{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T05:14:44Z","timestamp":1780636484070,"version":"3.54.1"},"reference-count":44,"publisher":"Springer Science and Business Media LLC","issue":"8","license":[{"start":{"date-parts":[[2025,1,7]],"date-time":"2025-01-07T00:00:00Z","timestamp":1736208000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,7]],"date-time":"2025-01-07T00:00:00Z","timestamp":1736208000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Neural Comput &amp; Applic"],"published-print":{"date-parts":[[2025,3]]},"DOI":"10.1007\/s00521-024-10967-9","type":"journal-article","created":{"date-parts":[[2025,1,7]],"date-time":"2025-01-07T01:35:06Z","timestamp":1736213706000},"page":"5991-6007","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":7,"title":["Integrating contextual intelligence with mixture of experts for signature and anomaly-based intrusion detection in CPS security"],"prefix":"10.1007","volume":"37","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-1973-9086","authenticated-orcid":false,"given":"Kashif","family":"Rahim","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zia Ul Islam","family":"Nasir","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Nassar","family":"Ikram","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Hassaan Khaliq","family":"Qureshi","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2025,1,7]]},"reference":[{"key":"10967_CR1","doi-asserted-by":"publisher","first-page":"450","DOI":"10.6028\/NIST.SP.1500-201","volume":"1","author":"ER Griffor","year":"2017","unstructured":"Griffor ER, Greer C, Wollman DA, Burns MJ (2017) Framework for Cyber-Physical systems: Volume 1. Overview, NIST Special Publication 1:450\u2013454. https:\/\/doi.org\/10.6028\/NIST.SP.1500-201","journal-title":"Overview, NIST Special Publication"},{"key":"10967_CR2","unstructured":"Kevin Townsend, Analyzing the UK\u2019s Nuclear Deterrence Theory for Cyberspace, www.securityweek.com\/analyzing-UKs-nuclear-deterrence-theory-cyberspace (accessed Apr. 11, 2024)"},{"key":"10967_CR3","unstructured":"Deptt of Homeland Security, Cyber Physical Systems Security (CPSSEC), 2021. www.dhs.gov\/science-and-technology\/cpssec (accessed May 02, 2024)"},{"key":"10967_CR4","unstructured":"(Politico) McKew MK (2021) Global Britain in a competitive age Global Britain in a competitive age, www.gov.uk\/official-documents"},{"key":"10967_CR5","unstructured":"The Washington Post, (2024) [Online]. Available: www.washingtonpost.com\/technology\/2024\/09\/19\/hezbollah-pager-attack-supply-chain (accessed Oct 07, 2024)"},{"key":"10967_CR6","unstructured":"Lendvay RL (2016) Shadows of STUXNET: Recommendations for US Policy on Critical Infrastructure Cyber Defense derived from the STUXNET Attack, Naval Postgraduate School"},{"key":"10967_CR7","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2017.02.009","author":"BB Zarpel\u00e3o","year":"2017","unstructured":"Zarpel\u00e3o BB, Miani RS, Kawakani CT, de Alvarenga SC (2017) A survey of intrusion detection in Internet of Things. J Network and Comput Appl. https:\/\/doi.org\/10.1016\/j.jnca.2017.02.009","journal-title":"J Network and Comput Appl"},{"key":"10967_CR8","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2018.12.006","author":"N Moustafa","year":"2019","unstructured":"Moustafa N, Hu J, Slay J (2019) A holistic review of network anomaly detection systems: a comprehensive survey. J Network Comput Appl. https:\/\/doi.org\/10.1016\/j.jnca.2018.12.006","journal-title":"J Network Comput Appl"},{"key":"10967_CR9","unstructured":"Shazeer, Noam & Mirhoseini, Azalia & Maziarz, Krzysztof & Davis, Andy & Le, Quoc & Hinton, Geoffrey & Dean, Jeff. (2017). Outrageously Large Neural Networks: The Sparsely-Gated Mixture-of-Experts Layer. ICLR 2017. www.cs.toronto.edu\/$$\\sim$$hinton\/absps\/Outrageously.pdf"},{"key":"10967_CR10","unstructured":"Raspberry Pi 4. www.raspberrypi.org\/products\/ (accessed Mar. 25, 2023)"},{"key":"10967_CR11","unstructured":"Snort.org, 2024. www.snort.org\/ (accessed Apr. 18, 2023)"},{"key":"10967_CR12","unstructured":"Suricata, 2023. www.suricata-ids.org\/ (accessed