{"id":"https://openalex.org/W4413677340","doi":"https://doi.org/10.1109/ojcoms.2025.3603000","title":"Advanced Techniques for Alert Management in Security Information and Event Management Systems With Ensembled Deep Learning, Hybrid Optimization, and Multi-Feature Extraction","display_name":"Advanced Techniques for Alert Management in Security Information and Event Management Systems With Ensembled Deep Learning, Hybrid Optimization, and Multi-Feature Extraction","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4413677340","doi":"https://doi.org/10.1109/ojcoms.2025.3603000"},"language":"en","primary_location":{"id":"doi:10.1109/ojcoms.2025.3603000","is_oa":true,"landing_page_url":"https://doi.org/10.1109/ojcoms.2025.3603000","pdf_url":null,"source":{"id":"https://openalex.org/S4210202420","display_name":"IEEE Open Journal of the Communications Society","issn_l":"2644-125X","issn":["2644-125X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310316002","host_organization_name":"IEEE Communications Society","host_organization_lineage":["https://openalex.org/P4310316002","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Communications Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Open Journal of the Communications Society","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/ojcoms.2025.3603000","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5061159372","display_name":"Mohamad Khayat","orcid":"https://orcid.org/0000-0002-1774-786X"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":true,"raw_author_name":"Mohamad Khayat","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, UAE","College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-1774-786X","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, UAE","institution_ids":["https://openalex.org/I201726411"]},{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5066524623","display_name":"Ezedin Barka","orcid":"https://orcid.org/0000-0002-3995-7198"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Ezedin Barka","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, UAE","College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-3995-7198","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, UAE","institution_ids":["https://openalex.org/I201726411"]},{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022074764","display_name":"Mohamed Adel Serhani","orcid":"https://orcid.org/0000-0001-7001-3710"},"institutions":[{"id":"https://openalex.org/I29891158","display_name":"University of Sharjah","ror":"https://ror.org/00engpz63","country_code":"AE","type":"education","lineage":["https://openalex.org/I29891158"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Mohamed Adel Serhani","raw_affiliation_strings":["College of Computing and Informatics, University of Sharjah, Sharjah, UAE","College of Computing and Informatics, University of Sharjah, Sharjah, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0001-7001-3710","affiliations":[{"raw_affiliation_string":"College of Computing and Informatics, University of Sharjah, Sharjah, UAE","institution_ids":["https://openalex.org/I29891158"]},{"raw_affiliation_string":"College of Computing and Informatics, University of Sharjah, Sharjah, United Arab Emirates","institution_ids":["https://openalex.org/I29891158"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020497805","display_name":"Farag Sallabi","orcid":"https://orcid.org/0000-0002-2887-5410"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Farag Sallabi","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, UAE","College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-2887-5410","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, UAE","institution_ids":["https://openalex.org/I201726411"]},{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028978354","display_name":"Khaled Shuaib","orcid":null},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Khaled Shuaib","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, UAE","College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0003-1397-0420","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, UAE","institution_ids":["https://openalex.org/I201726411"]},{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5058952543","display_name":"Heba M. Khater","orcid":"https://orcid.org/0000-0002-6394-3482"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Heba M. Khater","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, UAE","College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-6394-3482","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, UAE","institution_ids":["https://openalex.org/I201726411"]},{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5061159372"],"corresponding_institution_ids":["https://openalex.org/I201726411"],"apc_list":{"value":1750,"currency":"USD","value_usd":1750},"apc_paid":{"value":1750,"currency":"USD","value_usd":1750},"fwci":1.3019,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.84460515,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"6","issue":null,"first_page":"7349","last_page":"7368"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9333999752998352,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9333999752998352,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6706139445304871},{"id":"https://openalex.org/keywords/feature-extraction","display_name":"Feature extraction","score":0.5503267645835876},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.5431621670722961},{"id":"https://openalex.org/keywords/event","display_name":"Event (particle physics)","score":0.5090117454528809},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.44659748673439026},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.36156153678894043},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.33930152654647827}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6706139445304871},{"id":"https://openalex.org/C52622490","wikidata":"https://www.wikidata.org/wiki/Q1026626","display_name":"Feature extraction","level":2,"score":0.5503267645835876},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.5431621670722961},{"id":"https://openalex.org/C2779662365","wikidata":"https://www.wikidata.org/wiki/Q5416694","display_name":"Event (particle physics)","level":2,"score":0.5090117454528809},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.44659748673439026},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.36156153678894043},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.33930152654647827},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/ojcoms.2025.3603000","is_oa":true,"landing_page_url":"https://doi.org/10.1109/ojcoms.2025.3603000","pdf_url":null,"source":{"id":"https://openalex.org/S4210202420","display_name":"IEEE