{"id":"https://openalex.org/W4413847057","doi":"https://doi.org/10.1109/access.2025.3603975","title":"Design and Computational Modeling of an AI-Based Automated Cybersecurity Incident Response System","display_name":"Design and Computational Modeling of an AI-Based Automated Cybersecurity Incident Response System","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4413847057","doi":"https://doi.org/10.1109/access.2025.3603975"},"language":"en","primary_location":{"id":"doi:10.1109/access.2025.3603975","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3603975","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2025.3603975","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5057655945","display_name":"Jiehao Zhang","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Jiehao Zhang","raw_affiliation_strings":["State Grid Leshan Power Supply Company, Leshan, China"],"affiliations":[{"raw_affiliation_string":"State Grid Leshan Power Supply Company, Leshan, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112929369","display_name":"Simin Li","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Simin Li","raw_affiliation_strings":["State Grid Leshan Power Supply Company, Leshan, China"],"affiliations":[{"raw_affiliation_string":"State Grid Leshan Power Supply Company, Leshan, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087552089","display_name":"Weiwei Huang","orcid":"https://orcid.org/0000-0002-9947-4083"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Weiwei Huang","raw_affiliation_strings":["State Grid Leshan Power Supply Company, Leshan, China"],"affiliations":[{"raw_affiliation_string":"State Grid Leshan Power Supply Company, Leshan, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044354793","display_name":"Hantao Jing","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Haoxin Jing","raw_affiliation_strings":["State Grid Leshan Power Supply Company, Leshan, China"],"affiliations":[{"raw_affiliation_string":"State Grid Leshan Power Supply Company, Leshan, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053100078","display_name":"Qin Zhang","orcid":"https://orcid.org/0000-0002-1449-5046"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Qin Zhang","raw_affiliation_strings":["State Grid Leshan Power Supply Company, Leshan, China"],"affiliations":[{"raw_affiliation_string":"State Grid Leshan Power Supply Company, Leshan, China","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5058838333","display_name":"Xing Xia","orcid":"https://orcid.org/0009-0003-8105-7390"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Xing Xia","raw_affiliation_strings":["State Grid Leshan Power Supply Company, Leshan, China"],"affiliations":[{"raw_affiliation_string":"State Grid Leshan Power Supply Company, Leshan, China","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5057655945"],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":1.4888,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.8650537,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"13","issue":null,"first_page":"154383","last_page":"154394"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9496999979019165,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9496999979019165,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7579571008682251},{"id":"https://openalex.org/keywords/incident-response","display_name":"Incident response","score":0.7202760577201843},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5153202414512634},{"id":"https://openalex.org/keywords/emergency-response","display_name":"Emergency response","score":0.44453346729278564}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7579571008682251},{"id":"https://openalex.org/C2985105721","wikidata":"https://www.wikidata.org/wiki/Q13479512","display_name":"Incident response","level":2,"score":0.7202760577201843},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5153202414512634},{"id":"https://openalex.org/C3017997152","wikidata":"https://www.wikidata.org/wiki/Q814610","display_name":"Emergency response","level":2,"score":0.44453346729278564},{"id":"https://openalex.org/C545542383","wikidata":"https://www.wikidata.org/wiki/Q2751242","display_name":"Medical emergency","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2025.3603975","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3603975","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:cf9173a78e55449abeb848b475e03c39","is_oa":true,"landing_page_url":"https://doaj.org/article/cf9173a78e55449abeb848b475e03c39","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 13, Pp 154383-154394 (2025)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2025.3603975","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3603975","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W2744879410","https://openalex.org/W2758108284","https://openalex.org/W2805759893","https://openalex.org/W2892859754","https://openalex.org/W3135497297","https://openalex.org/W3137136974","https://openalex.org/W3204342889","https://openalex.org/W4293569095","https://openalex.org/W4390970201","https://openalex.org/W4394564352","https://openalex.org/W4400833961","https://openalex.org/W4403447489","https://openalex.org/W4405860979","https://openalex.org/W4408564730","https://openalex.org/W4408716139","https://openalex.org/W4410357080","https://openalex.org/W4411046818"],"related_works":["https://openalex.org/W2750579889","https://openalex.org/W181164373","https://openalex.org/W4379282792","https://openalex.org/W2797526177","https://openalex.org/W3106859200","https://openalex.org/W3042413549","https://openalex.org/W2094630512","https://openalex.org/W2115013958","https://openalex.org/W3022329192","https://openalex.org/W4250307618"],"abstract_inverted_index":{"Modern":[0],"cybersecurity":[1],"operations":[2],"face":[3],"unsustainable":[4],"alert":[5],"volumes,":[6],"averaging":[7],"22,000":[8],"weekly":[9],"alerts":[10],"with":[11],"68%":[12],"false":[13,74,137],"positives,":[14],"overwhelming":[15],"defenses":[16],"and":[17,65,82,118,141],"delaying":[18],"incident":[19,159],"response":[20,63,160],"due":[21],"to":[22,126,145],"limitations":[23],"in":[24,78,86],"conventional":[25],"SOAR":[26],"platforms.":[27],"To":[28],"address":[29],"this,":[30],"an":[31],"AI-driven":[32],"Automated":[33],"Incident":[34],"Response":[35],"(AIR)":[36],"system":[37,130],"is":[38],"proposed,":[39],"integrating":[40],"STIX/TAXII":[41],"multimodal":[42],"fusion":[43],"for":[44,50,61,68,156],"unified":[45],"data":[46],"ingestion,":[47],"attention-LSTM":[48],"networks":[49],"adaptive":[51],"threat":[52],"recognition":[53],"across":[54,110],"temporal":[55],"sequences,":[56],"Bayesian":[57],"game-theoretic":[58],"decision":[59],"layers":[60],"strategic":[62],"planning,":[64],"DRL":[66],"validation":[67],"real-time":[69],"optimization.":[70],"This":[71],"architecture":[72],"reduces":[73,136],"negatives":[75],"by":[76,134,139,162],"42%":[77],"C2":[79,103],"tunneling":[80],"detection":[81,132],"achieves":[83],"Nash":[84],"equilibrium":[85],"97.3%":[87],"of":[88,115],"adversarial":[89],"engagements.":[90],"Rigorous":[91],"testing":[92],"on":[93],"hybrid":[94],"infrastructure":[95],"datasets":[96],"(100K":[97],"normal":[98],"events,":[99],"20K":[100],"DDoS,":[101],"5K":[102],"attacks)":[104],"demonstrates":[105],"a":[106,153],"93%":[107],"mean":[108],"F1-score":[109],"attack":[111],"scenarios,":[112],"end-to-end":[113],"latency":[114],"58.3":[116],"ms,":[117],"12.5\u00d7":[119],"higher":[120],"strategy":[121],"updates/sec":[122],"versus":[123],"baselines.":[124],"Compared":[125],"existing":[127],"models,":[128],"the":[129],"improves":[131],"F1":[133],"10.7%,":[135],"positives":[138],"39%,":[140],"enhances":[142],"energy":[143],"efficiency":[144],"1,850":[146],"events/Joule":[147],"(2.98\u00d7":[148],"Snort).":[149],"The":[150],"framework":[151],"establishes":[152],"new":[154],"paradigm":[155],"agile,":[157],"auditable":[158],"validated":[161],"STIX":[163],"action":[164],"chains.":[165]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}