CRISP: Cyber-Resilient Intelligent Systems for Predicting Threats in Digital Ecosystems

Priyanka Verma; Joseph Lemley; Michael Schukat; Donna O'Shea; Thomas Newe

doi:10.1109/ACCESS.2026.3658507

CRISP: Cyber-Resilient Intelligent Systems for Predicting Threats in Digital Ecosystems

Priyanka Verma
, Joseph Lemley
, Michael Schukat
, Donna O'Shea
, Thomas Newe

Department of Electronics & Computer Engineering

Research output: Contribution to journal › Article › peer-review

Abstract

Security is critical for reliable service delivery and ensuring overall business continuity, whether it is smart manufacturing, healthcare, cyber-supply chain, or any other infrastructure using a digital ecosystem. A business model is itself an environment that consists of various complex processes, devices, users, developers, and systems. Every constituent of this ecosystem is equally valuable to the business, and a threat posed on its entities poses a greater risk to the business and its owners. Ensuring cybersecurity within modern business ecosystems is essential to maintaining reliable service delivery and business continuity. Today, smart cyberattackers are unavoidable, but early prediction of such attacks will help organisations to prepare for an attack or before such an attack. Thus, this paper examines the role of predictive analytics and machine learning models in identifying and predicting cyberattack patterns to secure these digital ecosystems. CRISP framework integrates predictive analytics with multiple machine learning models (Random Forest, Logistic Regression, XGBoost, CatBoost, LightGBM, CNN, LSTM, GRU, and ensemble approaches) to enable proactive cyber resilience. In experiments conducted on the Microsoft Malware Prediction dataset with over 2 million samples and 54 refined features, CatBoost achieved the highest AUC-ROC score of 0.723, while ensemble methods achieved an accuracy of 65.8% and an AUC of 0.721. These results demonstrate the robustness and diversity of the evaluated models, confirming the effectiveness of our proposed system in predicting and prioritizing threats. Additionally, we introduce a threat categorization system based on urgency levels, enabling businesses to prioritize their defensive measures effectively. Our approach aims to provide businesses with actionable insights for robust cyber-resilient systems, emphasizing the importance of preemptive threat management in the face of evolving cyber threats.

Original language	English
Pages (from-to)	15841-15868
Number of pages	28
Journal	IEEE Access
Volume	14
DOIs	https://doi.org/10.1109/ACCESS.2026.3658507
Publication status	Published - 2026

Keywords

Cyber Resilience
Cyber Threats
Cybersecurity
Malware Prediction
Risk Assessment

Access to Document

10.1109/ACCESS.2026.3658507

Cite this

@article{86e232066bbc412ebcc922b10b5eab2a,

title = "CRISP: Cyber-Resilient Intelligent Systems for Predicting Threats in Digital Ecosystems",

abstract = "Security is critical for reliable service delivery and ensuring overall business continuity, whether it is smart manufacturing, healthcare, cyber-supply chain, or any other infrastructure using a digital ecosystem. A business model is itself an environment that consists of various complex processes, devices, users, developers, and systems. Every constituent of this ecosystem is equally valuable to the business, and a threat posed on its entities poses a greater risk to the business and its owners. Ensuring cybersecurity within modern business ecosystems is essential to maintaining reliable service delivery and business continuity. Today, smart cyberattackers are unavoidable, but early prediction of such attacks will help organisations to prepare for an attack or before such an attack. Thus, this paper examines the role of predictive analytics and machine learning models in identifying and predicting cyberattack patterns to secure these digital ecosystems. CRISP framework integrates predictive analytics with multiple machine learning models (Random Forest, Logistic Regression, XGBoost, CatBoost, LightGBM, CNN, LSTM, GRU, and ensemble approaches) to enable proactive cyber resilience. In experiments conducted on the Microsoft Malware Prediction dataset with over 2 million samples and 54 refined features, CatBoost achieved the highest AUC-ROC score of 0.723, while ensemble methods achieved an accuracy of 65.8\% and an AUC of 0.721. These results demonstrate the robustness and diversity of the evaluated models, confirming the effectiveness of our proposed system in predicting and prioritizing threats. Additionally, we introduce a threat categorization system based on urgency levels, enabling businesses to prioritize their defensive measures effectively. Our approach aims to provide businesses with actionable insights for robust cyber-resilient systems, emphasizing the importance of preemptive threat management in the face of evolving cyber threats.",

keywords = "Cyber Resilience, Cyber Threats, Cybersecurity, Malware Prediction, Risk Assessment",

author = "Priyanka Verma and Joseph Lemley and Michael Schukat and Donna O'Shea and Thomas Newe",

note = "Publisher Copyright: {\textcopyright} 2013 IEEE.",

year = "2026",

doi = "10.1109/ACCESS.2026.3658507",

language = "English",

volume = "14",

pages = "15841--15868",

journal = "IEEE Access",

issn = "2169-3536",

}

TY - JOUR

T1 - CRISP

T2 - Cyber-Resilient Intelligent Systems for Predicting Threats in Digital Ecosystems

