Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms
Abstract Malicious domains are one of the main resources mandatory for adversaries to run attacks over the Internet. Owing to the significant part of the domain name system (DNS), detailed research has been performed to detect malicious fields according to their unique behaviour, which is considered...
Saved in:
| Main Authors: | , , , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Nature Portfolio
2025-07-01
|
| Series: | Scientific Reports |
| Subjects: | |
| Online Access: | https://doi.org/10.1038/s41598-025-99420-y |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849238524118695936 |
|---|---|
| author | Fatimah Alhayan Asma Alshuhail Ahmed Omer Ahmed Ismail Othman Alrusaini Sultan Alahmari Abdulsamad Ebrahim Yahya Monir Abdullah Samah Al Zanin |
| author_facet | Fatimah Alhayan Asma Alshuhail Ahmed Omer Ahmed Ismail Othman Alrusaini Sultan Alahmari Abdulsamad Ebrahim Yahya Monir Abdullah Samah Al Zanin |
| author_sort | Fatimah Alhayan |
| collection | DOAJ |
| description | Abstract Malicious domains are one of the main resources mandatory for adversaries to run attacks over the Internet. Owing to the significant part of the domain name system (DNS), detailed research has been performed to detect malicious fields according to their unique behaviour, which is considered in dissimilar stages of the DNS life cycle queries and explanations. The DNS has played a crucial role in the evolution of the Internet. Its primary objective is to simplify user experience by converting a website’s Internet Protocol (IP) address into a recognizable domain name and vice versa. Identifying these adverse fields is meaningful in contesting increased network attacks. Artificial intelligence (AI) is applied to develop the areas of malicious domain recognition and hindrance by the probability to improve robust, efficient, and scalable malware detection units. AI methods have expressed significant results in malicious domain detection. This manuscript presents an Enhance Malicious Domain Detection Using an Attention-Based Deep Learning Model with Optimization Algorithms (EMDD-ADLMOA) technique. The proposed EMDD-ADLMOA technique relies on improving malicious domain detection in cybersecurity. Initially, the min–max scaling method is utilized in the pre-processing phase to convert input data into an appropriate design. For feature selection (FS), the proposed EMDD-ADLMOA technique utilizes the quantum-inspired firefly algorithm (QIFA) model. Furthermore, the hybrid model of a temporal convolutional network and bi-directional long short-term memory with squeeze-and-excitation Attention (TCN-BiLSTM-SEA) model is employed for the classification process. Finally, the parrot optimization (PO) model optimally fine-tunes the hyperparameter values of the TCN-BiLSTM-SEA model. The performance results of the EMDD-ADLMOA approach are verified under a malicious dataset. The experimental validation of the EMDD-ADLMOA approach portrayed a superior accuracy value of 98.52% over existing techniques. |
| format | Article |
| id | doaj-art-2ecf1b97945d48c295fd206fd7caa69d |
| institution | Kabale University |
| issn | 2045-2322 |
| language | English |
| publishDate | 2025-07-01 |
| publisher | Nature Portfolio |
| record_format | Article |
| series | Scientific Reports |
| spelling | doaj-art-2ecf1b97945d48c295fd206fd7caa69d2025-08-20T04:01:35ZengNature PortfolioScientific Reports2045-23222025-07-0115111810.1038/s41598-025-99420-yArtificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithmsFatimah Alhayan0Asma Alshuhail1Ahmed Omer Ahmed Ismail2Othman Alrusaini3Sultan Alahmari4Abdulsamad Ebrahim Yahya5Monir Abdullah6Samah Al Zanin7Department of Information Systems, College of Computer and Information Sciences, Princess Nourah Bint Abdulrahman UniversityDepartment of Information Systems, College of Computer Sciences & Information Technology, King Faisal UniversityDepartment of Information Systems, Applied College at Mahayil, King Khalid UniversityDepartment of Engineering and Applied Sciences, Applied College, Umm Al-Qura University MakkahKing Abdul Aziz City for Science and Technology (KACST), Cybersecurity InstituteDepartment of Information Technology, College of Computing and Information Technology, Northern Border UniversityDepartment of Computer Science and Artificial Intelligence, College of Computing and Information Technology, University of BishaDepartment of Computer Science, Applied College, Prince Sattam Bin Abdulaziz UniversityAbstract Malicious domains are one of the main resources mandatory for adversaries to run attacks over the Internet. Owing to the significant part of the domain name system (DNS), detailed research has been performed to detect malicious fields according to their unique behaviour, which is considered in dissimilar stages of the DNS life cycle queries and explanations. The DNS has played a crucial role in the evolution of the Internet. Its primary objective is to simplify user experience by converting a website’s Internet Protocol (IP) address into a recognizable domain name and vice versa. Identifying these adverse fields is meaningful in contesting increased network attacks. Artificial intelligence (AI) is applied to develop the areas of malicious domain recognition and hindrance by the probability to improve robust, efficient, and scalable malware detection units. AI methods have expressed significant results in malicious domain detection. This manuscript presents an Enhance Malicious Domain Detection Using an Attention-Based Deep Learning Model with Optimization Algorithms (EMDD-ADLMOA) technique. The proposed EMDD-ADLMOA technique relies on improving malicious domain detection in cybersecurity. Initially, the min–max scaling method is utilized in the pre-processing phase to convert input data into an appropriate design. For feature selection (FS), the proposed EMDD-ADLMOA technique utilizes the quantum-inspired firefly algorithm (QIFA) model. Furthermore, the hybrid model of a temporal convolutional network and bi-directional long short-term memory with squeeze-and-excitation Attention (TCN-BiLSTM-SEA) model is employed for the classification process. Finally, the parrot optimization (PO) model optimally fine-tunes the hyperparameter values of the TCN-BiLSTM-SEA model. The performance results of the EMDD-ADLMOA approach are verified under a malicious dataset. The experimental validation of the EMDD-ADLMOA approach portrayed a superior accuracy value of 98.52% over existing techniques.https://doi.org/10.1038/s41598-025-99420-yMalicious domain detectionDeep learningCybersecurityArtificial intelligenceFeature selection |
| spellingShingle | Fatimah Alhayan Asma Alshuhail Ahmed Omer Ahmed Ismail Othman Alrusaini Sultan Alahmari Abdulsamad Ebrahim Yahya Monir Abdullah Samah Al Zanin Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms Scientific Reports Malicious domain detection Deep learning Cybersecurity Artificial intelligence Feature selection |
| title | Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms |
| title_full | Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms |
| title_fullStr | Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms |
| title_full_unstemmed | Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms |
| title_short | Artificial intelligence-driven cybersecurity: enhancing malicious domain detection using attention-based deep learning model with optimization algorithms |
| title_sort | artificial intelligence driven cybersecurity enhancing malicious domain detection using attention based deep learning model with optimization algorithms |
| topic | Malicious domain detection Deep learning Cybersecurity Artificial intelligence Feature selection |
| url | https://doi.org/10.1038/s41598-025-99420-y |
| work_keys_str_mv | AT fatimahalhayan artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT asmaalshuhail artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT ahmedomerahmedismail artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT othmanalrusaini artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT sultanalahmari artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT abdulsamadebrahimyahya artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT monirabdullah artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms AT samahalzanin artificialintelligencedrivencybersecurityenhancingmaliciousdomaindetectionusingattentionbaseddeeplearningmodelwithoptimizationalgorithms |