Process mining usage in cybersecurity and software reliability analysis: A systematic literature review

The digitalization of our society is only possible in the presence of secure and reliable software systems governing ongoing critical processes, so-called critical information infrastructures. The understanding of mutual interdependencies of events and processes is crucial for cybersecurity and soft...

Full description

Saved in:
Bibliographic Details
Published inArray (New York) Vol. 13; p. 100120
Main Authors Macak, Martin, Daubner, Lukas, Fani Sani, Mohammadreza, Buhnova, Barbora
Format Journal Article
LanguageEnglish
Published Elsevier Inc 01.03.2022
Elsevier
Subjects
Online AccessGet full text

Cover

Loading…
More Information
Summary:The digitalization of our society is only possible in the presence of secure and reliable software systems governing ongoing critical processes, so-called critical information infrastructures. The understanding of mutual interdependencies of events and processes is crucial for cybersecurity and software reliability. One of the promising ways to tackle these challenges is process mining, which is a set of techniques that aims to mine essential knowledge from processes, thus providing more perspectives and temporal context to data interpretation and process understanding. However, it is unclear how process mining can help and can be practically used in the context of cybersecurity and reliability. Therefore, in this work, we investigate the potential of process mining to aid in cybersecurity and software reliability to analyze and support research efforts in these areas. Concretely, we collect existing process mining applications, discuss current trends and promising research directions that can be used to tackle the current cybersecurity and software reliability challenges. To this end, we conduct a systematic literature review covering 35 relevant research approaches to examine how the process mining is currently used for these tasks and what are the research gaps and promising research directions in the area. This work is an extension of our previous work, which focused solely on the cybersecurity area, based on the observation of relative closeness and similar goals of those two fields, in which some approaches tend to overlap.
ISSN:2590-0056
2590-0056
DOI:10.1016/j.array.2021.100120