{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,2]],"date-time":"2026-06-02T23:11:22Z","timestamp":1780441882607,"version":"3.54.1"},"reference-count":49,"publisher":"Springer Science and Business Media LLC","issue":"31","license":[{"start":{"date-parts":[[2025,7,30]],"date-time":"2025-07-30T00:00:00Z","timestamp":1753833600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2025,7,30]],"date-time":"2025-07-30T00:00:00Z","timestamp":1753833600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"name":"Institute for Energy Technology"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Multimed Tools Appl"],"abstract":"<jats:title>Abstract<\/jats:title>\n          <jats:p>Network intrusion detection systems (NIDS) act as a premier defense to protect computer networks from cybersecurity threats. In Adversarial Machine Learning (AML), adversaries aim to deceive Machine Learning (ML) and Deep Learning (DL) models into producing false predictions with deliberately prepared adversarial samples. These intentionally generated adversarial samples have become a significant vulnerability of ML and DL-based systems, posing major challenges for their adoption in real-world, critical applications such as NIDS. In this study, we aim to present a novel hybrid defense model that enhances the performance of DL-based NIDS against adversarial attacks. The MinMaxScaler is used for data normalization. We employed Independent Component Analysis (ICA) for feature extraction and Recursive Feature Elimination (RFE) for feature selection to reduce complexity and overfitting. The proposed model comprises two defense strategies: Projected Gradient Descent (PGD) with a Pigeon-Inspired Optimization Algorithm (PIOA) during the training phase, aiming to enhance the model's ability to distinguish between adversarial examples. Spatial Smoothing (SS) is employed during the testing phase to decrease the potential impact of adversarial noise and sensitivity to minor feature changes. We have implemented three adversarial attack generation methods: Jacobian Saliency Map Attacks (JSMA), Fast Gradient Sign Method (FGSM), and Carlini and Wagner (C&amp;W), and evaluated them in five distinct scenarios. The proposed model demonstrates an accuracy of 99.65%, a recall of 99.87%, an ASR of 1.29%, and a specificity of 99.05%. We further presented the computational efficiency and a hyperparameter sensitivity analysis to validate and assess the model's real-time processing feasibility. The scope of the presented study extends beyond computer security.<\/jats:p>","DOI":"10.1007\/s11042-025-21008-5","type":"journal-article","created":{"date-parts":[[2025,7,30]],"date-time":"2025-07-30T03:27:58Z","timestamp":1753846078000},"page":"37745-37791","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":10,"title":["A comprehensive defense approach of deep learning-based NIDS against adversarial attacks"],"prefix":"10.1007","volume":"84","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9296-9561","authenticated-orcid":false,"given":"Kousik","family":"Barik","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3556-9331","authenticated-orcid":false,"given":"Sanjay","family":"Misra","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2025,7,30]]},"reference":[{"issue":"3","key":"21008_CR1","doi-asserted-by":"publisher","first-page":"7295","DOI":"10.1007\/s11042-023-15803-1","volume":"83","author":"SA Gamel","year":"2024","unstructured":"Gamel SA, Hassan E, El-Rashidy N, Talaat FM (2024) Exploring the effects of pandemics on transportation through correlations and deep learning techniques. Multimed Tools Appl 83(3):7295\u20137316. https:\/\/doi.org\/10.1007\/s11042-023-15803-1","journal-title":"Multimed