Received 07.11.2025, Revised 06.02.2026, Accepted 26.03.2026 Published 20.04.2026

Method of dynamic trust assessment in Zero Trust Architecture based on explainable artificial intelligence

Andriy Palamarchuk

The transformation of contemporary corporate IT infrastructures has rendered conventional cybersecurity models ineffective, prompting a shift to the Zero Trust Architecture (ZTA); however, its practical implementation is complicated by a rigid reliance on static access control rules. The purpose of this study was to develop an innovative method for dynamic trust assessment in the ZTA that effectively combines the high accuracy of automated network anomaly detection with decision-making transparency. To calculate a continuous trust score based on a simulated corporate network traffic dataset, the Extreme Gradient Boosting ensemble machine learning algorithm was applied, while the SHapley Additive exPlanations (SHAP) additive explanations method was used to explain the generated decisions. Experimental verification demonstrated the high effectiveness of the proposed Policy Engine, which achieved an F1-score of 1.00 on the test set. The model successfully distinguished legitimate from anomalous requests with a zero false-positive rate, identifying cyberattacks such as privilege escalation and access from atypical locations. Global feature importance analysis using the SHAP framework confirmed that the type of network connection and device security status are the most significant risk predictors, which fully aligns with the core principles of ZTA. Furthermore, local analysis proved the system’s ability to instantly generate detailed, human-readable text explanations for each access denial, indicating the specific reason for blocking. Due to this level of detail, analysts can directly understand the triggering logic of automated defence systems without the need for time-consuming manual correlation of disparate event logs. The practical significance of the study lies in the creation of a transparent and adaptive tool that can be integrated into modern Security Operations Centres to significantly reduce “alert fatigue” and minimise the Mean Time to Resolution 

cybersecurity; machine learning; SHAP; XGBoost; anomaly detection; adaptive protection
83-93
Palamarchuk, A. (2026). Method of dynamic trust assessment in Zero Trust Architecture based on explainable artificial intelligence. Information Technologies and Computer Engineering, 23(1), 83-93. https://doi.org/10.31649/vitce/1.2026.83

