{"id":"https://openalex.org/W4226372090","doi":"https://doi.org/10.1145/3508072.3508085","title":"A Hybrid Deep Learning Approach for Advanced Persistent Threat Attack Detection","display_name":"A Hybrid Deep Learning Approach for Advanced Persistent Threat Attack Detection","publication_year":2021,"publication_date":"2021-12-15","ids":{"openalex":"https://openalex.org/W4226372090","doi":"https://doi.org/10.1145/3508072.3508085"},"language":"en","primary_location":{"id":"doi:10.1145/3508072.3508085","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3508072.3508085","pdf_url":null,"source":{"id":"https://openalex.org/S4363608372","display_name":"The 5th International Conference on Future Networks &amp; Distributed Systems","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The 5th International Conference on Future Networks &amp; Distributed Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5087413976","display_name":"Meaad Alrehaili","orcid":null},"institutions":[{"id":"https://openalex.org/I4210099699","display_name":"Jeddah University","ror":"https://ror.org/015ya8798","country_code":"SA","type":"education","lineage":["https://openalex.org/I4210099699"]}],"countries":["SA"],"is_corresponding":true,"raw_author_name":"Meaad Alrehaili","raw_affiliation_strings":["University of Jeddah, Saudi Arabia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Jeddah, Saudi Arabia","institution_ids":["https://openalex.org/I4210099699"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060208826","display_name":"Adel Alshamrani","orcid":"https://orcid.org/0000-0002-1520-5485"},"institutions":[{"id":"https://openalex.org/I4210099699","display_name":"Jeddah University","ror":"https://ror.org/015ya8798","country_code":"SA","type":"education","lineage":["https://openalex.org/I4210099699"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Adel Alshamrani","raw_affiliation_strings":["University of Jeddah, Saudi Arabia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Jeddah, Saudi Arabia","institution_ids":["https://openalex.org/I4210099699"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5039986753","display_name":"Ala\u2019 Abdulmajid Eshmawi","orcid":"https://orcid.org/0000-0002-4610-2972"},"institutions":[{"id":"https://openalex.org/I4210099699","display_name":"Jeddah University","ror":"https://ror.org/015ya8798","country_code":"SA","type":"education","lineage":["https://openalex.org/I4210099699"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Ala Eshmawi","raw_affiliation_strings":["University of Jeddah, Saudi Arabia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Jeddah, Saudi Arabia","institution_ids":["https://openalex.org/I4210099699"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5087413976"],"corresponding_institution_ids":["https://openalex.org/I4210099699"],"apc_list":null,"apc_paid":null,"fwci":1.8557,"has_fulltext":false,"cited_by_count":12,"citation_normalized_percentile":{"value":0.86509901,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"78","last_page":"86"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.8768013715744019},{"id":"https://openalex.org/keywords/autoencoder","display_name":"Autoencoder","score":0.8275213241577148},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.798602819442749},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.7168810367584229},{"id":"https://openalex.org/keywords/convolutional-neural-network","display_name":"Convolutional neural network","score":0.5723066329956055},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5342826843261719},{"id":"https://openalex.org/keywords/recurrent-neural-network","display_name":"Recurrent neural network","score":0.47051090002059937},{"id":"https://openalex.org/keywords/long-short-term-memory","display_name":"Long short term memory","score":0.4512953460216522},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.43979504704475403},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.4300910234451294}],"concepts":[{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.8768013715744019},{"id":"https://openalex.org/C101738243","wikidata":"https://www.wikidata.org/wiki/Q786435","display_name":"Autoencoder","level":3,"score":0.8275213241577148},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.798602819442749},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.7168810367584229},{"id":"https://openalex.org/C81363708","wikidata":"https://www.wikidata.org/wiki/Q17084460","display_name":"Convolutional neural