Tools Appl"},{"key":"21008_CR2","doi-asserted-by":"publisher","DOI":"10.1007\/s11042-024-20517-z","author":"N Arab","year":"2025","unstructured":"Arab N, Nemmour H, Bouibed ML, Chibani Y (2025) 1D-GAN for improving offline handwritten signature verification based on small sets of real samples. Multimed Tools Appl. https:\/\/doi.org\/10.1007\/s11042-024-20517-z","journal-title":"Multimed Tools Appl"},{"issue":"1","key":"21008_CR3","doi-asserted-by":"publisher","first-page":"10","DOI":"10.1186\/s40537-023-00861-x","volume":"11","author":"K Barik","year":"2024","unstructured":"Barik K, Misra S (2024) Analysis of customer reviews with an improved VADER lexicon classifier. J Big Data 11(1):10. https:\/\/doi.org\/10.1186\/s40537-023-00861-x","journal-title":"J Big Data"},{"issue":"1","key":"21008_CR4","doi-asserted-by":"publisher","first-page":"2055399","DOI":"10.1080\/08839514.2022.2055399","volume":"36","author":"K Barik","year":"2022","unstructured":"Barik K, Misra S, Konar K, Fernandez-Sanz L, Koyuncu M (2022) Cybersecurity deep: approaches, attacks dataset, and comparative study. Appl Artif Intell 36(1):2055399. https:\/\/doi.org\/10.1080\/08839514.2022.2055399","journal-title":"Appl Artif Intell"},{"issue":"1","key":"21008_CR5","doi-asserted-by":"publisher","first-page":"538","DOI":"10.1109\/COMST.2022.3233793","volume":"25","author":"K He","year":"2023","unstructured":"He K, Kim DD, Asghar MR (2023) Adversarial machine learning for network intrusion detection systems: a comprehensive survey. IEEE Commun Surv Tutor 25(1):538\u2013566. https:\/\/doi.org\/10.1109\/COMST.2022.3233793","journal-title":"IEEE Commun Surv Tutor"},{"issue":"5","key":"21008_CR6","doi-asserted-by":"publisher","first-page":"12917","DOI":"10.1007\/s11042-023-15977-8","volume":"83","author":"Y Akhiat","year":"2023","unstructured":"Akhiat Y, Touchanti K, Zinedine A, Chahhou M (2023) IDS-EFS: Ensemble feature selection-based method for intrusion detection system. Multimed Tools Appl 83(5):12917\u201312937. https:\/\/doi.org\/10.1007\/s11042-023-15977-8","journal-title":"Multimed Tools Appl"},{"key":"21008_CR7","doi-asserted-by":"publisher","first-page":"100681","DOI":"10.1016\/j.simpa.2024.100681","volume":"21","author":"K Barik","year":"2024","unstructured":"Barik K, Misra S (2024) Adversarial attack defense analysis: an empirical approach in cybersecurity perspective. Softw Impacts 21:100681. https:\/\/doi.org\/10.1016\/j.simpa.2024.100681","journal-title":"Softw Impacts"},{"key":"21008_CR8","doi-asserted-by":"publisher","first-page":"103141","DOI":"10.1016\/j.cose.2023.103141","volume":"128","author":"WD Xiong","year":"2023","unstructured":"Xiong WD, Luo KL, Li R (2023) AIDTF: Adversarial training framework for network intrusion detection. Comput Secur 128:103141. https:\/\/doi.org\/10.1016\/j.cose.2023.103141","journal-title":"Comput Secur"},{"issue":"4","key":"21008_CR9","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3576923","volume":"41","author":"C Wu","year":"2023","unstructured":"Wu C, Zhang R, Guo J, De Rijke M, Fan Y, Cheng X (2023) PRADA: practical black-box adversarial attacks against neural ranking models. ACM Trans Inf Syst 41(4):1\u201327. https:\/\/doi.org\/10.1145\/3576923","journal-title":"ACM Trans Inf Syst"},{"issue":"4","key":"21008_CR10","doi-asserted-by":"publisher","first-page":"2245","DOI":"10.1109\/COMST.2023.3319492","volume":"25","author":"Y Wang","year":"2023","unstructured":"Wang Y et al (2023) Adversarial attacks and defenses in machine learning-empowered communication systems and networks: a contemporary survey. IEEE Commun Surv Tutor 25(4):2245\u20132298. https:\/\/doi.org\/10.1109\/COMST.2023.3319492","journal-title":"IEEE Commun