References

  1. Adamson, K.M., & Qureshi, A. (2025). Zero Trust 2.0: Advances, challenges, and future directions in ZTA. Research Squaredoi: 10.21203/rs.3.rs-6602547/v1.
  2. Alquwayzani, A.A., & Albuali, A.A. (2024). A systematic literature review of Zero Trust Architecture for military UAV security systems. IEEE Access, 12, 176033-176056. doi: 10.1109/ACCESS.2024.3503587.
  3. Borchert, O., Howell, G., Kerman, A., Rose, S., Souppaya, M., Scarfone, K., & Barker, W. (2025). Implementing a Zero Trust Architecture: High-level document. Gaithersburg: NIST. doi: 10.6028/NIST.SP.1800-354.
  4. Buck, C., Olenberger, C., Schweizer, A., Völter, F., & Eymann, T. (2021). Never trust, always verify: A multivocal literature review on current knowledge and research gaps of Zero-Trust. Computers & Security, 110, article number 102436. doi: 10.1016/j.cose.2021.102436.
  5. Federici, F., Martintoni, D., & Senni, V. (2023). A Zero-Trust Architecture for remote access in industrial IoT infrastructures. Electronics, 12(3), article number 566. doi: 10.3390/electronics12030566.
  6. He, L., Li, L., & Liu, Y. (2021). Towards chain – aware scaling detection in NFV with reinforcement learning. In 29th international symposium on quality of service (IWQOS) (pp. 1-10). Tokyo: IEEE/ACM. doi: 10.1109/IWQOS52092.2021.9521362.
  7. Hu, Y., Xiao, K., Luo, L., & Chen, L. (2026). An XGBoost-based intrusion detection framework with interpretability analysis for IoT networks. Applied Sciences, 16(2), article number 980. doi: 10.3390/app16020980.
  8. Identity Management Institute. (2024). Dynamic trust scoring in IAM. Retrieved from https://identitymanagementinstitute.org/dynamic-trust-scoring-in-iam.
  9. Jiang, H., He, Z., Ye, G., & Zhang, H. (2020). Network intrusion detection based on PSO-Xgboost model. IEEE Access, 8, 58392-58401. doi: 10.1109/ACCESS.2020.2982418.
  10. Kabir, M.H., Hasan, K.F., Hasan, M.K., & Ansari, K. (2022). Explainable artificial intelligence for smart city application: A secure and trusted platform. In M. Ahmed, S.R. Islam, A. Anwar, N. Moustafa & A.S.K. Pathan (Eds.), Explainable artificial intelligence for cyber security. Studies in Computational Intelligence (Vol. 1025, pp. 241-263). Cham: Springer. doi: 10.1007/978-3-030-96630-0_11.
  11. Liao, X., Yang, S., Xu, J., Liu, L., Liang, W., Yu, S., Ji, Y., & Liu, S. (2025). Improved trust evaluation model based on PBFT and Zero Trust integrated power network security defense method. Symmetry, 17(11), article number 1982. doi: 10.3390/sym17111982.
  12. Mao, Y., Fu, W., Zhao, Y., Yuan, Z., Sun, Z., & Zhao, Y. (2025). A Zero-Trust access control model based on attribute and dynamic trust evaluation for cloud environments. Symmetry, 17(12), article number 2059. doi: 10.3390/sym17122059.
  13. Mensah, F. (2024). Zero Trust Architecture: A comprehensive review of principles, implementation strategies, and future directions in enterprise cybersecurityInternational Journal of Academic and Industrial Research Innovations, 10, 339-346.
  14. Mousa, A., Bentahar, J., & Alam, O. (2021). Multi-dimensional trust for context-aware services computing. Expert Systems with Applications, 172, article number 114592. doi: 10.1016/j.eswa.2021.114592.
  15. Nash, A., Doyle, A., Banks, A., & Adelusi, J.B. (2024). Explainable AI for cybersecurity risk assessment in cloud-native applications. Retrieved from https://www.researchgate.net/publication/392282388_Explainable_AI_for_Cybersecurity_Risk_Assessment_in_Cloud-Native_Applications.
  16. Nwakanma, C.I., Ahakonye, L.A.C., Njoku, J.N., Odirichukwu, J.C., Okolie, S.A., Uzondu, C., Ndubuisi Nweke, C.C., & Kim, D.-S. (2023). Explainable Artificial Intelligence (XAI) for intrusion detection and mitigation in intelligent connected vehicles: A review. Applied Sciences, 13(3), article number 1252. doi: 10.3390/app13031252.
  17. Patil, S., Varadarajan, V., Mazhar, S.M., Sahibzada, A., Ahmed, N., Sinha, O., Kumar, S., Shaw, K., & Kotecha, K. (2022). Explainable artificial intelligence for intrusion detection system. Electronics, 11(19), article number 3079. doi: 10.3390/electronics11193079.
  18. Pigola, A., & de Souza Meirelles, F. (2025). Zero Trust in cybersecurity: Managing critical challenges for effective implementation. Journal of Systems and Information Technology, 27(4), 517-564. doi: 10.1108/JSIT-08-2024-0326.
  19. Rana, M. (2025). Enhancing Zero Trust cybersecurity with AI. Journal of Information Systems Engineering and Management, 10(32s), 92-97. doi: 10.52783/jisem.v10i32s.5191.
  20. Rose, S., Borchert, O., Mitchell, S., & Connelly, S. (2020). Zero Trust Architecture. Gaithersburg: NIST. doi: 10.6028/NIST.SP.800-207.
  21. Schummer, P., del Rio, A., Serrano, J., Jimenez, D., Sánchez, G., & Llorente, Á. (2024). Machine learning-based network anomaly detection: Design, implementation, and evaluation. AI, 5(4), 2967-2983. doi: 10.3390/ai5040143.
  22. Sowjanya, Y., Gopalakrishnan, S., & Kumar, R.D. (2025). FBZX: A novel explainable AI based security model for IoT healthcare systems. In Third international conference on augmented intelligence and sustainable systems (ICAISS) (pp. 106-110). Trichy: IEEE. doi: 10.1109/ICAISS61471.2025.11042096.