Apr. 18, 2024)"},{"key":"10967_CR13","doi-asserted-by":"publisher","first-page":"157","DOI":"10.1016\/j.future.2017.10.016","volume":"80","author":"SAR Shah","year":"2018","unstructured":"Shah SAR, Issac B (2018) Performance comparison of intrusion detection systems and application of machine learning to Snort system. Futur Gener Comput Syst 80:157\u2013170. https:\/\/doi.org\/10.1016\/j.future.2017.10.016","journal-title":"Futur Gener Comput Syst"},{"issue":"1","key":"10967_CR14","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2808691","volume":"48","author":"A Milenkoski","year":"2015","unstructured":"Milenkoski A, Vieira M, Kounev S, Avritzer A, Payne BD (2015) Evaluating computer intrusion detection systems. ACM Comput Surv 48(1):1\u201341. https:\/\/doi.org\/10.1145\/2808691","journal-title":"ACM Comput Surv"},{"key":"10967_CR15","volume-title":"A Survey of Intrusion Detection Systems","author":"DJ Brown","year":"2001","unstructured":"Brown DJ, Suckow B, Wang T (2001) A Survey of Intrusion Detection Systems. Deptt of Computer Science; Univ of California, San Diego"},{"issue":"2","key":"10967_CR16","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1016\/j.icte.2018.04.003","volume":"4","author":"A Shenfield","year":"2018","unstructured":"Shenfield A, Day D, Ayesh A (2018) Intelligent intrusion detection systems using artificial neural networks. Sci , ICT Express 4(2):95\u201399. https:\/\/doi.org\/10.1016\/j.icte.2018.04.003","journal-title":"Sci , ICT Express"},{"key":"10967_CR17","doi-asserted-by":"publisher","DOI":"10.1016\/j.jfranklin.2019.03.037","author":"Martinez C Vargas","year":"2019","unstructured":"Vargas Martinez C, Vogel-Heuser B (2019) A Host Intrusion Detection System architecture for embedded industrial devices. Sci J Franklin Inst. https:\/\/doi.org\/10.1016\/j.jfranklin.2019.03.037","journal-title":"Sci J Franklin Inst"},{"key":"10967_CR18","doi-asserted-by":"publisher","first-page":"124","DOI":"10.1016\/j.adhoc.2018.10.002","volume":"84","author":"G Loukas","year":"2019","unstructured":"Loukas G, Karapistoli E, Panaousis E, Sarigiannidis P, Bezemskij A, Vuong T (2019) A taxonomy and survey of cyber-physical intrusion detection approaches for vehicles. Ad Hoc Netw 84:124\u2013147. https:\/\/doi.org\/10.1016\/j.adhoc.2018.10.002","journal-title":"Ad Hoc Netw"},{"key":"10967_CR19","doi-asserted-by":"publisher","first-page":"398","DOI":"10.1016\/j.cose.2018.07.011","volume":"78","author":"R Heartfield","year":"2018","unstructured":"Heartfield R et al (2018) A taxonomy of cyber-physical threats and impact in the smart home. Sci Comput Sec 78:398\u2013428. https:\/\/doi.org\/10.1016\/j.cose.2018.07.011","journal-title":"Sci Comput Sec"},{"key":"10967_CR20","doi-asserted-by":"publisher","unstructured":"Y?lmaz EN, G\u00f6nen S, (2018) Attack detection\/prevention system against cyber attack in ICS. Sci Comput Sec 77:94\u2013105. https:\/\/doi.org\/10.1016\/j.cose.2018.04.004","DOI":"10.1016\/j.cose.2018.04.004"},{"issue":"7","key":"10967_CR21","doi-asserted-by":"publisher","first-page":"4507","DOI":"10.1109\/TITS.2020.3017882","volume":"22","author":"J Ashraf","year":"2021","unstructured":"Ashraf J, Bakhshi AD, Moustafa N, Khurshid H, Javed A, Beheshti A (2021) Novel deep learning-enabled LSTM autoencoder architecture for discovering anomalous events from intelligent transportation systems. IEEE Trans Intell Transp Syst 22(7):4507\u20134518. https:\/\/doi.org\/10.1109\/TITS.2020.3017882","journal-title":"IEEE Trans Intell Transp Syst"},{"key":"10967_CR22","doi-asserted-by":"publisher","first-page":"27","DOI":"10.1186\/s42400-023-00161-0","volume":"6","author":"V Sivagaminathan","year":"2023","unstructured":"Sivagaminathan V, Sharma M, Henge SK (2023) Intrusion detection systems for wireless sensor networks using computational intelligence techniques. Cybersecurity 6:27. https:\/\/doi.org\/10.1186\/s42400-023-00161-0","journal-title":"Cybersecurity"},{"key":"10967_CR23","doi-asserted-by":"publisher","first-page":"44219","DOI":"10.1109\/ACCESS.2020.2977423","volume":"8","author":"L Cao","year":"2020","unstructured":"Cao L, Jiang X, Zhao