Surv Tutor"},{"issue":"1","key":"21008_CR11","doi-asserted-by":"publisher","first-page":"8297","DOI":"10.1038\/s41598-025-92676-4","volume":"15","author":"T Kim","year":"2025","unstructured":"Kim T, Srinivasulu A, Chinthaginjala R, Dhakshayani J, Zhao X, Obaidur Rab S (2025) Enhancing cybersecurity through script development using machine and deep learning for advanced threat mitigation. Sci Rep 15(1):8297. https:\/\/doi.org\/10.1038\/s41598-025-92676-4","journal-title":"Sci Rep"},{"issue":"1","key":"21008_CR12","doi-asserted-by":"publisher","first-page":"290","DOI":"10.1007\/s44196-024-00686-3","volume":"17","author":"K Barik","year":"2024","unstructured":"Barik K, Misra S, Fernandez-Sanz L (2024) A model for estimating resiliency of ai-based classifiers defending against cyber attacks. Int J Comput Intell Syst 17(1):290. https:\/\/doi.org\/10.1007\/s44196-024-00686-3","journal-title":"Int J Comput Intell Syst"},{"issue":"4","key":"21008_CR13","doi-asserted-by":"publisher","first-page":"5165","DOI":"10.1007\/s10586-023-04234-0","volume":"27","author":"M Seydali","year":"2024","unstructured":"Seydali M, Khunjush F, Dogani J (2024) Streaming traffic classification: a hybrid deep learning and big data approach. Clust Comput 27(4):5165\u20135193. https:\/\/doi.org\/10.1007\/s10586-023-04234-0","journal-title":"Clust Comput"},{"key":"21008_CR14","doi-asserted-by":"publisher","first-page":"107255","DOI":"10.1016\/j.asoc.2021.107255","volume":"105","author":"S Zhang","year":"2021","unstructured":"Zhang S, Liu J, Zuo X (2021) Adaptive online incremental learning for evolving data streams. Appl Soft Comput 105:107255. https:\/\/doi.org\/10.1016\/j.asoc.2021.107255","journal-title":"Appl Soft Comput"},{"issue":"3","key":"21008_CR15","doi-asserted-by":"publisher","first-page":"453","DOI":"10.1016\/j.dcan.2020.11.001","volume":"7","author":"J Chen","year":"2021","unstructured":"Chen J, Wu D, Zhao Y, Sharma N, Blumenstein M, Yu S (2021) Fooling intrusion detection systems using adversarially autoencoder. Digit Commun Netw 7(3):453\u2013460. https:\/\/doi.org\/10.1016\/j.dcan.2020.11.001","journal-title":"Digit Commun Netw"},{"key":"21008_CR16","doi-asserted-by":"publisher","unstructured":"Usama M, Asim M, Latif S, Qadir J, Ala-Al-Fuqaha (2019) Generative adversarial networks for launching and thwarting adversarial attacks on network intrusion detection systems. In 2019 15th International Wireless Communications & Mobile Computing Conference (IWCMC), Tangier, Morocco: IEEE pp. 78\u201383. https:\/\/doi.org\/10.1109\/IWCMC.2019.8766353.","DOI":"10.1109\/IWCMC.2019.8766353"},{"issue":"3\u20134","key":"21008_CR17","doi-asserted-by":"publisher","first-page":"209","DOI":"10.1007\/s12243-024-01021-9","volume":"80","author":"V Kumar","year":"2025","unstructured":"Kumar V, Kumar K, Singh M (2025) Generating practical adversarial examples against learning-based network intrusion detection systems. Ann Telecommun 80(3\u20134):209\u2013226. https:\/\/doi.org\/10.1007\/s12243-024-01021-9","journal-title":"Ann Telecommun"},{"key":"21008_CR18","doi-asserted-by":"publisher","first-page":"104028","DOI":"10.1016\/j.cose.2024.104028","volume":"145","author":"K He","year":"2024","unstructured":"He K, Kim DD, Asghar MR (2024) NIDS-Vis: improving the generalized adversarial robustness of network intrusion detection system. Comput Secur 145:104028. https:\/\/doi.org\/10.1016\/j.cose.2024.104028","journal-title":"Comput Secur"},{"key":"21008_CR19","doi-asserted-by":"publisher","unstructured":"Wiyatno R, Xu\u00a0A (2018) Maximal Jacobian-based saliency map attack.