{"id":"https://openalex.org/W7127182858","doi":"https://doi.org/10.1002/cpe.70457","title":"AI\u2010Driven Threat Detection: Synergizing Edge Honeypots and IDS in SDN\u2010Enabled Edge Computing","display_name":"AI\u2010Driven Threat Detection: Synergizing Edge Honeypots and IDS in SDN\u2010Enabled Edge Computing","publication_year":2026,"publication_date":"2026-02-01","ids":{"openalex":"https://openalex.org/W7127182858","doi":"https://doi.org/10.1002/cpe.70457"},"language":"en","primary_location":{"id":"doi:10.1002/cpe.70457","is_oa":true,"landing_page_url":"https://doi.org/10.1002/cpe.70457","pdf_url":"https://onlinelibrary.wiley.com/doi/pdfdirect/10.1002/cpe.70457","source":{"id":"https://openalex.org/S11065456","display_name":"Concurrency and Computation Practice and Experience","issn_l":"1532-0626","issn":["1532-0626","1532-0634"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320595","host_organization_name":"Wiley","host_organization_lineage":["https://openalex.org/P4310320595"],"host_organization_lineage_names":["Wiley"],"type":"journal"},"license":"public-domain","license_id":"https://openalex.org/licenses/public-domain","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Concurrency and Computation: Practice and Experience","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://onlinelibrary.wiley.com/doi/pdfdirect/10.1002/cpe.70457","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5072496586","display_name":"Afef Slimani","orcid":null},"institutions":[{"id":"https://openalex.org/I3129295481","display_name":"Tunisia Private University","ror":"https://ror.org/033xhzd30","country_code":"TN","type":"education","lineage":["https://openalex.org/I3129295481"]}],"countries":["TN"],"is_corresponding":true,"raw_author_name":"Afef Slimani","raw_affiliation_strings":["Faculty of Sciences of Tunis University Campus  Tunis Tunisia"],"raw_orcid":"https://orcid.org/0009-0005-7000-6816","affiliations":[{"raw_affiliation_string":"Faculty of Sciences of Tunis University Campus  Tunis Tunisia","institution_ids":["https://openalex.org/I3129295481"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5031323497","display_name":"Karim Karoui","orcid":"https://orcid.org/0000-0003-2507-9571"},"institutions":[{"id":"https://openalex.org/I42731748","display_name":"National Institute of Applied Science and Technology","ror":"https://ror.org/00qn2rd91","country_code":"TN","type":"facility","lineage":["https://openalex.org/I42731748"]}],"countries":["TN"],"is_corresponding":false,"raw_author_name":"Kamel Karoui","raw_affiliation_strings":["National Institute of Applied Sciences and Technology (INSAT)  Centre Urbain Nord, Tunis Tunisia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"National Institute of Applied Sciences and Technology (INSAT)  Centre Urbain Nord, Tunis Tunisia","institution_ids":["https://openalex.org/I42731748"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5072496586"],"corresponding_institution_ids":["https://openalex.org/I3129295481"],"apc_list":{"value":4740,"currency":"USD","value_usd":4740},"apc_paid":{"value":4740,"currency":"USD","value_usd":4740},"fwci":42.5131,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.99535011,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":"38","issue":"3","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.6599000096321106,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.6599000096321106,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":0.15800000727176666,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10273","display_name":"IoT and Edge/Fog Computing","score":0.01889999955892563,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/honeypot","display_name":"Honeypot","score":0.8076000213623047},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7997000217437744},{"id":"https://openalex.org/keywords/edge-computing","display_name":"Edge computing","score":0.6053000092506409},{"id":"https://openalex.org/keywords/enhanced-data-rates-for-gsm-evolution","display_name":"Enhanced Data Rates for GSM Evolution","score":0.5982999801635742},{"id":"https://openalex.org/keywords/adaptability","display_name":"Adaptability","score":0.5649999976158142},{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.5473999977111816},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.41350001096725464},{"id":"https://openalex.org/keywords/edge-device","display_name":"Edge device","score":0.4104999899864197},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.39719998836517334}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.892300009727478},{"id":"https://openalex.org/C191267431","wikidata":"https://www.wikidata.org/wiki/Q911932","display_name":"Honeypot","level":2,"score":0.8076000213623047},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7997000217437744},{"id":"https://openalex.org/C2778456923","wikidata":"https://www.wikidata.org/wiki/Q5337692","display_name":"Edge computing","level":3,"score":0.6053000092506409},{"id":"https://openalex.org/C162307627","wikidata":"https://www.wikidata.org/wiki/Q204833","display_name":"Enhanced Data Rates for GSM Evolution","level":2,"score":0.5982999801635742},{"id":"https://openalex.org/C177606310","wikidata":"https://www.wikidata.org/wiki/Q5674297","display_name":"Adaptability","level":2,"score":0.5649999976158142},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.5473999977111816},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.41350001096725464},{"id":"https://openalex.org/C138236772","wikidata":"https://www.wikidata.org/wiki/Q25098575","display_name":"Edge