Y, Wang S, You D, Xu X (2020) A Survey of Network Attacks on Cyber-Physical Systems. IEEE Access, Special Section on Intell Inform Service 8:44219\u201344227. https:\/\/doi.org\/10.1109\/ACCESS.2020.2977423","journal-title":"IEEE Access, Special Section on Intell Inform Service"},{"issue":"1","key":"10967_CR24","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1016\/j.dcan.2022.09.008","volume":"9","author":"Abbas Yazdinejad","year":"2023","unstructured":"Yazdinejad Abbas, Kazemi Mostafa, Parizi Reza M, Dehghantanha Ali, Karimipour Hadis (2023) An ensemble deep learning model for cyber threat hunting in industrial internet of things. Dig Commun Networks 9(1):101\u2013110. https:\/\/doi.org\/10.1016\/j.dcan.2022.09.008","journal-title":"Dig Commun Networks"},{"issue":"7","key":"10967_CR25","doi-asserted-by":"publisher","first-page":"1391","DOI":"10.3390\/electronics13071391","volume":"13","author":"N Jeffrey","year":"2024","unstructured":"Jeffrey N, Tan Q, Villar JR (2024) Using Ensemble Learning for Anomaly Detection in Cyber-Physical Systems. Electronics. 13(7):1391. https:\/\/doi.org\/10.3390\/electronics13071391","journal-title":"Electronics."},{"issue":"3","key":"10967_CR26","doi-asserted-by":"publisher","first-page":"49","DOI":"10.1109\/MSP.2011.67","volume":"9","author":"R Langner","year":"2011","unstructured":"Langner R (2011) Stuxnet: dissecting a cyberwarfare weapon. IEEE Secur Priv 9(3):49\u201351. https:\/\/doi.org\/10.1109\/MSP.2011.67","journal-title":"IEEE Secur Priv"},{"key":"10967_CR27","unstructured":"Kovacs E (2024) BlackEnergy Malware Used in Ukraine Power Grid Attacks, SecurityWeek, 2017. Accessed: Oct. 07, [Online]. Available, https:\/\/www.securityweek.com\/blackenergy-group-uses-destructive-plugin-ukraine-attacks\/"},{"key":"10967_CR28","unstructured":"The Diplomat, Chinese Hackers Reportedly Target India\u2019s Power Grid., 2021, Accessed: Oct. 07, 2024. [Online]. Available:, www.thediplomat.com\/2022\/04\/chinese-hackers-reportedly-target-indias-power-grid\/"},{"key":"10967_CR29","unstructured":"Johnson CG\u00a0Blake, Caban Dan, Krotofil Marina, Scali Dan, Brubaker Nathan (2023) TRITON Cause Operational Disruption, 2017. www.mandiant.com\/resources\/blog\/attackers-deploy-new-ics-attack- framework-triton (accessed Apr. 19, 2023)"},{"key":"10967_CR30","unstructured":"E. Nakashima and L. Aratani, DHS to issue first cybersecurity regulations for pipelines after Colonial hack, 2021. www.washingtonpost.com\/business\/2021\/05\/25\/colonial-hack-pipeline-dhs-cybersecurity\/ (accessed Mar. 27, 2023)"},{"key":"10967_CR31","unstructured":"Wikipedia Gcode, G-code (RS-274), 2023. www.en.wikipedia.org\/wiki\/G-code (accessed Mar. 25, 2023)"},{"key":"10967_CR32","unstructured":"Wikipedia Prusa, Prusa i3, 2023. www.en.wikipedia.org\/wiki\/Prusa_i3 (accessed Mar. 25, 2023)"},{"key":"10967_CR33","unstructured":"Hot-World GmbH & Co. KG, Repetier, 2023. www.repetier.com\/ (accessed May 02, 2023)"},{"key":"10967_CR34","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1186\/s42400-021-00077-7","volume":"4","author":"A Khraisat","year":"2021","unstructured":"Khraisat A, Alazab A (2021) A critical review of intrusion detection systems in the internet of things: techniques, deployment strategy, validation strategy, attacks, public datasets and challenges. Cybersecur 4:18. https:\/\/doi.org\/10.1186\/s42400-021-00077-7","journal-title":"Cybersecur"},{"key":"10967_CR35","unstructured":"Creality Ender 3 Pro 3D Printer, 2023. www.creality.com\/goods-detail\/ender-3-pro-3d-printer (accessed Apr. 27, 2023)"},{"key":"10967_CR36","unstructured":"Hot-World GmbH & Co. KG, Repetier-Server, 2023. www.repetier-server.com\/ (accessed May 02, 2023)"},{"key":"10967_CR37","unstructured":"MakerBot, MakerBot - Thingiverse, 2023. www.thingiverse.com\/ (accessed May 02, 2023)"},{"key":"10967_CR38","unstructured":"Prusa Research - Printable 3D Models, 2023. www.prusa3d.com\/printable-3d-models\/ (accessed May 02, 2023)"},{"key":"10967_CR39","doi-asserted-by":"publisher","DOI":"10.1016\/j.techfore.2020.120486","volume":"163","author":"MR Islam","year":"2021","unstructured":"Islam MR, Liu S, Biddle R, Razzak I, Wang X, Tilocca P, Xu G (2021) Discovering dynamic adverse behavior of policyholders in the life insurance industry. Technol Forecast Soc Change. 