\u00a0https:\/\/doi.org\/10.48550\/ARXIV.1808.07945","DOI":"10.48550\/ARXIV.1808.07945"},{"issue":"29","key":"21008_CR20","doi-asserted-by":"publisher","first-page":"72279","DOI":"10.1007\/s11042-024-18475-7","volume":"83","author":"ML Naseem","year":"2024","unstructured":"Naseem ML (2024) Trans-IFFT-FGSM: a novel fast gradient sign method for adversarial attacks. Multimed Tools Appl 83(29):72279\u201372299. https:\/\/doi.org\/10.1007\/s11042-024-18475-7","journal-title":"Multimed Tools Appl"},{"key":"21008_CR21","doi-asserted-by":"publisher","unstructured":"Carlini N, Wagner\u00a0D (2017) Adversarial examples are not easily detected: bypassing ten detection methods. In Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security, Dallas Texas USA: ACM, pp. 3\u201314. https:\/\/doi.org\/10.1145\/3128572.3140444.","DOI":"10.1145\/3128572.3140444"},{"key":"21008_CR22","doi-asserted-by":"publisher","unstructured":"Sharafaldin I, Lashkari AH, Hakak S, Ghorbani AA (2019) Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy. In 2019 International Carnahan Conference on Security Technology (ICCST), CHENNAI, India: IEEE, Oct. 2019, pp. 1\u20138. https:\/\/doi.org\/10.1109\/CCST.2019.8888419.","DOI":"10.1109\/CCST.2019.8888419"},{"key":"21008_CR23","doi-asserted-by":"publisher","unstructured":"Moustafa N, Slay J (2019) UNSW-NB15: a comprehensive data set for network intrusion detection systems (UNSW-NB15 network data set). In 2015 Military Communications and Information Systems Conference (MilCIS), Canberra, Australia: IEEE, Nov. 2015, pp. 1\u20136. https:\/\/doi.org\/10.1109\/MilCIS.2015.7348942.","DOI":"10.1109\/MilCIS.2015.7348942"},{"issue":"13","key":"21008_CR24","doi-asserted-by":"publisher","first-page":"10327","DOI":"10.1109\/JIOT.2020.3048038","volume":"8","author":"H Qiu","year":"2021","unstructured":"Qiu H, Dong T, Zhang T, Lu J, Memmi G, Qiu M (2021) Adversarial attacks against network intrusion detection in IoT systems. IEEE Internet Things J 8(13):10327\u201310335. https:\/\/doi.org\/10.1109\/JIOT.2020.3048038","journal-title":"IEEE Internet Things J"},{"issue":"3","key":"21008_CR25","doi-asserted-by":"publisher","first-page":"1294","DOI":"10.1109\/TNET.2021.3137084","volume":"30","author":"C Zhang","year":"2022","unstructured":"Zhang C, Costa-Perez X, Patras P (2022) Adversarial attacks against deep learning-based network intrusion detection systems and defense mechanisms. IEEEACM Trans Netw 30(3):1294\u20131311. https:\/\/doi.org\/10.1109\/TNET.2021.3137084","journal-title":"IEEEACM Trans Netw"},{"key":"21008_CR26","doi-asserted-by":"publisher","first-page":"103176","DOI":"10.1016\/j.cose.2023.103176","volume":"129","author":"I Debicha","year":"2023","unstructured":"Debicha I, Cochez B, Kenaza T, Debatty T, Dricot J-M, Mees W (2023) Adv-Bot: realistic adversarial botnet attacks against network intrusion detection systems. Comput Secur 129:103176. https:\/\/doi.org\/10.1016\/j.cose.2023.103176","journal-title":"Comput Secur"},{"issue":"3","key":"21008_CR27","doi-asserted-by":"publisher","first-page":"2330","DOI":"10.1109\/JIOT.2022.3211346","volume":"10","author":"C Park","year":"2023","unstructured":"Park C, Lee J, Kim Y, Park J-G, Kim H, Hong D (2023) An enhanced ai-based network intrusion detection system using generative adversarial networks. IEEE Internet Things J 10(3):2330\u20132345. https:\/\/doi.org\/10.1109\/JIOT.2022.3211346","journal-title":"IEEE Internet Things J"},{"key":"21008_CR28","doi-asserted-by":"publisher","first-page":"185","DOI":"10.1016\/j.future.2022.08.011","volume":"138","author":"I Debicha","year":"2023","unstructured":"Debicha I, Bauwens R, Debatty T, Dricot J-M, Kenaza T, Mees W (2023) TAD: Transfer learning-based multi-adversarial detection of evasion attacks against network intrusion detection systems. Future Gener Comput Syst 