection tools, the existing methods fall short in accuracy, recall, and uniformity against different types of zero-day attacks. Major challenges toward the ML-based methods are identified and future research directions are recommended at last.
Citation
Computer Communications
Volume
198

Keywords

Zero-day attacks, Attack detection, Machine Learning

Citation

Guo, Y. (2023), A review of machine learning-based zero-day attack detection: Challenges and future directions, Computer Communications, [online], https://doi.org/10.1016/j.comcom.2022.11.001, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=934769 (Accessed January 30, 2023)
Created January 15, 2023, Updated January 16, 2023