基于iom的医疗保健5.0中网络威胁检测的可解释和自适应GAN-BiLSTM方法。

IF 6.7 2区医学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Journal of Biomedical and Health Informatics Pub Date : 2025-05-23 DOI:10.1109/JBHI.2025.3573097

Zabeeh Ullah, Fahim Arif, Nauman Ali Khan, Mudassar Ali Khan, Ikram Ud Din, Ahmad Almogren, Ayman Altameem

{"title":"基于iom的医疗保健5.0中网络威胁检测的可解释和自适应GAN-BiLSTM方法。","authors":"Zabeeh Ullah, Fahim Arif, Nauman Ali Khan, Mudassar Ali Khan, Ikram Ud Din, Ahmad Almogren, Ayman Altameem","doi":"10.1109/JBHI.2025.3573097","DOIUrl":null,"url":null,"abstract":"Healthcare 5.0, driven by the Internet of Medical Things (IoMT), introduces transformative changes in the medical field but also exposes systems to growing cybersecurity threats. While Deep Learning (DL) offers high accuracy in attack detection, its effectiveness is often limited by data imbalance and difficulty in identifying key features dynamically. Additionally, DL models are often criticized for their lack of interpretability, as their internal decisionmaking remains obscure. To overcome these limitations, this paper presents an explainable and adaptive DL-based security framework. It integrates a Generative Adversarial Network (GAN) to balance the dataset by generating realistic samples for underrepresented attack classes, and employs Bidirectional Long Short-Term Memory (BiLSTM) to identify temporal patterns and critical features. To enhance transparency, SHapley Additive exPlanations (SHAP) and Permutation Feature Importance (PFI) are used for interpreting the model's decisions. Experiments conducted on the NSL-KDD dataset demonstrate the effectiveness of the proposed method, achieving 93.81% accuracy and an F1-score of 82.95%.","PeriodicalId":13073,"journal":{"name":"IEEE Journal of Biomedical and Health Informatics","volume":"PP ","pages":""},"PeriodicalIF":6.7000,"publicationDate":"2025-05-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Interpretable and Adaptive GAN-BiLSTM Approach for Cyber Threat Detection in IoMT-based Healthcare 5.0.\",\"authors\":\"Zabeeh Ullah, Fahim Arif, Nauman Ali Khan, Mudassar Ali Khan, Ikram Ud Din, Ahmad Almogren, Ayman Altameem\",\"doi\":\"10.1109/JBHI.2025.3573097\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Healthcare 5.0, driven by the Internet of Medical Things (IoMT), introduces transformative changes in the medical field but also exposes systems to growing cybersecurity threats. While Deep Learning (DL) offers high accuracy in attack detection, its effectiveness is often limited by data imbalance and difficulty in identifying key features dynamically. Additionally, DL models are often criticized for their lack of interpretability, as their internal decisionmaking remains obscure. To overcome these limitations, this paper presents an explainable and adaptive DL-based security framework. It integrates a Generative Adversarial Network (GAN) to balance the dataset by generating realistic samples for underrepresented attack classes, and employs Bidirectional Long Short-Term Memory (BiLSTM) to identify temporal patterns and critical features. To enhance transparency, SHapley Additive exPlanations (SHAP) and Permutation Feature Importance (PFI) are used for interpreting the model's decisions. Experiments conducted on the NSL-KDD dataset demonstrate the effectiveness of the proposed method, achieving 93.81% accuracy and an F1-score of 82.95%.\",\"PeriodicalId\":13073,\"journal\":{\"name\":\"IEEE Journal of Biomedical and Health Informatics\",\"volume\":\"PP \",\"pages\":\"\"},\"PeriodicalIF\":6.7000,\"publicationDate\":\"2025-05-23\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Journal of Biomedical and Health Informatics\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://doi.org/10.1109/JBHI.2025.3573097\",\"RegionNum\":2,\"RegionCategory\":\"医学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Journal of Biomedical and Health Informatics","FirstCategoryId":"5","ListUrlMain":"https://doi.org/10.1109/JBHI.2025.3573097","RegionNum":2,"RegionCategory":"医学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

由医疗物联网（IoMT）推动的医疗保健5.0在医疗领域带来了革命性的变化，但也使系统面临越来越多的网络安全威胁。虽然深度学习在攻击检测方面具有较高的准确性，但其有效性往往受到数据不平衡和难以动态识别关键特征的限制。此外，深度学习模型经常因为缺乏可解释性而受到批评，因为它们的内部决策仍然是模糊的。为了克服这些限制，本文提出了一个可解释的、自适应的基于dll的安全框架。它集成了生成对抗网络（GAN），通过为代表性不足的攻击类别生成真实样本来平衡数据集，并采用双向长短期记忆（BiLSTM）来识别时间模式和关键特征。为了提高透明度，使用SHapley加性解释（SHAP）和排列特征重要性（PFI）来解释模型的决策。在NSL-KDD数据集上进行的实验证明了该方法的有效性，准确率达到93.81%，f1分数达到82.95%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Interpretable and Adaptive GAN-BiLSTM Approach for Cyber Threat Detection in IoMT-based Healthcare 5.0.

Healthcare 5.0, driven by the Internet of Medical Things (IoMT), introduces transformative changes in the medical field but also exposes systems to growing cybersecurity threats. While Deep Learning (DL) offers high accuracy in attack detection, its effectiveness is often limited by data imbalance and difficulty in identifying key features dynamically. Additionally, DL models are often criticized for their lack of interpretability, as their internal decisionmaking remains obscure. To overcome these limitations, this paper presents an explainable and adaptive DL-based security framework. It integrates a Generative Adversarial Network (GAN) to balance the dataset by generating realistic samples for underrepresented attack classes, and employs Bidirectional Long Short-Term Memory (BiLSTM) to identify temporal patterns and critical features. To enhance transparency, SHapley Additive exPlanations (SHAP) and Permutation Feature Importance (PFI) are used for interpreting the model's decisions. Experiments conducted on the NSL-KDD dataset demonstrate the effectiveness of the proposed method, achieving 93.81% accuracy and an F1-score of 82.95%.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE Journal of Biomedical and Health Informatics COMPUTER SCIENCE, INFORMATION SYSTEMS-COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS

CiteScore

13.60

自引率

6.50%

发文量

1151

期刊介绍： IEEE Journal of Biomedical and Health Informatics publishes original papers presenting recent advances where information and communication technologies intersect with health, healthcare, life sciences, and biomedicine. Topics include acquisition, transmission, storage, retrieval, management, and analysis of biomedical and health information. The journal covers applications of information technologies in healthcare, patient monitoring, preventive care, early disease diagnosis, therapy discovery, and personalized treatment protocols. It explores electronic medical and health records, clinical information systems, decision support systems, medical and biological imaging informatics, wearable systems, body area/sensor networks, and more. Integration-related topics like interoperability, evidence-based medicine, and secure patient data are also addressed.