Open Journal of the Communications Society","issn_l":"2644-125X","issn":["2644-125X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310316002","host_organization_name":"IEEE Communications Society","host_organization_lineage":["https://openalex.org/P4310316002","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Communications Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Open Journal of the Communications Society","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:13f5d2545cc84ebea101fd503bdd0b5a","is_oa":true,"landing_page_url":"https://doaj.org/article/13f5d2545cc84ebea101fd503bdd0b5a","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Open Journal of the Communications Society, Vol 6, Pp 7349-7368 (2025)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/ojcoms.2025.3603000","is_oa":true,"landing_page_url":"https://doi.org/10.1109/ojcoms.2025.3603000","pdf_url":null,"source":{"id":"https://openalex.org/S4210202420","display_name":"IEEE Open Journal of the Communications Society","issn_l":"2644-125X","issn":["2644-125X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310316002","host_organization_name":"IEEE Communications Society","host_organization_lineage":["https://openalex.org/P4310316002","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Communications Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Open Journal of the Communications Society","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W3022802582","https://openalex.org/W3042782866","https://openalex.org/W3068758478","https://openalex.org/W3083012366","https://openalex.org/W3114252862","https://openalex.org/W3126575732","https://openalex.org/W3136768890","https://openalex.org/W3147914029","https://openalex.org/W3168104563","https://openalex.org/W3177590706","https://openalex.org/W3205033750","https://openalex.org/W3208573928","https://openalex.org/W4225114671","https://openalex.org/W4283071010","https://openalex.org/W4285149013","https://openalex.org/W4290973200","https://openalex.org/W4295308257","https://openalex.org/W4297792532","https://openalex.org/W4304972470","https://openalex.org/W4315782929","https://openalex.org/W4381569470","https://openalex.org/W4386918706","https://openalex.org/W4388694085","https://openalex.org/W4388944975","https://openalex.org/W4391828053","https://openalex.org/W4396541623","https://openalex.org/W4396542582"],"related_works":["https://openalex.org/W3147584709","https://openalex.org/W2961085424","https://openalex.org/W2977677679","https://openalex.org/W1992327129","https://openalex.org/W2381986121","https://openalex.org/W2370918718","https://openalex.org/W4224009465","https://openalex.org/W2256933480","https://openalex.org/W4306674287","https://openalex.org/W2027854990"],"abstract_inverted_index":{"The":[0,22,98],"emergence":[1],"of":[2,14,25,55,62,76,134,160,167,224,227,230,238,271],"new":[3,201],"and":[4,17,36,88,105,115,158,185,217,232,249,264,282,296],"more":[5,164,190,286],"sophisticated":[6],"threats":[7,148],"in":[8,40,95],"cybersecurity":[9,194],"has":[10],"necessitated":[11],"the":[12,53,60,126,130,135,154,163,188,200,212,219,242,251,277],"improvement":[13],"security":[15,27],"information":[16],"event":[18],"management":[19],"(SIEM)":[20],"systems.":[21],"previous":[23],"versions":[24],"these":[26],"models":[28,57,290],"faced":[29],"numerous":[30],"challenges,":[31],"such":[32,79,152],"as":[33,80,153],"high":[34,183],"false-positive":[35],"false-negative":[37],"rates,":[38],"resulting":[39,99],"extensive":[41],"unnecessary":[42],"alerts":[43],"or":[44],"failure":[45],"to":[46,124,146,181,256,259,262],"identify":[47],"real":[48],"threats.":[49],"This":[50],"study":[51],"discusses":[52],"use":[54],"attention-based":[56],"for":[58],"improving":[59],"performance":[61],"SIEM":[63],"systems":[64],"via":[65],"an":[66,119,222],"ensemble":[67,172],"deep":[68],"learning":[69],"framework.":[70,97],"To":[71,111],"this":[72,96],"end,":[73],"several":[74],"types":[75],"neural":[77,86,91],"networks,":[78,84,87,92],"long":[81],"short-term":[82],"memory":[83],"convolutional":[85],"bidirectional":[89],"recurrent":[90],"were":[93],"used":[94,123],"model":[100,127,189,220,252,279],"could":[101],"assess":[102],"temporal":[103],"patterns":[104],"significant":[106],"characteristics":[107],"from":[108],"network":[109],"data.":[110,137],"reduce":[112],"processing":[113],"complexity":[114],"improve":[116],"detection":[117],"accuracy,":[118],"attention":[120],"mechanism":[121],"was":[122,141,174,245],"let":[125],"focus":[128],"on":[129,150],"most":[131],"relevant":[132],"parts":[133],"input":[136],"Additionally,":[138],"alert":[139],"prioritization":[140],"integrated":[142],"using":[143],"fuzzy":[144],"logic":[145],"rank":[147],"based":[149],"factors":[151],"confidence":[155],"level,":[156],"impact,":[157],"frequency":[159],"alerts,":[161],"ensuring":[162],"efficient":[165],"handling":[166],"potential":[168],"intrusions.":[169],"An":[170],"optimized":[171],"strategy":[173],"developed":[175],"that":[176,199,276],"incorporated":[177],"different":[178],"optimization":[179],"methods":[180],"achieve":[182],"precision":[184,226,258],"speed,":[186],"making":[187],"robust":[191],"against":[192],"contemporary":[193],"challenges.":[195],"Experiment":[196],"results":[197],"show":[198],"approach":[202],"performs":[203],"much":[204],"better":[205],"than":[206,288],"other":[207,289],"existing":[208],"models.":[209],"By":[210],"splitting":[211],"training":[213,243],"data":[214,244],"into":[215,247],"70%":[216],"30%,":[218],"achieved":[221],"accuracy":[223,255,294],"98.52%,":[225],"99.40%,":[228],"F-measure":[229,261],"97.08%":[231],"a":[233,266],"false":[234,267,298],"negative":[235],"rate":[236,269],"(FNR)":[237],"only":[239],"1.14%.":[240],"When":[241],"split":[246],"80%":[248],"20%,":[250],"improved":[253],"its":[254],"99.28%,":[257],"99.46%,":[260],"98.67%":[263],"had":[265],"positive":[268],"(FPR)":[270],"just":[272],"0.1%.":[273],"Experiments":[274],"revealed":[275],"proposed":[278],"successfully":[280],"detected":[281],"effectively":[283,287],"prioritized":[284],"intrusions":[285],"while":[291],"maintaining":[292],"higher":[293],"rates":[295],"lower":[297],"alarm":[299],"levels.":[300]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-05-06T08:25:59.206177","created_date":"2025-10-10T00:00:00"}