Secure AI-Driven Identity Infrastructure for Regulated Sectors

Authors

  • Pramod Gannavarapu, Rama Krishna Raju Samantapudi

Keywords:

AI-driven identity governance, Hybrid cloud identity infrastructure, Real-time monitoring & anomaly detection, Adaptive authentication, Regulatory compliance (GDPR, HIPAA).

Abstract

The regulated industry is facing increased threats to identity as attacks on fleeting clouds, APIs, and mobile devices increase the attack surface. To provide real-time monitoring, adaptive authentication, and auditable compliance, this paper suggests a secure and AI-driven identity infrastructure, a fusion of ML, NLP, and LLM-driven analytics with zero-trust design. The work was inspired by the fact that identity-related breaches are prevalent in most breaches, including the hack of Global data breach victims in 2023 by a total of 43% of all government breaches, which are common, particularly in healthcare, finance, and government ecosystems, where HIPAA, GDPR, and SOX control identity theft. The architecture employs authentication, authorization, entitlement, and evidence in restricted, microservice settings; expels operational telemetry into online feature stores; and implements policy-as-code in a hybrid cloud. Approaches combine scaling risk scoring with gradient-boosting session anomaly sequence models, toxic entitlement graph analytics, and federated learning to minimize data movement. Covering 100,000 sessions in four weeks, the stack outperforms rules-based baselines on metrics including accuracy, recall, F1, ROC-AUC, median arena decision latency, coverage of compliance, newly seen evidence, and false challenges. Findings show that 92 out of 100 fraud attempts were reported caught in 30 seconds (vs. a 60-second baseline), resulting in 31 fewer attempted frauds, a 19-point improvement in coverage of evidence, and the availability of decisions at 99.6% in stressful situations. Up to 35% of fraud was reduced, and the user experience was maintained at a much higher level using adaptive authentication. The study concludes by discussing governance, privacy-saving methods, and a research agenda focused on standard benchmarks, compliance, and adaptive compliance.

Downloads

Download data is not yet available.

References

Bakshi, K. (2017, March). Microservices-based software architecture and approaches. In 2017 IEEE aerospace conference (pp. 1-8). IEEE.

Bonthu, C., Kumar, A., & Goel, G. (2025). Impact of AI and machine learning on master data management. Journal of Information Systems Engineering and Management. https://www.jisem-journal.com/index.php/journal/article/view/5186

Brahmbhatt, R., & Sardana, J. (2025). Empowering patient-centric communication: Integrating quiet hours for healthcare notifications with retail & e-commerce operations strategies. Journal of Information Systems Engineering and Management. https://www.jisem-journal.com/index.php/journal/article/view/3677

Chadha, K. S. (2025). Edge AI for real-time ICU alarm fatigue reduction: Federated anomaly detection on wearable streams. Utilitas Mathematica, 122(2), 291–308. https://utilitasmathematica.com/index.php/Index/article/view/2708

Chadha, K. S. (2025). Zero-trust data architecture for multi-hospital research: HIPAA-compliant unification of EHRs, wearable streams, and clinical trial analytics. International Journal of Computational and Experimental Science and Engineering, 12(3), 1–11. https://ijcesen.com/index.php/ijcesen/article/view/3477/987

Chavan, A. (2025). The role of domain-driven design in successful microservices migration strategies. Journal of Information Systems Engineering and Management. https://www.jisem-journal.com/index.php/journal/article/view/8888

Ciuchita, R., Medberg, G., Penttinen, V., Lutz, C., & Heinonen, K. (2022). Affordances advancing user-created communication (UCC) in service: interactivity, visibility and anonymity. Journal of Service Management, 33(4/5), 688-704.

Ding, Z., Han, X., Liu, P., & Niethammer, M. (2021). Local temperature scaling for probability calibration. In Proceedings of the IEEE/CVF International Conference on Computer Vision (pp. 6889-6899).

Dongiovanni, A. (2024). Zero Trust Network Security Model in Containerized Environments (Doctoral dissertation, Politecnico di Torino).

Faruk, O. M. (2024). ADVANCED COMPUTING APPLICATIONS IN BI DASHBOARDS: IMPROVING REAL-TIME DECISION SUPPORT FOR GLOBAL ENTERPRISES. International Journal of Business and Economics Insights, 4(3), 25-60.

Giorio, E. (2021). Cost optimization of IaaS-based key-value stores through efficient cluster configurations and data placement.

Goel, G., & Bhramhabhatt, R. (2024). Dual sourcing strategies. International Journal of Science and Research Archive, 13(2), 2155. https://doi.org/10.30574/ijsra.2024.13.2.2155

Grover, V., Verma, I., & Rajagopalan, P. (2023). Achieving Digital Transformation Using Hybrid Cloud: Design standardized next-generation applications for any infrastructure. Packt Publishing Ltd.

Hassan, S. U., Saleem, A., Soroya, S. H., Safder, I., Iqbal, S., Jamil, S., ... & Nawaz, R. (2021). Sentiment analysis of tweets through Altmetrics: A machine learning approach. Journal of Information Science, 47(6), 712-726.

Huang, K., Liu, D., Chen, T., Wang, Y., Wang, C., & Shi, W. (2024). Real-time map rendering and interaction: a stylized hierarchical symbol model. International Journal of Digital Earth, 17(1), 2367728.

Joseph, J. (2023). Trust, but Verify: Audit-ready logging for clinical AI.