138:185\u2013197. https:\/\/doi.org\/10.1016\/j.future.2022.08.011","journal-title":"Future Gener Comput Syst"},{"key":"21008_CR29","doi-asserted-by":"publisher","first-page":"110173","DOI":"10.1016\/j.asoc.2023.110173","volume":"137","author":"H Mohammadian","year":"2023","unstructured":"Mohammadian H, Ghorbani AA, Lashkari AH (2023) A gradient-based approach for adversarial attack on deep learning-based network intrusion detection systems. Appl Soft Comput 137:110173. https:\/\/doi.org\/10.1016\/j.asoc.2023.110173","journal-title":"Appl Soft Comput"},{"key":"21008_CR30","doi-asserted-by":"publisher","first-page":"103546","DOI":"10.1016\/j.cose.2023.103546","volume":"136","author":"A Paya","year":"2024","unstructured":"Paya A, Arroni S, Garc\u00eda-D\u00edaz V, G\u00f3mez A (2024) Apollon: a robust defense system against adversarial machine learning attacks in intrusion detection systems. Comput Secur 136:103546. https:\/\/doi.org\/10.1016\/j.cose.2023.103546","journal-title":"Comput Secur"},{"key":"21008_CR31","doi-asserted-by":"publisher","first-page":"97","DOI":"10.1016\/j.comcom.2023.09.030","volume":"218","author":"K Roshan","year":"2024","unstructured":"Roshan K, Zafar A, Ul Haque SB (2024) \u201cUntargeted white-box adversarial attack with heuristic defence methods in real-time deep learning based network intrusion detection system. Comput Commun 218:97\u2013113. https:\/\/doi.org\/10.1016\/j.comcom.2023.09.030","journal-title":"Comput Commun"},{"key":"21008_CR32","doi-asserted-by":"publisher","first-page":"123567","DOI":"10.1016\/j.eswa.2024.123567","volume":"249","author":"MK Roshan","year":"2024","unstructured":"Roshan MK, Zafar A (2024) Boosting robustness of network intrusion detection systems: a novel two phase defense strategy against untargeted white-box optimization adversarial attack. Expert Syst Appl 249:123567. https:\/\/doi.org\/10.1016\/j.eswa.2024.123567","journal-title":"Expert Syst Appl"},{"issue":"3","key":"21008_CR33","doi-asserted-by":"publisher","first-page":"2353","DOI":"10.1007\/s10207-024-00844-w","volume":"23","author":"K Barik","year":"2024","unstructured":"Barik K, Misra S, Fernandez-Sanz L (2024) Adversarial attack detection framework based on optimized weighted conditional stepwise adversarial network. Int J Inf Secur 23(3):2353\u20132376. https:\/\/doi.org\/10.1007\/s10207-024-00844-w","journal-title":"Int J Inf Secur"},{"key":"21008_CR34","doi-asserted-by":"publisher","first-page":"103644","DOI":"10.1016\/j.cose.2023.103644","volume":"137","author":"X Yuan","year":"2024","unstructured":"Yuan X, Han S, Huang W, Ye H, Kong X, Zhang F (2024) A simple framework to enhance the adversarial robustness of deep learning-based intrusion detection system. Comput Secur 137:103644. https:\/\/doi.org\/10.1016\/j.cose.2023.103644","journal-title":"Comput Secur"},{"key":"21008_CR35","doi-asserted-by":"publisher","first-page":"100664","DOI":"10.1016\/j.simpa.2024.100664","volume":"21","author":"K Barik","year":"2024","unstructured":"Barik K, Misra S (2024) IDS-Anta: An open-source code with a defense mechanism to detect adversarial attacks for intrusion detection system. Softw Impacts 21:100664. https:\/\/doi.org\/10.1016\/j.simpa.2024.100664","journal-title":"Softw Impacts"},{"key":"21008_CR36","doi-asserted-by":"publisher","first-page":"112455","DOI":"10.1016\/j.asoc.2024.112455","volume":"168","author":"M Arafah","year":"2025","unstructured":"Arafah M, Phillips I, Adnane A, Hadi W, Alauthman M, Al-Banna A-K (2025) Anomaly-based network intrusion detection using denoising autoencoder and Wasserstein GAN synthetic attacks. Appl Soft Comput 168:112455. https:\/\/doi.org\/10.1016\/j.asoc.2024.112455","journal-title":"Appl Soft