[2604.03912] Automating Cloud Security and Forensics Through a Secure-by-Design Generative AI Framework

Computer Science > Cryptography and Security arXiv:2604.03912 (cs) [Submitted on 5 Apr 2026] Title:Automating Cloud Security and Forensics Through a Secure-by-Design Generative AI Framework Authors:Dalal Alharthi, Ivan Roberto Kawaminami Garcia View a PDF of the paper titled Automating Cloud Security and Forensics Through a Secure-by-Design Generative AI Framework, by Dalal Alharthi and 1 other authors View PDF HTML (experimental) Abstract:As cloud environments become increasingly complex, cybersecurity and forensic investigations must evolve to meet emerging threats. Large Language Models (LLMs) have shown promise in automating log analysis and reasoning tasks, yet they remain vulnerable to prompt injection attacks and lack forensic rigor. To address these dual challenges, we propose a unified, secure-by-design GenAI framework that integrates PromptShield and the Cloud Investigation Automation Framework (CIAF). PromptShield proactively defends LLMs against adversarial prompts using ontology-driven validation that standardizes user inputs and mitigates manipulation. CIAF streamlines cloud forensic investigations through structured, ontology-based reasoning across all six phases of the forensic process. We evaluate our system on real-world datasets from AWS and Microsoft Azure, demonstrating substantial improvements in both LLM security and forensic accuracy. Experimental results show PromptShield boosts classification performance under attack conditions, achieving precisio...