device","level":3,"score":0.4104999899864197},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.4018999934196472},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.39719998836517334},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.39640000462532043},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3946000039577484},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.3671000003814697},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.3582000136375427},{"id":"https://openalex.org/C90936777","wikidata":"https://www.wikidata.org/wiki/Q917189","display_name":"Host-based intrusion detection system","level":4,"score":0.35690000653266907},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.3165000081062317},{"id":"https://openalex.org/C97541855","wikidata":"https://www.wikidata.org/wiki/Q830687","display_name":"Reinforcement learning","level":2,"score":0.29679998755455017},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.2962000072002411},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.2957000136375427},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.2874999940395355},{"id":"https://openalex.org/C113174947","wikidata":"https://www.wikidata.org/wiki/Q2859736","display_name":"Tree (set theory)","level":2,"score":0.2847000062465668},{"id":"https://openalex.org/C137524506","wikidata":"https://www.wikidata.org/wiki/Q2247688","display_name":"Anomaly-based intrusion detection system","level":3,"score":0.2757999897003174},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.2678999900817871},{"id":"https://openalex.org/C84525736","wikidata":"https://www.wikidata.org/wiki/Q831366","display_name":"Decision tree","level":2,"score":0.2533999979496002},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.2526000142097473}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1002/cpe.70457","is_oa":true,"landing_page_url":"https://doi.org/10.1002/cpe.70457","pdf_url":"https://onlinelibrary.wiley.com/doi/pdfdirect/10.1002/cpe.70457","source":{"id":"https://openalex.org/S11065456","display_name":"Concurrency and Computation Practice and Experience","issn_l":"1532-0626","issn":["1532-0626","1532-0634"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320595","host_organization_name":"Wiley","host_organization_lineage":["https://openalex.org/P4310320595"],"host_organization_lineage_names":["Wiley"],"type":"journal"},"license":"public-domain","license_id":"https://openalex.org/licenses/public-domain","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Concurrency and Computation: Practice and Experience","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1002/cpe.70457","is_oa":true,"landing_page_url":"https://doi.org/10.1002/cpe.70457","pdf_url":"https://onlinelibrary.wiley.com/doi/pdfdirect/10.1002/cpe.70457","source":{"id":"https://openalex.org/S11065456","display_name":"Concurrency and Computation Practice and Experience","issn_l":"1532-0626","issn":["1532-0626","1532-0634"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320595","host_organization_name":"Wiley","host_organization_lineage":["https://openalex.org/P4310320595"],"host_organization_lineage_names":["Wiley"],"type":"journal"},"license":"public-domain","license_id":"https://openalex.org/licenses/public-domain","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Concurrency and Computation: Practice and Experience","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.4563955068588257}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W7127182858.pdf"},"referenced_works_count":13,"referenced_works":["https://openalex.org/W2040340473","https://openalex.org/W2768152971","https://openalex.org/W2799758613","https://openalex.org/W2859928566","https://openalex.org/W4291433199","https://openalex.org/W4313891707","https://openalex.org/W4321016094","https://openalex.org/W4391264693","https://openalex.org/W4392006602","https://openalex.org/W4399199547","https://openalex.org/W4404064052","https://openalex.org/W4404600696","https://openalex.org/W4404767278"],"related_works":[],"abstract_inverted_index":{"ABSTRACT":[0],"This":[1],"paper":[2],"proposes":[3],"an":[4],"intelligent":[5],"and":[6,25,41,55,77,85,100,137,148],"adaptive":[7],"security":[8],"framework":[9,97],"for":[10,125],"internet":[11],"of":[12],"things":[13],"(IoT)":[14],"environments":[15],"by":[16],"integrating":[17],"edge":[18],"Honeypots,":[19],"AI\u2010driven":[20],"intrusion":[21],"detection":[22,73,122,132],"systems":[23],"(IDS),":[24],"software\u2010defined":[26],"networking":[27],"(SDN).":[28],"The":[29,68,96,115],"system":[30],"is":[31,60,98],"designed":[32],"to":[33,53,63,92],"enhance":[34],"real\u2010time":[35],"threat":[36],"detection,":[37],"reduce":[38],"false":[39,135],"positives,":[40,136],"dynamically":[42],"mitigate":[43],"attacks.":[44],"Edge":[45],"Honeypots":[46],"are":[47],"deployed":[48],"at":[49],"the":[50,120,146],"network":[51],"perimeter":[52],"attract":[54],"analyze":[56],"malicious":[57],"traffic,":[58],"which":[59],"then":[61],"used":[62],"train":[64],"AI\u2010based":[65],"IDS":[66,69,147],"models.":[67],"employ":[70],"a":[71,103,141],"hybrid":[72],"mechanism":[74],"combining":[75],"signature\u2010based":[76],"anomaly\u2010based":[78],"techniques.":[79],"SDN":[80],"facilitates":[81],"centralized":[82],"traffic":[83],"control":[84],"dynamic":[86],"rule":[87],"updates,":[88],"enabling":[89],"rapid":[90],"responses":[91],"new":[93],"attack":[94],"vectors.":[95],"implemented":[99],"evaluated":[101],"in":[102],"simulated":[104],"SDN\u2010IoT":[105],"environment":[106],"using":[107],"Mininet,":[108],"with":[109],"several":[110],"machine":[111],"learning":[112,143],"models":[113],"benchmarked.":[114],"Decision":[116],"Tree":[117],"model":[118],"achieves":[119],"highest":[121],"accuracy":[123],"(97%)":[124],"IoT":[126],"threats.":[127],"Experimental":[128],"results":[129],"demonstrate":[130],"improved":[131],"performance,":[133],"reduced":[134],"enhanced":[138],"adaptability":[139],"through":[140],"continuous":[142],"loop":[144],"between":[145],"honeypots.":[149]},"counts_by_year":[{"year":2026,"cited_by_count":2}],"updated_date":"2026-05-28T09:10:13.091523","created_date":"2026-02-03T00:00:00"}