Keywords
cloud security
Abstract
Modern digital infrastructure faces increasingly complex security threats across embedded devices, cloud platforms, and large-scale network environments. This article proposes an explainable security risk analytics framework that integrates network anomaly detection, vulnerability quantification, and cloud infrastructure security assessment. The framework combines ensemble learning for traffic anomaly detection, CVSS-based vulnerability metrics for risk scoring, and policy-driven evidence collection for cloud environments. SHAP-based explanation is used to identify the most influential traffic and vulnerability features behind model outputs. The article argues that effective cybersecurity analytics must move beyond isolated detection models toward integrated, interpretable, and policy-aligned risk assessment. By combining embedded network monitoring with cloud vulnerability analysis, the proposed framework supports more transparent prioritization of remediation actions. The study contributes to cybersecurity research by linking explainable machine learning, vulnerability scoring, and cloud security governance into a unified risk analytics model.
References
Shao, W. (2026). Interpretable Ensemble Learning for Network Traffic Anomaly Detection: A SHAP-Based Explainable AI Framework for Embedded Systems Security. arXiv preprint arXiv:2603.28654.
Shao, W. (2026). Policy-Driven Vulnerability Risk Quantification Framework for Large-Scale Cloud Infrastructure Data Security. arXiv preprint arXiv:2604.06252.
Shao, W. (2026). Design and Implementation of an Open-Source Security Framework for Cloud Infrastructure. arXiv preprint arXiv:2604.03331.
Guo, Z., Zhao, K., & Zhang, L. (2026). InstanceRSR: Real-World Super-Resolution via Instance-Aware Representation Alignment. ICASSP 2026 - 2026 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP), Barcelona, Spain, 10577–10581. doi: 10.1109/ICASSP55912.2026.11462690.
Bao, W., Xu, K., & Leng, Q. (2024). Research on the Financial Credit Risk Management Model of Real Estate Supply Chain Based on GA-SVM Algorithm. Procedia Computer Science, 243, 900–909.
Wang, C., Zheng, G., Zhang, R., & Liu, X. (2026). DPPF: Dual-Path Pre-Fusion With Semantic-Guided Encoding for Remote Sensing Image Captioning. IEEE Journal of Selected Topics in Applied Earth Observations and Remote Sensing.
Mirsky, Y., Doitshman, T., Elovici, Y., & Shabtai, A. (2018). Kitsune: An ensemble of autoencoders for online network intrusion detection. Network and Distributed System Security Symposium.
Gaspar, D., Silva, P., & Silva, C. (2024). Explainable AI for intrusion detection systems: LIME and SHAP applicability on multi-layer perceptron. IEEE Access, 12, 30164–30175.
FIRST. (2023). Common Vulnerability Scoring System Version 4.0 Specification Document.
National Institute of Standards and Technology. (2024). National Vulnerability Database: Vulnerability Metrics.
Arrieta, A. B., Díaz-Rodríguez, N., Del Ser, J., et al. (2020). Explainable artificial intelligence: Concepts, taxonomies, opportunities and challenges. Information Fusion, 58, 82–115.