AU - Verma, Priyanka

AU - Lemley, Joseph

AU - Schukat, Michael

AU - O'Shea, Donna

AU - Newe, Thomas

PY - 2026

Y1 - 2026

N2 - Security is critical for reliable service delivery and ensuring overall business continuity, whether it is smart manufacturing, healthcare, cyber-supply chain, or any other infrastructure using a digital ecosystem. A business model is itself an environment that consists of various complex processes, devices, users, developers, and systems. Every constituent of this ecosystem is equally valuable to the business, and a threat posed on its entities poses a greater risk to the business and its owners. Ensuring cybersecurity within modern business ecosystems is essential to maintaining reliable service delivery and business continuity. Today, smart cyberattackers are unavoidable, but early prediction of such attacks will help organisations to prepare for an attack or before such an attack. Thus, this paper examines the role of predictive analytics and machine learning models in identifying and predicting cyberattack patterns to secure these digital ecosystems. CRISP framework integrates predictive analytics with multiple machine learning models (Random Forest, Logistic Regression, XGBoost, CatBoost, LightGBM, CNN, LSTM, GRU, and ensemble approaches) to enable proactive cyber resilience. In experiments conducted on the Microsoft Malware Prediction dataset with over 2 million samples and 54 refined features, CatBoost achieved the highest AUC-ROC score of 0.723, while ensemble methods achieved an accuracy of 65.8% and an AUC of 0.721. These results demonstrate the robustness and diversity of the evaluated models, confirming the effectiveness of our proposed system in predicting and prioritizing threats. Additionally, we introduce a threat categorization system based on urgency levels, enabling businesses to prioritize their defensive measures effectively. Our approach aims to provide businesses with actionable insights for robust cyber-resilient systems, emphasizing the importance of preemptive threat management in the face of evolving cyber threats.

AB - Security is critical for reliable service delivery and ensuring overall business continuity, whether it is smart manufacturing, healthcare, cyber-supply chain, or any other infrastructure using a digital ecosystem. A business model is itself an environment that consists of various complex processes, devices, users, developers, and systems. Every constituent of this ecosystem is equally valuable to the business, and a threat posed on its entities poses a greater risk to the business and its owners. Ensuring cybersecurity within modern business ecosystems is essential to maintaining reliable service delivery and business continuity. Today, smart cyberattackers are unavoidable, but early prediction of such attacks will help organisations to prepare for an attack or before such an attack. Thus, this paper examines the role of predictive analytics and machine learning models in identifying and predicting cyberattack patterns to secure these digital ecosystems. CRISP framework integrates predictive analytics with multiple machine learning models (Random Forest, Logistic Regression, XGBoost, CatBoost, LightGBM, CNN, LSTM, GRU, and ensemble approaches) to enable proactive cyber resilience. In experiments conducted on the Microsoft Malware Prediction dataset with over 2 million samples and 54 refined features, CatBoost achieved the highest AUC-ROC score of 0.723, while ensemble methods achieved an accuracy of 65.8% and an AUC of 0.721. These results demonstrate the robustness and diversity of the evaluated models, confirming the effectiveness of our proposed system in predicting and prioritizing threats. Additionally, we introduce a threat categorization system based on urgency levels, enabling businesses to prioritize their defensive measures effectively. Our approach aims to provide businesses with actionable insights for robust cyber-resilient systems, emphasizing the importance of preemptive threat management in the face of evolving cyber threats.

KW - Cyber Resilience

KW - Cyber Threats

KW - Cybersecurity

KW - Malware Prediction

KW - Risk Assessment

UR - https://www.scopus.com/pages/publications/105029022948

U2 - 10.1109/ACCESS.2026.3658507

DO - 10.1109/ACCESS.2026.3658507

M3 - Article

AN - SCOPUS:105029022948

SN - 2169-3536

VL - 14

SP - 15841

EP - 15868

JO - IEEE Access

JF - IEEE Access

ER -

CRISP: Cyber-Resilient Intelligent Systems for Predicting Threats in Digital Ecosystems

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this