Karwa, K. (2025). Developing industry-specific career advising models for design students: Creating frameworks tailored to the unique needs of industrial design, product design, and UI/UX job markets. Journal of Information Systems Engineering and Management. https://www.jisem-journal.com/index.php/journal/article/view/8893

Khraisat, A., Alazab, A., Singh, S., Jan, T., & Jr. Gomez, A. (2024). Survey on federated learning for intrusion detection system: Concept, architectures, aggregation strategies, challenges, and future directions. ACM Computing Surveys, 57(1), 1-38.

Koneru, N. M. K. (2025). Centralized logging and observability in AWS: Implementing ELK stack for enterprise applications. IJCESEN. Advance online publication. https://www.ijcesen.com/index.php/ijcesen/article/view/2289

Koneru, N. M. K. (2025). Containerization best practices: Using Docker and Kubernetes for enterprise applications. Journal of Information Systems Engineering and Management. https://www.jisem-journal.com/index.php/journal/article/view/8905

Kumar, A. (2019). The convergence of predictive analytics in driving business intelligence and enhancing DevOps efficiency. International Journal of Computational Engineering and Management, 6(6), 118-142. Retrieved from https://ijcem.in/wp-content/uploads/THE-CONVERGENCE-OF-PREDICTIVE-ANALYTICS-IN-DRIVING-BUSINESS-INTELLIGENCE-AND-ENHANCING-DEVOPS-EFFICIENCY.pdf

Kummari, D. N. (2020). Machine Learning Applications inRegulatory Compliance Monitoring forIndustrial Operations. Global Research Development (GRD) ISSN: 2455-5703, 5(12), 75-95.

Malik, G. (2025). Business continuity & incident response. Journal of Information Systems Engineering and Management, 10(45s), 451–473. https://www.jisem-journal.com/index.php/journal/article/view/8891

Mazur, I., Rak, J., & Nowicki, K. (2021). Ensuring the qoe-related fairness to reduce the user abandonment ratio. Sensors, 21(21), 7050.

Neelakrishnan, P. (2024). Traditional Data Security. In Autonomous Data Security: Creating a Proactive Enterprise Protection Plan (pp. 41-86). Berkeley, CA: Apress.

Nyati, S. (2018). Transforming telematics in fleet management: Innovations in asset tracking, efficiency, and communication. International Journal of Science and Research (IJSR), 7(10), 1804-1810. Retrieved from https://www.ijsr.net/getabstract.php?paperid=SR24203184230

Oser, P. (2022). Security risks of iot devices: From device characteristics to future risk score predictions. Universitaet Ulm (Germany).

Pinnapareddy, N. R. (2025). Carbon conscious scheduling in Kubernetes to cut energy use and emissions. International Journal of Computational and Experimental Science and Engineering. https://ijcesen.com/index.php/ijcesen/article/view/3785

Raju, R. K. (2017). Dynamic memory inference network for natural language inference. International Journal of Science and Research (IJSR), 6(2). https://www.ijsr.net/archive/v6i2/SR24926091431.pdf

Richetelli, N. (2020). Statistical Evaluation of Randomly Acquired Characteristics on Outsoles with Implications Regarding Chance Co-Occurrence and Spatial Randomness. West Virginia University.

Rodriguez, M. A., & Buyya, R. (2019). Container‐based cluster orchestration systems: A taxonomy and future directions. Software: Practice and Experience, 49(5), 698-719.

Sardana, J. (2025). Automating global trade compliance through product classification systems. The American Journal of Management and Economics Innovations, 7(4). https://doi.org/10.37547/tajmei/Volume07Issue04-04

Singh, V. (2022). Integrating large language models with computer vision for enhanced image captioning: Combining LLMS with visual data to generate more accurate and context-rich image descriptions. Journal of Artificial Intelligence and Computer Vision, 1(E227). http://doi.org/10.47363/JAICC/2022(1)E227

Spring, M., Faulconbridge, J., & Sarwar, A. (2022). How information technology automates and augments processes: Insights from Artificial‐Intelligence‐based systems in professional service operations. Journal of Operations Management, 68(6-7), 592-618.

Subham, K. (2025). Scalable SaaS implementation governance for enterprise sales operations. International Journal of Computational and Experimental Science and Engineering. https://ijcesen.com/index.php/ijcesen/article/view/3782

Tanti, R. (2024). Study of Phishing Attack and their Prevention Techniques. International Journal of Scientific Research in Engineering and Management, 8(10), 1-8.

Zimmermann, O., Pautasso, C., Lübke, D., Zdun, U., & Stocker, M. (2020, July). Data-oriented interface responsibility patterns: Types of information holder resources. In Proceedings of the European Conference on Pattern Languages of Programs 2020 (pp. 1-25).

Downloads

Published

12.11.2025

How to Cite

Pramod Gannavarapu. (2025). Secure AI-Driven Identity Infrastructure for Regulated Sectors. International Journal of Intelligent Systems and Applications in Engineering, 13(2s), 01–18. Retrieved from https://ijisae.org/index.php/IJISAE/article/view/7913

Issue

Vol. 13 No. 2s (2025)

Section

Research Article

License

Copyright (c) 2025 Pramod Gannavarapu, Rama Krishna Raju Samantapudi

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

All papers should be submitted electronically. All submitted manuscripts must be original work that is not under submission at another journal or under consideration for publication in another form, such as a monograph or chapter of a book. Authors of submitted papers are obligated not to submit their paper for publication elsewhere until an editorial decision is rendered on their submission. Further, authors of accepted papers are prohibited from publishing the results in other publications that appear before the paper is published in the Journal unless they receive approval for doing so from the Editor-In-Chief.

IJISAE open access articles are licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. This license lets the audience to give appropriate credit, provide a link to the license, and indicate if changes were made and if they remix, transform, or build upon the material, they must distribute contributions under the same license as the original.