Surveying Hybrid Intelligence Approaches that Combine Honeypots and AI for Ransomware Defence in Critical Infrastructure
Ibrahim Shaikh1, Omkar Nachare2, Srivaramangai Ramanujam3
1Ibrahim Shaikh, MS. (Cybersecurity) Student, Department of Information Technology, University of Mumbai, Vidyanagri, Kalina, Santacruz, Mumbai, (Maharashtra), India.
2Omkar Nachare, MS. (Cybersecurity) Student, Department of Information Technology, University of Mumbai, Vidyanagri, Kalina, Santacruz, Mumbai, (Maharashtra), India.
3Srivaramangai Ramanujam, Professor, Department of Information Technology, University of Mumbai, Vidyanagri, Kalina, Santacruz, Mumbai, (Maharashtra), India.
Manuscript received on 01 March 2026 | Revised Manuscript received on 09 March 2026 | Manuscript Accepted on 15 March 2026 | Manuscript published on 30 March 2026 | PP: 1-6 | Volume-14 Issue-6, March 2026 | Retrieval Number: 100.1/ijrte.F834314060326 | DOI: 10.35940/ijrte.F8343.14060326
Open Access | Editorial and Publishing Policies | Cite | Zenodo | OJS | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open-access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: Ransomware is a rapidly increasing hazard to essential networks, including the health care, finance, energy, and government sectors. Traditional security solutions have shown deficiencies in their ability to rapidly recognise zero-day ransomware attacks. This research project proposes a hybrid artificial intelligence-honeypot framework for proactive detection and mitigation of ransomware within critical infrastructure. Honeypot-based security technologies will be combined with artificial intelligence-based behavioural analysis of attackers to identify potential ransomware signatures at the earliest possible stage. Machine learning algorithms provide continuous estimates of file system interactions, network traffic patterns, and system calls captured in honeypot environments to detect and profile malicious behaviour. This research will contribute to the effectiveness of combining deception-based security measures with AI-based behavioural models, thus enhancing the resiliency of ransomware defence solutions in critical infrastructure.
Keywords: Ransomware, Honeypot, Artificial Intelligence, Machine Learning, Cybersecurity, Critical Networks
Scope of the Article: Computer Science and Engineering