arXiv: UNAD+: An Explainable Hybrid Framework for Unknown Network Attack Detection

This publication introduces UNAD+, a novel hybrid artificial intelligence framework designed to detect previously unknown network attacks with enhanced explainability. The framework combines deep learning and rule-based methods to identify zero-day threats while providing clear, auditable reasoning for its classifications. This is not a regulatory mandate but a technical research paper, yet it signals a shift toward more transparent AI-driven cybersecurity tools that could influence future compliance expectations under frameworks like the EU AI Act and NIS2 Directive.

Organizations in critical infrastructure sectors—such as energy, finance, healthcare, and telecommunications—that rely on network intrusion detection systems will be most affected. Compliance teams in these sectors must prepare for potential regulatory requirements to use explainable AI in security monitoring, as regulators increasingly demand accountability for automated threat detection decisions. The paper’s emphasis on interpretability aligns with the EU AI Act’s high-risk classification for AI systems used in critical infrastructure.

Compliance teams should monitor this research as an indicator of emerging best practices. Specifically, they should begin evaluating their current network detection tools for explainability gaps, document how AI-driven security decisions are made, and engage with technical teams to assess whether hybrid frameworks like UNAD+ could meet future auditability requirements. Proactive alignment with explainable AI principles now will reduce regulatory risk as standards evolve.