163:120486","journal-title":"Technol Forecast Soc Change."},{"key":"10967_CR40","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103299","author":"X S\u00e1ez-de-C\u00e1mara","year":"2023","unstructured":"S\u00e1ez-de-C\u00e1mara X, Flores JL, Arellano C, Urbieta A, Zurutuza U (2023) Clustered federated learning architecture for network anomaly detection in large scale heterogeneous IoT networks. Comput Security. https:\/\/doi.org\/10.1016\/j.cose.2023.103299","journal-title":"Comput Security"},{"key":"10967_CR41","doi-asserted-by":"publisher","first-page":"20319","DOI":"10.1007\/s00521-023-08818-0","volume":"35","author":"T Anitha","year":"2023","unstructured":"Anitha T, Aanjankumar S, Poonkuntran S (2023) A novel methodology for malicious traffic detection in smart devices using BI-LSTM-CNN-dependent deep learning methodology. Neural Comput & Applic 35:20319\u201320338. https:\/\/doi.org\/10.1007\/s00521-023-08818-0","journal-title":"Neural Comput & Applic"},{"key":"10967_CR42","doi-asserted-by":"publisher","first-page":"21583","DOI":"10.1007\/s00521-021-06454-0","volume":"34","author":"L Armi","year":"2022","unstructured":"Armi L, Abbasi E, Zarepour-Ahmadabadi J (2022) Texture images classification using improved local quinary pattern and mixture of ELM-based experts. Neural Comput & Applic 34:21583\u201321606. https:\/\/doi.org\/10.1007\/s00521-021-06454-0","journal-title":"Neural Comput & Applic"},{"issue":"3","key":"10967_CR43","doi-asserted-by":"publisher","first-page":"45","DOI":"10.52866\/ijcsm.2024.05.03.004","volume":"5","author":"G Ali","year":"2024","unstructured":"Ali G, Mijwil Maad M, Buruga Bosco Apparatus, Abotaleb Mostafa (2024) A comprehensive review on cybersecurity issues and their mitigation measures in FinTech. Iraqi J Comput Sci Mathematics 5(3):45\u201391. https:\/\/doi.org\/10.52866\/ijcsm.2024.05.03.004","journal-title":"Iraqi J Comput Sci Mathematics"},{"key":"10967_CR44","doi-asserted-by":"publisher","first-page":"131824","DOI":"10.1109\/ACCESS.2021.3112397","volume":"9","author":"CS Wickramasinghe","year":"2021","unstructured":"Wickramasinghe CS, Amarasinghe K, Marino DL, Rieger C, Manic M (2021) Explainable unsupervised machine learning for cyber-physical systems. IEEE Access 9:131824\u2013131843. https:\/\/doi.org\/10.1109\/ACCESS.2021.3112397","journal-title":"IEEE Access"}],"container-title":["Neural Computing and Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s00521-024-10967-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s00521-024-10967-9\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s00521-024-10967-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,6]],"date-time":"2025-03-06T13:57:36Z","timestamp":1741269456000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s00521-024-10967-9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,1,7]]},"references-count":44,"journal-issue":{"issue":"8","published-print":{"date-parts":[[2025,3]]}},"alternative-id":["10967"],"URL":"https:\/\/doi.org\/10.1007\/s00521-024-10967-9","relation":{},"ISSN":["0941-0643","1433-3058"],"issn-type":[{"value":"0941-0643","type":"print"},{"value":"1433-3058","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,1,7]]},"assertion":[{"value":"27 July 2024","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"23 December 2024","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"7 January 2025","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"Authors declare no conflict of interest.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}},{"value":"Not applicable.","order":3,"name":"Ethics","group":{"name":"EthicsHeading","label":"Consent to participate"}},{"value":"All authors have read and agreed to the published version of the manuscript.","order":4,"name":"Ethics","group":{"name":"EthicsHeading","label":"Consent for publication"}},{"value":"Not applicable.","order":5,"name":"Ethics","group":{"name":"EthicsHeading","label":"Ethical approval"}}]}}