METHODOLOGY OF INTELLECTUAL ASSESSMENT OF INFORMATION SECURITY RISKS OF CORPORATE DATABASES
DOI:
https://doi.org/10.28925/2663-4023.2026.33.1221Keywords:
information security, corporate databases, risk assessment, intelligent methods, machine learning, cyber threatsAbstract
The article proposes a methodology for intelligent risk assessment of corporate database security based on the use of an ensemble approach to anomaly detection. Based on the analysis of modern approaches and research in database security, it is concluded that the use of artificial intelligence in protection systems is necessary to account for the complex impact of negative factors on the security of corporate databases. Unlike traditional methods that focus on individual aspects of user behavior, the proposed solution provides a multidimensional analysis through the integration of multiple machine learning models. In particular, the Isolation Forest algorithm is used to detect point anomalies in the feature space, the Long Short-Term Memory model is applied for analyzing temporal dependencies, and the Autoencoder is utilized to identify structural deviations in multidimensional data. An integrated anomaly score is proposed, which is formed by a weighted combination of the outputs of individual models, enabling improved detection accuracy for complex attack scenarios. Based on the obtained anomaly score, a transition to risk assessment is implemented, taking into account the criticality of resources and the types of database access operations. This approach enables adaptive decision-making for responding to information security incidents. A software prototype of the proposed methodology has been developed using the Python programming language with modern machine learning libraries. An experimental study was conducted on a synthetic dataset simulating both normal and anomalous access scenarios. The obtained results confirm the improved effectiveness of the ensemble model compared to individual approaches in terms of Precision, Recall, F1-score, and ROC-AUC metrics. The proposed methodology can be applied in Security Operations Center (SOC) systems for automated anomaly detection and real-time risk assessment.
Downloads
References
Gracy, S. (2025). A global analysis of data breaches from 2004 to 2024. Information Security Group, Royal Holloway, University of London. https://doi.org/10.48550/arXiv.2502.05205
Lysetskyi, Y. M., & Kalbazov, D. Y. (2023). Information security of corporate databases. Mathematical Machines and Systems, (3), 31-37. https://doi.org/10.34121/1028-9763-2023-3-31-37
Kyrychok, R. V., Skladannyi, P. M., Buryachok, V. L., Gulak, G. M., & Kozachok, V. A. (2016). Problems of ensuring control of corporate network security and ways to solve them. Scientific Notes of the Ukrainian Research Institute of Communications, 3(43), 48-61. https://journals.dut.edu.ua/index.php/sciencenotes/article/view/772/716
Sahinoglu, M. (2024). Cyber security risk assessment and optimal risk management of a national vulnerability database. International Journal of Computer Theory and Engineering, 16, 104-126. https://doi.org/10.7763/IJCTE.2024.V16.1359
Pevnev, V., & Kapchynskyi, S. (2018). Database security: Threats and preventive measures. Advanced Information Systems, 2(1), 69-72. https://doi.org/10.20998/2522-9052.2018.1.13
Khlaponin, Y., Izmailova, O., Krasovska, H., Krasovska, K., Bodnar, N., & Abbas, S. Q. (2024). Base of models of the information security risks assessment system. In 2024 35th Conference of Open Innovations Association (FRUCT). IEEE. https://doi.org/10.23919/fruct61870.2024.10516397
Shchavinskyi, Y., & Budzynskyi, O. (2025). Analysis of current problems of security of corporate databases in the conditions of modern infrastructure and ways to solution them. Cybersecurity: Education, Science, Technique, 3(27), 390-405. https://doi.org/10.28925/2663-4023.2025.27.726
Shevchenko, S., Zhdanova, Y., & Kravchuk, K. (2021). Information protection model based on information security risk assessment for small and medium-sized business. Cybersecurity: Education, Science, Technique, 2(14), 158-175. https://doi.org/10.28925/2663-4023.2021.13.158175
Dziuba, L. F., & Chmyr, O. Y. (2022). Information security risk assessment using mathematical statistics methods. Bulletin of Lviv State University of Life Safety, 26, 47-54. https://doi.org/10.32447/20784643.26.2022.06
de Wit, J., Pieters, W., & van Gelder, P. (2025). Sources of security risk information: What do professionals rely on for their risk assessment? The Information Society, 41(3), 157-172. https://doi.org/10.1080/01972243.2025.2475311
Alhawari, S., Karadsheh, L., Nehari Talet, A., & Mansour, E. (2012). Knowledge-based risk management framework for information technology projects. International Journal of Information Management, 32(1), 50-65. https://doi.org/10.1016/j.ijinfomgt.2011.07.002
International Organization for Standardization. (2022). ISO/IEC 27005:2022 Information technology-Security techniques-Information security risk management. https://www.iso.org/standard/80585.html
National Institute of Standards and Technology. (2012) .Guide for conducting risk assessments (NIST Special Publication 800-30 Rev. 1). U.S. Department of Commerce. https://doi.org/10.6028/NIST.SP.800-30r1
FIRST. (2019). Common vulnerability scoring system (CVSS) v3.1: Specification document. https://www.first.org/cvss/specification-document
Liu, F. T., Ting, K. M., & Zhou, Z.-H. (2008). Isolation forest. In 2008 Eighth IEEE International Conference on Data Mining (ICDM). IEEE. https://doi.org/10.1109/icdm.2008.17
Chater, M., Borgi, A., Slama, M. T., Sfar-Gandoura, K., & Landoulsi, M. I. (2022). Fuzzy isolation forest for anomaly detection. Procedia Computer Science, 207, 916-925. https://doi.org/10.1016/j.procs.2022.09.147
Hochreiter, S., & Schmidhuber, J. (1997). Long short-term memory. Neural Computation, 9(8), 1735-1780. https://doi.org/10.1162/neco.1997.9.8.1735
Kalchbrenner, N., Danihelka, I., & Graves, A. (2015). Grid long short-term memory. arXiv. https://arxiv.org/abs/1507.01526
Li, X., Li, J., Qu, Y., & He, D. (2020). Semi-supervised gear fault diagnosis using raw vibration signal based on deep learning. Chinese Journal of Aeronautics, 33(2), 418-426. https://doi.org/10.1016/j.cja.2019.04.018
Powers, D. M. W. (2011). Evaluation: From precision, recall and F-measure to ROC, informedness, markedness & correlation. Journal of Machine Learning Technologies, 2(1). https://doi.org/10.9735/2229-3981
Published
How to Cite
Issue
Section
License
Copyright (c) 2026 Олександр Будзинський, Юрій Щавінський, Тетяна Мужанова, Юрій Якименко, Діана Примаченко
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
