Within recent times, cybercriminals have curated a variety of organised and resolute cyber attacks within a range of cyber systems, leading to consequential ramifications to private and governmental institutions. Current security-based automation and orchestrations focus on automating fixed purpose and hard-coded solutions, which are easily surpassed by modern-day cyber attacks. Research within Automated Cyber Defence will allow the development and enabling intelligence response by autonomously defending networked systems through sequential decision-making agents. This article comprehensively elaborates the developments within Automated Cyber Defence through a requirement analysis divided into two sub-areas, namely, automated defence and attack agents and Autonomous Cyber Operation (ACO) Gyms. The requirement analysis allows the comparison of automated agents and highlights the importance of ACO Gyms for their continual development. The requirement analysis is also used to critique ACO Gyms with an overall aim to develop them for deploying automated agents within real-world networked systems. Relevant future challenges were addressed from the overall analysis to accelerate development within the area of Automated Cyber Defence.

翻译：近年来，网络犯罪分子针对各类网络系统策划了一系列有组织且坚决的网络攻击，给私人和政府机构带来了严重后果。当前基于安全自动化和编排的解决方案主要集中于固定用途和硬编码的固定逻辑，这些方案很容易被现代网络攻击所超越。自动化网络防御领域的研究可通过序列决策智能体自主防御网络系统，从而开发并实现智能响应能力。本文通过需求分析全面阐述了自动化网络防御领域的发展，该需求分析分为两个子领域，即自动化防御与攻击智能体，以及自主网络作战（ACO）实验平台。该需求分析不仅能够对比各类自动化智能体，还强调了ACO实验平台对其持续发展的重要性。同时，该需求分析也被用于评估ACO实验平台，整体目标在于推动其发展并最终将自动化智能体部署至真实网络系统中。基于整体分析，本文指出现有相关未来挑战，以加速自动化网络防御领域的发展。