{"id":"https://openalex.org/W4292825796","doi":"https://doi.org/10.1109/tnsm.2022.3200741","title":"Effective Multitask Deep Learning for IoT Malware Detection and Identification Using Behavioral Traffic Analysis","display_name":"Effective Multitask Deep Learning for IoT Malware Detection and Identification Using Behavioral Traffic Analysis","publication_year":2022,"publication_date":"2022-08-23","ids":{"openalex":"https://openalex.org/W4292825796","doi":"https://doi.org/10.1109/tnsm.2022.3200741"},"language":"en","primary_location":{"id":"doi:10.1109/tnsm.2022.3200741","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2022.3200741","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5046303624","display_name":"Sajid Ali","orcid":"https://orcid.org/0000-0002-1287-849X"},"institutions":[{"id":"https://openalex.org/I848706","display_name":"Sungkyunkwan University","ror":"https://ror.org/04q78tk20","country_code":"KR","type":"education","lineage":["https://openalex.org/I848706"]}],"countries":["KR"],"is_corresponding":true,"raw_author_name":"Sajid Ali","raw_affiliation_strings":["Department of Electrical and Computer Engineering, Sungkyunkwan University, Suwon, South Korea"],"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Engineering, Sungkyunkwan University, Suwon, South Korea","institution_ids":["https://openalex.org/I848706"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5065516279","display_name":"Omar Abusabha","orcid":null},"institutions":[{"id":"https://openalex.org/I848706","display_name":"Sungkyunkwan University","ror":"https://ror.org/04q78tk20","country_code":"KR","type":"education","lineage":["https://openalex.org/I848706"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Omar Abusabha","raw_affiliation_strings":["College of Computing and Informatics, Sungkyunkwan University, Suwon, South Korea"],"affiliations":[{"raw_affiliation_string":"College of Computing and Informatics, Sungkyunkwan University, Suwon, South Korea","institution_ids":["https://openalex.org/I848706"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028787159","display_name":"Farman Ali","orcid":"https://orcid.org/0000-0002-9420-1588"},"institutions":[{"id":"https://openalex.org/I28777354","display_name":"Sejong University","ror":"https://ror.org/00aft1q37","country_code":"KR","type":"education","lineage":["https://openalex.org/I28777354"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Farman Ali","raw_affiliation_strings":["Department of Software, Sejong University, Seoul, South Korea"],"affiliations":[{"raw_affiliation_string":"Department of Software, Sejong University, Seoul, South Korea","institution_ids":["https://openalex.org/I28777354"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031927335","display_name":"Muhammad Imran","orcid":"https://orcid.org/0000-0002-6946-2591"},"institutions":[{"id":"https://openalex.org/I149672521","display_name":"Federation University","ror":"https://ror.org/05qbzwv83","country_code":"AU","type":"education","lineage":["https://openalex.org/I149672521"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Muhammad Imran","raw_affiliation_strings":["Institute of Innovation, Science and Sustainability, Federation University Australia, Brisbane, QLD, Australia"],"affiliations":[{"raw_affiliation_string":"Institute of Innovation, Science and Sustainability, Federation University Australia, Brisbane, QLD, Australia","institution_ids":["https://openalex.org/I149672521"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5023828527","display_name":"Tamer Abuhmed","orcid":"https://orcid.org/0000-0001-9232-4843"},"institutions":[{"id":"https://openalex.org/I848706","display_name":"Sungkyunkwan University","ror":"https://ror.org/04q78tk20","country_code":"KR","type":"education","lineage":["https://openalex.org/I848706"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Tamer Abuhmed","raw_affiliation_strings":["College of Computing and Informatics, Sungkyunkwan University, Suwon, South Korea"],"affiliations":[{"raw_affiliation_string":"College of Computing and Informatics, Sungkyunkwan University, Suwon, South Korea","institution_ids":["https://openalex.org/I848706"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5046303624"],"corresponding_institution_ids":["https://openalex.org/I848706"],"apc_list":null,"apc_paid":null,"fwci":9.1346,"has_fulltext":false,"cited_by_count":69,"citation_normalized_percentile":{"value":0.98371942,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"20","issue":"2","first_page":"1199","last_page":"1209"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8716487884521484},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8488661050796509},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.6401959657669067},{"id":"https://openalex.org/keywords/payload","display_name":"Payload (computing)","score":0.5889526009559631},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.5435239672660828},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.529433012008667},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5147387981414795},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.46798014640808105},{"id":"https://openalex.org/keywords/modalities","display_name":"Modalities","score":0.4602142572402954},{"id":"https://openalex.org/keywords/feature-selection","display_name":"Feature selection","score":0.45754191279411316},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.4265784025192261},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.41705840826034546},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.4150782823562622},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.36086201667785645},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3270943760871887},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.30543529987335205},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.1279841959476471}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8716487884521484},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8488661050796509},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.6401959657669067},{"id":"https://openalex.org/C134066672","wikidata":"https://www.wikidata.org/wiki/Q1424639","display_name":"Payload (computing)","level":3,"score":0.5889526009559631},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.5435239672660828},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.529433012008667},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5147387981414795},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.46798014640808105},{"id":"https://openalex.org/C2779903281","wikidata":"https://www.wikidata.org/wiki/Q6888026","display_name":"Modalities","level":2,"score":0.4602142572402954},{"id":"https://openalex.org/C148483581","wikidata":"https://www.wikidata.org/wiki/Q446488","display_name":"Feature selection","level":2,"score":0.45754191279411316},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.4265784025192261},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.41705840826034546},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.4150782823562622},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.36086201667785645},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3270943760871887},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.30543529987335205},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.1279841959476471},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tnsm.2022.3200741","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2022.3200741","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"},{"id":"pmh:vital:18649","is_oa":false,"landing_page_url":"http://researchonline.federation.edu.au/vital/access/HandleResolver/1959.17/196169","pdf_url":null,"source":{"id":"https://openalex.org/S4306400234","display_name":"FedUni ResearchOnline (Federation University Australia)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210158496","host_organization_name":"Australian Federation of University Women \u2013 South Australia","host_organization_lineage":["https://openalex.org/I4210158496"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1208298189","display_name":null,"funder_award_id":"IITP-2021-2020-0-01821","funder_id":"https://openalex.org/F4320335489","funder_display_name":"Institute for Information and Communications Technology Promotion"},{"id":"https://openalex.org/G3978735513","display_name":null,"funder_award_id":"2021R1A2C1011198","funder_id":"https://openalex.org/F4320322030","funder_display_name":"Ministry of Science, ICT and Future Planning"}],"funders":[{"id":"https://openalex.org/F4320322030","display_name":"Ministry of Science, ICT and Future Planning","ror":"https://ror.org/032e49973"},{"id":"https://openalex.org/F4320322120","display_name":"National Research Foundation of Korea","ror":"https://ror.org/013aysd81"},{"id":"https://openalex.org/F4320335489","display_name":"Institute for Information and Communications Technology