network","level":2,"score":0.5723066329956055},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5342826843261719},{"id":"https://openalex.org/C147168706","wikidata":"https://www.wikidata.org/wiki/Q1457734","display_name":"Recurrent neural network","level":3,"score":0.47051090002059937},{"id":"https://openalex.org/C133488467","wikidata":"https://www.wikidata.org/wiki/Q6673524","display_name":"Long short term memory","level":4,"score":0.4512953460216522},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.43979504704475403},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.4300910234451294}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3508072.3508085","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3508072.3508085","pdf_url":null,"source":{"id":"https://openalex.org/S4363608372","display_name":"The 5th International Conference on Future Networks &amp; Distributed Systems","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The 5th International Conference on Future Networks &amp; Distributed Systems","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Climate action","id":"https://metadata.un.org/sdg/13","score":0.6200000047683716}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W2818789173","https://openalex.org/W2910711617","https://openalex.org/W2920971804","https://openalex.org/W2939867067","https://openalex.org/W2956781771","https://openalex.org/W2959653735","https://openalex.org/W2982518168","https://openalex.org/W2995015263","https://openalex.org/W3002573977","https://openalex.org/W3046138161","https://openalex.org/W3082065751","https://openalex.org/W3082212141","https://openalex.org/W3082899649","https://openalex.org/W3093400437","https://openalex.org/W3133235094","https://openalex.org/W3199339513","https://openalex.org/W4210799323"],"related_works":["https://openalex.org/W2669956259","https://openalex.org/W4249005693","https://openalex.org/W4392946183","https://openalex.org/W3088732000","https://openalex.org/W4226493464","https://openalex.org/W4312417841","https://openalex.org/W3133861977","https://openalex.org/W3008584592","https://openalex.org/W2951211570","https://openalex.org/W3103566983"],"abstract_inverted_index":{"Advanced":[0],"Persistent":[1],"Threat":[2],"(APT)":[3],"attack":[4,20,72,76,97],"is":[5,98,131,165],"one":[6,99],"of":[7,68,100,153],"the":[8,16,74,101,169,177,188],"most":[9],"common":[10,95],"and":[11,28,39,54,83,112,140],"costly":[12],"destructive":[13],"attacks":[14,42],"on":[15],"target":[17],"system.":[18],"This":[19,108],"has":[21],"become":[22,61],"a":[23,66,94,122],"challenge":[24],"for":[25,37,103],"companies,":[26],"governments,":[27],"organizations\u2019":[29],"information":[30],"security":[31],"systems.":[32],"In":[33],"recent":[34],"years,":[35],"methods":[36],"detecting":[38,194],"preventing":[40],"APT":[41,75,96,154,163,199],"that":[43,79,127,160,176],"use":[44],"machine":[45],"learning":[46,49,115,125,180,191],"or":[47],"deep":[48,114,124,179,190],"algorithms":[50],"to":[51,65,92,150,167,183],"analyze":[52,118],"indications":[53,152],"anomalous":[55],"behaviors":[56],"in":[57,193,197],"network":[58,120],"traffic":[59,90],"have":[60],"popular.":[62],"However,":[63],"due":[64],"lack":[67],"typical":[69],"data":[70],"from":[71],"campaigns,":[73],"detection":[77],"approach":[78,126,181],"uses":[80],"behavior":[81,196],"analysis":[82,91],"evaluation":[84],"approaches":[85],"encounter":[86],"many":[87],"issues.":[88],"Network":[89,148],"detect":[93,151],"solutions":[102],"dealing":[104],"with":[105,135,144],"this":[106],"situation.":[107],"paper":[109],"develops":[110],"efficient":[111],"flexible":[113],"models.":[116],"To":[117],"huge":[119],"traffic,":[121],"hybrid":[123,178],"builds":[128],"two":[129],"models":[130],"used:":[132],"Stacked":[133],"Autoencoder":[134],"Long":[136,145],"Short-Term":[137,146],"Memory":[138,147],"(SAE-LSTM)":[139],"Convolutional":[141],"Neural":[142],"Networks":[143],"(CNN-LSTM)":[149],"attacks.":[155],"A":[156],"reliable":[157],"dataset":[158],"\u2019DAPT2020\u2019":[159],"covers":[161],"all":[162],"stages":[164],"used":[166],"evaluate":[168],"proposed":[170],"approach.":[171],"The":[172],"experimental":[173],"results":[174],"demonstrate":[175],"proved":[182],"give":[184],"higher":[185],"performance":[186],"than":[187],"individual":[189],"model":[192],"malicious":[195],"each":[198],"stage.":[200]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1}],"updated_date":"2026-05-11T08:15:01.531666","created_date":"2025-10-10T00:00:00"}