Comput"},{"key":"21008_CR37","doi-asserted-by":"publisher","first-page":"126513","DOI":"10.1016\/j.eswa.2025.126513","volume":"270","author":"V Kumar","year":"2025","unstructured":"Kumar V, Kumar K, Singh M, Kumar N (2025) NIDS-DA: Detecting functionally preserved adversarial examples for network intrusion detection system using deep autoencoders. Expert Syst Appl 270:126513. https:\/\/doi.org\/10.1016\/j.eswa.2025.126513","journal-title":"Expert Syst Appl"},{"key":"21008_CR38","doi-asserted-by":"publisher","first-page":"105177","DOI":"10.1016\/j.rineng.2025.105177","volume":"26","author":"K Barik","year":"2025","unstructured":"Barik K, Misra S, L\u00f3pez-Baldominos I (2025) Black-box adversarial attack defense approach: an empirical analysis from cybersecurity perceptive. Results Eng 26:105177. https:\/\/doi.org\/10.1016\/j.rineng.2025.105177","journal-title":"Results Eng"},{"key":"21008_CR39","doi-asserted-by":"publisher","first-page":"137494","DOI":"10.1109\/ACCESS.2021.3118361","volume":"9","author":"MA Siddiqi","year":"2021","unstructured":"Siddiqi MA, Pak W (2021) An agile approach to identify single and hybrid normalization for enhancing machine learning-based network intrusion detection. IEEE Access 9:137494\u2013137513. https:\/\/doi.org\/10.1109\/ACCESS.2021.3118361","journal-title":"IEEE Access"},{"key":"21008_CR40","doi-asserted-by":"publisher","first-page":"181","DOI":"10.1016\/j.future.2022.04.024","volume":"135","author":"L Zhiqiang","year":"2022","unstructured":"Zhiqiang L, Mohiuddin G, Jiangbin Z, Asim M, Sifei W (2022) Intrusion detection in wireless sensor network using enhanced empirical based component analysis. Future Gener Comput Syst 135:181\u2013193. https:\/\/doi.org\/10.1016\/j.future.2022.04.024","journal-title":"Future Gener Comput Syst"},{"key":"21008_CR41","doi-asserted-by":"publisher","first-page":"56","DOI":"10.1016\/j.tcs.2022.07.030","volume":"931","author":"PR Kannari","year":"2022","unstructured":"Kannari PR, Chowdary NS, Laxmikanth Biradar R (2022) An anomaly-based intrusion detection system using recursive feature elimination technique for improved attack detection. Theor Comput Sci 931:56\u201364. https:\/\/doi.org\/10.1016\/j.tcs.2022.07.030","journal-title":"Theor Comput Sci"},{"key":"21008_CR42","doi-asserted-by":"publisher","first-page":"101299","DOI":"10.1016\/j.measen.2024.101299","volume":"35","author":"RA Abed","year":"2024","unstructured":"Abed RA, Hamza EK, Humaidi AJ (2024) A modified CNN-IDS model for enhancing the efficacy of intrusion detection system. Meas Sens 35:101299. https:\/\/doi.org\/10.1016\/j.measen.2024.101299","journal-title":"Meas Sens"},{"key":"21008_CR43","doi-asserted-by":"publisher","DOI":"10.1007\/s13042-024-02506-8","author":"V Kumar","year":"2024","unstructured":"Kumar V, Kumar K, Singh M (2024) NIDS-CBAD: detecting adversarial attacks in network intrusion detection systems using domain constraints. Int J Mach Learn Cybern. https:\/\/doi.org\/10.1007\/s13042-024-02506-8","journal-title":"Int J Mach Learn Cybern"},{"key":"21008_CR44","doi-asserted-by":"publisher","first-page":"5476","DOI":"10.1109\/TIFS.2024.3402155","volume":"19","author":"M Wang","year":"2024","unstructured":"Wang M, Yang N, Forcade-Perkins NJ, Weng N (2024) ProGen: projection-based adversarial attack generation against network intrusion detection. IEEE Trans Inf Forensics Secur 19:5476\u20135491. https:\/\/doi.org\/10.1109\/TIFS.2024.3402155","journal-title":"IEEE Trans Inf Forensics Secur"},{"key":"21008_CR45","doi-asserted-by":"publisher","first-page":"4561","DOI":"10.1109\/TIFS.2023.3297369","volume":"18","author":"J Chen","year":"2023","unstructured":"Chen J, Zhao Y, Li Q, Feng X, Xu K (2023) FedDef: defense against