{"id":"https://openalex.org/W4410311903","doi":"https://doi.org/10.1007/s40747-025-01898-6","title":"Enhanced APT detection with the improved KAN algorithm: capturing interdependencies for better accuracy","display_name":"Enhanced APT detection with the improved KAN algorithm: capturing interdependencies for better accuracy","publication_year":2025,"publication_date":"2025-05-12","ids":{"openalex":"https://openalex.org/W4410311903","doi":"https://doi.org/10.1007/s40747-025-01898-6"},"language":"en","primary_location":{"id":"doi:10.1007/s40747-025-01898-6","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s40747-025-01898-6","pdf_url":"https://link.springer.com/content/pdf/10.1007/s40747-025-01898-6.pdf","source":{"id":"https://openalex.org/S3035462843","display_name":"Complex & Intelligent Systems","issn_l":"2198-6053","issn":["2198-6053","2199-4536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Complex &amp; Intelligent Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://link.springer.com/content/pdf/10.1007/s40747-025-01898-6.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5012436506","display_name":"Weiwu Ren","orcid":"https://orcid.org/0000-0002-3787-636X"},"institutions":[{"id":"https://openalex.org/I106645853","display_name":"Changchun University of Science and Technology","ror":"https://ror.org/007mntk44","country_code":"CN","type":"education","lineage":["https://openalex.org/I106645853"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Weiwu Ren","raw_affiliation_strings":["School of Computer Science and Technology, Changchun University of Science and Technology, Changchun, 130012, Jilin, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Changchun University of Science and Technology, Changchun, 130012, Jilin, China","institution_ids":["https://openalex.org/I106645853"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5104221311","display_name":"Hewen Zhang","orcid":null},"institutions":[{"id":"https://openalex.org/I106645853","display_name":"Changchun University of Science and Technology","ror":"https://ror.org/007mntk44","country_code":"CN","type":"education","lineage":["https://openalex.org/I106645853"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hewen Zhang","raw_affiliation_strings":["School of Computer Science and Technology, Changchun University of Science and Technology, Changchun, 130012, Jilin, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Changchun University of Science and Technology, Changchun, 130012, Jilin, China","institution_ids":["https://openalex.org/I106645853"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063696766","display_name":"Yu Hong","orcid":"https://orcid.org/0009-0008-0389-785X"},"institutions":[{"id":"https://openalex.org/I4210087772","display_name":"National Computer Network Emergency Response Technical Team/Coordination Center of Chinar","ror":"https://ror.org/00247dh76","country_code":"CN","type":"nonprofit","lineage":["https://openalex.org/I4210087772"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yu Hong","raw_affiliation_strings":["National Computer Network Emergency Response Center, Changchun, 130012, Jilin, China"],"affiliations":[{"raw_affiliation_string":"National Computer Network Emergency Response Center, Changchun, 130012, Jilin, China","institution_ids":["https://openalex.org/I4210087772"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100449952","display_name":"Zhiwei Wang","orcid":"https://orcid.org/0000-0002-1612-8573"},"institutions":[{"id":"https://openalex.org/I106645853","display_name":"Changchun University of Science and Technology","ror":"https://ror.org/007mntk44","country_code":"CN","type":"education","lineage":["https://openalex.org/I106645853"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhiwei Wang","raw_affiliation_strings":["School of Computer Science and Technology, Changchun University of Science and Technology, Changchun, 130012, Jilin, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Changchun University of Science and Technology, Changchun, 130012, Jilin, China","institution_ids":["https://openalex.org/I106645853"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5012436506"],"corresponding_institution_ids":["https://openalex.org/I106645853"],"apc_list":{"value":1320,"currency":"GBP","value_usd":1619},"apc_paid":{"value":1320,"currency":"GBP","value_usd":1619},"fwci":5.3159,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.94960192,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":99},"biblio":{"volume":"11","issue":"7","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9958999752998352,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9958999752998352,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.995199978351593,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9940000176429749,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/interdependence","display_name":"Interdependence","score":0.7901110649108887},{"id":"https://openalex.org/keywords/computational-intelligence","display_name":"Computational intelligence","score":0.7680737972259521},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.49012503027915955},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.4285689890384674},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3498905897140503},{"id":"https://openalex.org/keywords/sociology","display_name":"Sociology","score":0.06287029385566711}],"concepts":[{"id":"https://openalex.org/C185874996","wikidata":"https://www.wikidata.org/wiki/Q269699","display_name":"Interdependence","level":2,"score":0.7901110649108887},{"id":"https://openalex.org/C139502532","wikidata":"https://www.wikidata.org/wiki/Q1122090","display_name":"Computational