AI-Driven Zero-Trust Security Framework for Detecting Advanced Persistent Threats in Cloud Environments

• Author(s): Aidar Imashev
• Paper ID: 1711893
• Page: 477-491
• Published Date: 10-11-2025
• Published In: Iconic Research And Engineering Journals
• Publisher: IRE Journals
• e-ISSN: 2456-8880
• Volume/Issue: Volume 9 Issue 5 November-2025

Abstract

The growing complexity of Advanced Persistent Threats (APTs) poses a serious concern for cloud systems that rely on distributed resources and virtualized services. Conventional perimeter-based defenses and rule-based mechanisms are not always effective at identifying stealthy APT campaigns that dynamically evolve in multi-tenancy environments. This paper presents a Zero-Trust Security Framework based on AI that combines hybrid machine learning models with adaptive policy automation to identify, respond to, and mitigate APTs in multi-cloud ecosystems. The framework is based on the Extreme Gradient Boosting (XGBoost) to analyze structured log and network data, and a Deep Neural Network (DNN) to identify behavioral and temporal abnormalities that can be interpreted as the presence of malicious persistence or lateral movement. Based on the resulting model, trust scores are continually recalculated and dynamic access controls are imposed, consistent with Zero-Trust principles. One case study run on AWS and Azure infrastructure tests performance metrics, including detection accuracy, latency, and false-positive rate, under simulated attacks. The experimental findings suggest that the proposed framework can dramatically improve anomaly detection performance and response time compared to traditional models. Also, automated trust recalibration and microsegmentation enhance the system's overall resilience and compliance. This study demonstrates the potential of integrating artificial intelligence into Zero-Trust architectures to proactively detect and prevent APTs, providing a scalable, intelligent approach to securing cloud-native infrastructure.

Keywords

Artificial Intelligence (AI); Zero-Trust Architecture (ZTA); Advanced Persistent Threats (APTs); Cloud Security; Machine Learning; Behavioral Analytics; XGBoost; Deep Neural Networks; Adaptive Access Control; Policy Automation

Citations

IRE Journals:
Aidar Imashev "AI-Driven Zero-Trust Security Framework for Detecting Advanced Persistent Threats in Cloud Environments" Iconic Research And Engineering Journals Volume 9 Issue 5 2025 Page 477-491

IEEE:
Aidar Imashev "AI-Driven Zero-Trust Security Framework for Detecting Advanced Persistent Threats in Cloud Environments" Iconic Research And Engineering Journals, 9(5)