Moving from Detection Centric to Prevention Centric Security Using Automation: A Survey

Abstract

In the present time, cybersecurity plays a crucial role in every aspect. Protecting data, hardware, software alone is not sufficient as the technology is growing exponentially and information is easily available. Regarding artificial intelligence data, Sentinel One platform, endpoint security shows that from February 20, 2020, to March 17, 2020, the trend was in an upward motion, as the attacks attempted has peaked to 145 threats per 1,000 endpoints, in comparison to 31 or 38 at the start of that period. According to the Q2 2018 Threat Study, the quarterly report by Nexus guard, the average denial-of-service (DDoS) attack grew to more than 26Gbps, up 500 percent in scale. Regardless of the complexities of the modern cyber climate, stereotypic defense solutions do not fulfill the information security requirements. Earlier detection techniques were sufficient to protect the cyber environment, but due to growing cyber threats such as Ransomware, malware, DDoS, we need strong protection techniques to restrict the threat's entry. Given this context, this study explains the evolution of the Preventive techniques and detective techniques; both the approaches are complementary, which would be discussed in this paper by considering Automation Technology. It introduces the survey of various Automation Technologies implemented for the advancement of prevention-centric security. Based on the evaluation metrics, the selection of better technology is concluded.