gradient leakage in federated learning-based network intrusion detection systems. IEEE Trans Inf Forensics Secur 18:4561\u20134576. https:\/\/doi.org\/10.1109\/TIFS.2023.3297369","journal-title":"IEEE Trans Inf Forensics Secur"},{"key":"21008_CR46","doi-asserted-by":"publisher","first-page":"48720","DOI":"10.1109\/ACCESS.2025.3551718","volume":"13","author":"M. Subhani Mr","year":"2025","unstructured":"Mr M. Subhani, Shaik Ch, Rao YN (2025) Design of an iterative method leveraging deep Q-Networks for intrusion detection system operations. IEEE Access 13:48720\u201348745. https:\/\/doi.org\/10.1109\/ACCESS.2025.3551718","journal-title":"IEEE Access"},{"key":"21008_CR47","doi-asserted-by":"publisher","first-page":"113249","DOI":"10.1016\/j.eswa.2020.113249","volume":"148","author":"H Alazzam","year":"2020","unstructured":"Alazzam H, Sharieh A, Sabri KE (2020) A feature selection algorithm for intrusion detection system based on pigeon inspired optimizer. Expert Syst Appl 148:113249. https:\/\/doi.org\/10.1016\/j.eswa.2020.113249","journal-title":"Expert Syst Appl"},{"issue":"5","key":"21008_CR48","doi-asserted-by":"publisher","first-page":"2531","DOI":"10.1007\/s11831-021-09694-4","volume":"29","author":"AG Gad","year":"2022","unstructured":"Gad AG (2022) Particle swarm optimization algorithm and its applications: a systematic review. Arch Comput Methods Eng 29(5):2531\u20132561. https:\/\/doi.org\/10.1007\/s11831-021-09694-4","journal-title":"Arch Comput Methods Eng"},{"key":"21008_CR49","doi-asserted-by":"publisher","unstructured":"Nicolae MI, Sinn M, Tran MN, Buesser B, Rawat A, Wistuba M,\u00a0Zantedeschi V, Baracaldo N, Chen B, Ludwig H, Molloy IM, Edwards B (2018) Adversarial robustness toolbox v1. 0.0. arXiv preprint arXiv:1807.01069. https:\/\/doi.org\/10.48550\/arXiv.1807.01069","DOI":"10.48550\/arXiv.1807.01069"}],"container-title":["Multimedia Tools and Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11042-025-21008-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s11042-025-21008-5\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11042-025-21008-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,17]],"date-time":"2025-09-17T09:44:57Z","timestamp":1758102297000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s11042-025-21008-5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,7,30]]},"references-count":49,"journal-issue":{"issue":"31","published-online":{"date-parts":[[2025,9]]}},"alternative-id":["21008"],"URL":"https:\/\/doi.org\/10.1007\/s11042-025-21008-5","relation":{},"ISSN":["1573-7721"],"issn-type":[{"value":"1573-7721","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,7,30]]},"assertion":[{"value":"23 January 2025","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"6 June 2025","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"25 June 2025","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"30 July 2025","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"No ethical approval is required based on the following. a. This article does not contain any studies with animals performed by any of the authors. b. This article does not contain any studies with human participants or animals performed by any of the authors.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Ethical approval"}},{"value":"Not Applicable.","order":3,"name":"Ethics","group":{"name":"EthicsHeading","label":"Consent to participate"}},{"value":"Not Applicable. No figure and table is taken from any source.","order":4,"name":"Ethics","group":{"name":"EthicsHeading","label":"Consent to publish"}},{"value":"All authors declare that he\/she has no conflict of interest.","order":5,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}]}}