The article addresses the problem of generating recommendations for critical infrastructure objects under conditions of increasing cyber threats, large volumes of streaming data, and the need for rapid decision-making. The relevance of the study is determined by the necessity to enhance the resilience of critical infrastructure through the use of intelligent decision support systems. The purpose of the research is to develop an integrated approach to recommendation generation based on streaming data, machine learning methods, Bayesian ranking, and explainable artificial intelligence. The study employs methods of anomaly detection, threat classification, risk forecasting, rule-based filtering, and XAI approaches for explaining generated recommendations. The proposed architecture provides real-time data processing and takes into account risks, security policies, and the operational context of the infrastructure object. Experimental validation on datasets demonstrated high system efficiency: F1 = 0.90, AUROC = 0.96, while processing latency did not exceed 0.8 s under a load of up to 10,000 messages per second. It was established that the adaptive self-updating mechanism reduces the number of false alarms by 43% and increases operators’ trust in the recommendation system. The obtained results confirm the prospects for the practical application of the proposed approach in supporting decision-making processes at critical infrastructure facilities.

Problems in programming 2026; 2: 16-27

Yang Y., McLaughlin K., Littler T., Sezer S., Wang H. Rule-Based Intrusion Detection System for SCADA Networks.

Umer M. A., Mathur A. P., Junejo K. N. Machine learning for intrusion detection in challenges, and recommendations.

Zhao X. та ін. Anomaly Detection Approach in Industrial Control Systems Based on Measurement Data.

Pawlicka A., Pawlicki M., Kozik R., Choraś R. S. A Systematic Review of Recommender Systems and Their Applications in Cybersecurity.

Ferreira L. та ін. Recommender Systems in Cybersecurity.

Capuano N., Fenza G., Loia V., Stanzione C. Explainable

Artificial CyberSecurity: A Intelligence Survey.

Phillips P. J., Hahn C. A., Fontana P. C., Yates A. N., Greene K. K., Broniatowski D. A., Przybocki M. A. Four Principles of Explainable Artificial Intelligence.

Yang Y., McLaughlin K., Littler T., Sezer S., Wang H. Rule-Based Intrusion Detection System for SCADA Networks.

Lops P., de Gemmis M., Semeraro G. Content based Recommender Systems: State of the Art and Trends // Recommender Systems Handbook. Springer, 2011. P. 73–105.

Su X., Khoshgoftaar T. M. A Survey of Collaborative Filtering Techniques // Advances in Artificial Intelligence. 2009. Vol. 2009.

Burke R. Hybrid Recommender Systems: Survey and Experiments // User Modeling and User-Adapted Interaction. 2002. Vol. 12. P. 331–370.

Zhao X., Li Y., Chen H., Yu R. Anomaly Detection Approach in Industrial Control Systems Based on Measurement Data // Information. 2022. Vol. 13. No. 10. Article 450.

Müller M., Sommer R., Kargl F. Using Reinforcement Learning and LSTM for Adaptive Anomaly Detection in Cyber Physical Systems // Computers & Security. 2020. Vol. 95. Article 101827.