intelligence","level":2,"score":0.7680737972259521},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.49012503027915955},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.4285689890384674},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3498905897140503},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.06287029385566711},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/s40747-025-01898-6","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s40747-025-01898-6","pdf_url":"https://link.springer.com/content/pdf/10.1007/s40747-025-01898-6.pdf","source":{"id":"https://openalex.org/S3035462843","display_name":"Complex & Intelligent Systems","issn_l":"2198-6053","issn":["2198-6053","2199-4536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Complex &amp; Intelligent Systems","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:623241332e0c4c21993a53aa16aea80e","is_oa":true,"landing_page_url":"https://doaj.org/article/623241332e0c4c21993a53aa16aea80e","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Complex & Intelligent Systems, Vol 11, Iss 7, Pp 1-20 (2025)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1007/s40747-025-01898-6","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s40747-025-01898-6","pdf_url":"https://link.springer.com/content/pdf/10.1007/s40747-025-01898-6.pdf","source":{"id":"https://openalex.org/S3035462843","display_name":"Complex & Intelligent Systems","issn_l":"2198-6053","issn":["2198-6053","2199-4536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Complex &amp; Intelligent Systems","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4410311903.pdf","grobid_xml":"https://content.openalex.org/works/W4410311903.grobid-xml"},"referenced_works_count":30,"referenced_works":["https://openalex.org/W2947745012","https://openalex.org/W2962703433","https://openalex.org/W3005127313","https://openalex.org/W3133235094","https://openalex.org/W3134731862","https://openalex.org/W3157836276","https://openalex.org/W3158906645","https://openalex.org/W3172909833","https://openalex.org/W3175039957","https://openalex.org/W3190895447","https://openalex.org/W3196325333","https://openalex.org/W3212868562","https://openalex.org/W4200111155","https://openalex.org/W4206266728","https://openalex.org/W4286795917","https://openalex.org/W4312338606","https://openalex.org/W4312890671","https://openalex.org/W4375928927","https://openalex.org/W4385576445","https://openalex.org/W4388835106","https://openalex.org/W4391548922","https://openalex.org/W4391655576","https://openalex.org/W4391929618","https://openalex.org/W4392881079","https://openalex.org/W4392906983","https://openalex.org/W4394833325","https://openalex.org/W4396821501","https://openalex.org/W4399120237","https://openalex.org/W4399554406","https://openalex.org/W4403295672"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2139079562","https://openalex.org/W2749324135","https://openalex.org/W2051487156","https://openalex.org/W2908433117","https://openalex.org/W2073681303","https://openalex.org/W2969604939","https://openalex.org/W2378306841"],"abstract_inverted_index":{"In":[0],"real-world":[1],"network":[2,28,108,174],"environments,":[3],"advanced":[4],"persistent":[5],"threats":[6],"(APTs)":[7],"are":[8],"characterized":[9],"by":[10,73],"their":[11],"complexity":[12],"and":[13,26,30,39,114,140,146],"persistence.":[14],"Existing":[15],"APT":[16,120,134,160,170],"detection":[17,45,171],"methods":[18],"often":[19],"struggle":[20],"to":[21],"comprehensively":[22],"capture":[23],"the":[24,36,61,75,79,87,105,152],"complex":[25,156,173],"dynamic":[27,57,98],"relationships":[29],"covert":[31,116],"attack":[32,37,117,135],"patterns":[33],"involved":[34],"in":[35,119,133,154,172],"process,":[38],"they":[40],"also":[41,85],"suffer":[42],"from":[43],"insufficient":[44],"effectiveness.":[46],"To":[47],"address":[48],"this,":[49],"we":[50],"propose":[51],"a":[52,96,166],"model":[53,68,84,153],"that":[54,125],"combines":[55,86],"bidirectional":[56,97],"graph":[58,92,99],"attention":[59,100],"with":[60,95,137],"improved":[62,66],"KAN":[63,67],"network.":[64],"The":[65,149],"smoothly":[69],"connects":[70],"control":[71],"points":[72],"using":[74],"interpolation":[76],"properties":[77],"of":[78,91,107,131,144,151,159],"Catmull\u2013Rom":[80],"spline":[81],"function.":[82],"This":[83],"feature":[88],"extraction":[89],"capabilities":[90],"neural":[93],"networks":[94],"mechanism.":[101],"By":[102],"dynamically":[103],"updating":[104],"states":[106],"nodes,":[109],"it":[110],"captures":[111],"multi-step,":[112],"cross-node,":[113],"highly":[115],"features":[118,158],"attacks.":[121],"Experimental":[122],"results":[123],"show":[124],"this":[126],"method":[127],"achieves":[128],"an":[129],"accuracy":[130],"97.10%":[132],"detection,":[136],"false":[138,141],"positive":[139],"negative":[142],"rates":[143],"0.2%":[145],"9.02%,":[147],"respectively.":[148],"effectiveness":[150],"extracting":[155],"behavioral":[157],"attacks":[161],"has":[162],"been":[163],"validated,":[164],"providing":[165],"reliable":[167],"solution":[168],"for":[169],"environments.":[175]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-18T14:38:29.013473","created_date":"2025-10-10T00:00:00"}