Promotion","ror":"https://ror.org/01g0hqq23"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":49,"referenced_works":["https://openalex.org/W1980792387","https://openalex.org/W1996975221","https://openalex.org/W2077488147","https://openalex.org/W2099940443","https://openalex.org/W2120871080","https://openalex.org/W2140190241","https://openalex.org/W2148143831","https://openalex.org/W2343828539","https://openalex.org/W2591712613","https://openalex.org/W2593281369","https://openalex.org/W2768896713","https://openalex.org/W2783741806","https://openalex.org/W2799758613","https://openalex.org/W2887921593","https://openalex.org/W2890859663","https://openalex.org/W2901321248","https://openalex.org/W2907376671","https://openalex.org/W2911505293","https://openalex.org/W2912135847","https://openalex.org/W2912386632","https://openalex.org/W2945594226","https://openalex.org/W2958447056","https://openalex.org/W2972542656","https://openalex.org/W2991374072","https://openalex.org/W2995015263","https://openalex.org/W3004307973","https://openalex.org/W3005444580","https://openalex.org/W3006526650","https://openalex.org/W3031176687","https://openalex.org/W3043530913","https://openalex.org/W3049465447","https://openalex.org/W3115069763","https://openalex.org/W3122864121","https://openalex.org/W3133369889","https://openalex.org/W3162620147","https://openalex.org/W3164964481","https://openalex.org/W3165205057","https://openalex.org/W3167826121","https://openalex.org/W3169753169","https://openalex.org/W3172909833","https://openalex.org/W3173672712","https://openalex.org/W3209498073","https://openalex.org/W4224284455","https://openalex.org/W4245460974","https://openalex.org/W4281399672","https://openalex.org/W4281400762","https://openalex.org/W6607784307","https://openalex.org/W6634779276","https://openalex.org/W6756410040"],"related_works":["https://openalex.org/W2294483539","https://openalex.org/W2378449000","https://openalex.org/W2938399969","https://openalex.org/W3187581118","https://openalex.org/W3143747655","https://openalex.org/W2002178493","https://openalex.org/W2901835651","https://openalex.org/W2929621094","https://openalex.org/W1996006176","https://openalex.org/W4285325964"],"abstract_inverted_index":{"Despite":[0],"the":[1,4,9,28,41,54,67,77,110,121,157,168,175,196,202,220,226],"benefits":[2],"of":[3,6,12,43,56,71,108,120,134,140,159,230],"Internet":[5,29],"Things":[7],"(IoT),":[8],"growing":[10],"influx":[11],"IoT-specific":[13],"malware":[14,45,122],"coordinating":[15],"large-scale":[16,131],"cyberattacks":[17],"via":[18],"infected":[19],"IoT":[20,32,44,78,92,149],"devices":[21],"has":[22],"created":[23],"a":[24,86,153],"substantial":[25],"threat":[26],"to":[27,39,166],"ecosystem.":[30],"Assessing":[31],"systems\u2019":[33],"security":[34],"and":[35,52,62,69,117,142,185,198,201,205,215,217,222,233],"developing":[36],"mitigation":[37],"measures":[38],"prevent":[40],"spread":[42],"is":[46,113],"therefore":[47],"critical.":[48],"Furthermore,":[49],"for":[50,90,124,209],"training":[51],"testing":[53,228],"fidelity":[55],"cyber":[57],"security-based":[58],"Machine":[59],"Learning":[60,64],"(ML)":[61],"Deep":[63],"(DL)":[65],"approaches,":[66],"collection":[68],"exploration":[70],"information":[72],"from":[73,76,146,174],"multiple":[74],"sources":[75],"are":[79],"crucial.":[80],"In":[81],"this":[82],"regard,":[83],"we":[84],"propose":[85],"multitask":[87,218],"DL":[88],"model":[89,101],"detecting":[91],"malware.":[93],"Our":[94],"proposed":[95,169],"Long":[96],"Short-Term":[97],"Memory":[98],"(LSTM)":[99],"based":[100],"efficiently":[102],"performs":[103],"two":[104],"tasks:":[105],"1)":[106],"determination":[107,119],"whether":[109],"provided":[111],"traffic":[112,132,144,160,183],"benign":[114,141],"or":[115],"malicious,":[116],"2)":[118],"type":[123],"identifying":[125],"malicious":[126,143],"network":[127],"traffic.":[128],"We":[129,151],"used":[130,165],"data":[133],"145.":[135],"<italic":[136],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[137],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">pcap</i>":[138],"files":[139],"collected":[145],"18":[147],"different":[148],"devices.":[150],"performed":[152],"time-series":[154],"analysis":[155],"on":[156],"packets":[158],"flows,":[161],"which":[162],"were":[163,177,207],"then":[164],"train":[167],"model.":[170],"The":[171],"features":[172,206],"extracted":[173],"dataset":[176],"categorized":[178],"into":[179],"three":[180],"modalities:":[181],"flow-related,":[182],"flag-related,":[184],"packet":[186],"payload-related":[187],"features.":[188],"A":[189],"feature":[190,197],"selection":[191],"approach":[192],"was":[193],"employed":[194],"at":[195],"modality":[199],"levels,":[200],"best":[203,227],"modalities":[204,224],"utilized":[208],"performance":[210],"enhancement.":[211],"For":[212],"tasks":[213],"1":[214],"2":[216],"classification,":[219],"flow-related":[221],"flag-related":[223],"showed":[225],"accuracies":[229],"92.63%,":[231],"88.45%,":[232],"95.83%,":[234],"respectively.":[235]},"counts_by_year":[{"year":2026,"cited_by_count":5},{"year":2025,"cited_by_count":30},{"year":2024,"cited_by_count":21},{"year":2023,"cited_by_count":13}],"updated_date":"2026-04-16T08:26:57.006410","created_date":"2025-10-10T00:00:00"}