{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T01:15:09Z","timestamp":1783386909555,"version":"3.54.6"},"reference-count":0,"publisher":"River Publishers","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JWE"],"abstract":"<jats:p>With the rapid development of the World Wide Web and the popularity of Internet applications, the generation and exchange of data have exploded. Large-scale data generation and transmission also bring severe security challenges. In response to the problems that existing anomaly detection methods are difficult to jointly model the semantic context and temporal dependencies in non-encrypted scenarios, and that single-modal feature information is insufficient in encrypted scenarios, resulting in limited detection accuracy, this study proposes two artificial intelligence anomaly detection methods that are adapted to different scenarios. For non-encrypted\/low-encrypted scenarios, a BERT-LSTM-TextCNN parallel fusion architecture is proposed. This architecture extracts high-order semantic features, long-term dependency features, and multi-scale local features through parallel branches, and achieves complementary enhancement of multi-perspective information through feature concatenation, effectively solving the problem of difficult collaborative modeling of multiple types of features in non-encrypted scenarios. For multi-encrypted scenarios, a detection method based on improved ResNet and cross-modal feature fusion is proposed. Different from traditional methods that only rely on deep learning features, the study adaptively weights and fuses the deep semantic features extracted by ResNet with flow statistics features and temporal features and optimizes the fusion weights through a learnable random forest, breaking through the bottleneck of insufficient single-modal feature information in encrypted traffic. The precision reached 97.18%, the recall rate reached 95.26%, and the F1-score reached 96.21%. The AUC values were all greater than 0.97, the false positive rate was 8.12% lower than the traditional method, and the single-batch data detection time was only 37.25 s. In the multi-encryption scenario, the precision, recall rate and F1-score of the cross-modal feature fusion method were 98.48%, 87.30% and 92.57%, respectively. This effectively solves the detection limitations caused by feature ambiguity in encrypted environments. In summary, the artificial intelligence anomaly detection method effectively improves detection accuracy and efficiency and provides a feasible technical path for building a comprehensive World Wide Web data security monitoring system.<\/jats:p>","DOI":"10.13052\/jwe1540-9589.2557","type":"journal-article","created":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T00:37:19Z","timestamp":1783384639000},"source":"Crossref","is-referenced-by-count":0,"title":["Artificial Intelligence-Based Anomaly Detection for Large-Scale Web Data Security Monitoring"],"prefix":"10.13052","author":[{"given":"Siyao","family":"Xu","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yan","family":"Li","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Kai","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Weiming","family":"Li","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jieshao","family":"Lai","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"5195","published-online":{"date-parts":[[2026,7,6]]},"container-title":["Journal of Web Engineering"],"original-title":[],"link":[{"URL":"https:\/\/journals.riverpublishers.com\/index.php\/JWE\/article\/download\/32193\/24008","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/journals.riverpublishers.com\/index.php\/JWE\/article\/download\/32193\/24009","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/journals.riverpublishers.com\/index.php\/JWE\/article\/download\/32193\/24008","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T00:37:20Z","timestamp":1783384640000},"score":1,"resource":{"primary":{"URL":"https:\/\/journals.riverpublishers.com\/index.php\/JWE\/article\/view\/32193"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,7,6]]},"references-count":0,"URL":"https:\/\/doi.org\/10.13052\/jwe1540-9589.2557","relation":{},"ISSN":["1544-5976","1540-9589"],"issn-type":[{"value":"1544-5976","type":"electronic"},{"value":"1540-9589","type":"print"}],"subject":[],"published":{"date-parts":[[2026,7,6]]}}}