Publication: A Hybrid Deep Reinforcement and Machine Learning-Based Intrusion Detection System for Dynamic XSS Attacks
| dc.contributor.author | Kara, Mustafa | |
| dc.contributor.author | Okur, Fatma Betul | |
| dc.contributor.author | DURMUŞKAYA, MUHAMMED ERSİN | |
| dc.contributor.author | Kabasakaloglu, Murat Utku | |
| dc.contributor.author | Okutan Kara, Ayse | |
| dc.date.accessioned | 2026-01-13T08:22:16Z | |
| dc.date.issued | 2025 | |
| dc.description.abstract | Web-based systems are vulnerable to continuously evolving or self-updating attacks such as Cross-Site Scripting (XSS). Traditional Intrusion Detection Systems (IDS) provide limited protection against this threat through signature-based and anomaly-based methods. In this study, Machine Learning (ML) methods are used in conjunction with Deep Reinforcement Learning (DRL) techniques. In the proposed approach, ML methods are utilized to rapidly detect known attacks, while DRL provides adaptive learning against more general and unknown threats. These two components are trained independently and then make decisions through a weighted combination during the prediction phase. The aim is to address the shortcomings of current IDS systems in defending against dynamic XSS attacks. Experimental results show that, in real-time IDS environments, combining Random Forest with Word2Vec ensures detection within 10 ms, maintains an F1 score of about 0.99, and keeps computational cost minimal. In contrast, for offline or SOC-based setups where longer training and adaptive learning are acceptable, the DDQN-Word2Vec combination proves most effective. Overall, the proposed hybrid system delivers scalable, real-time protection against dynamic and zero-day web threats. | en |
| dc.identifier | 37 | |
| dc.identifier.citation | Kara, M., Okur, F. B., Durmuşkaya, M. E., Kabasakaloğlu, M. U., & Okutan Kara, A. (2025). A Hybrid Deep Reinforcement and Machine Learning‐Based Intrusion Detection System for Dynamic XSS Attacks. Concurrency and Computation: Practice and Experience, 37(27-28), e70449. | |
| dc.identifier.issn | 1532-0626 | |
| dc.identifier.scopus | 2-s2.0-105022056019 | |
| dc.identifier.uri | https://doi.org/10.1002/cpe.70449 | |
| dc.identifier.uri | https://hdl.handle.net/11413/9808 | |
| dc.identifier.wos | 001626088000037 | |
| dc.language.iso | en | |
| dc.publisher | John Wiley and Sons Ltd. | |
| dc.relation.journal | Concurrency and Computation: Practice and Experience | |
| dc.rights | info:eu-repo/semantics/restrictedAccess | |
| dc.subject | Deep Reinforcement Learning | |
| dc.subject | Intrusion Detection Systems | |
| dc.subject | Machine Learning | |
| dc.subject | Word2vec | |
| dc.subject | XSS | |
| dc.title | A Hybrid Deep Reinforcement and Machine Learning-Based Intrusion Detection System for Dynamic XSS Attacks | |
| dc.type | Article | |
| dspace.entity.type | Publication | |
| local.indexed.at | WOS | |
| local.indexed.at | Scopus | |
| local.journal.endpage | 23 | |
| local.journal.issue | 27-28 | |
| local.journal.startpage | 1 | |
| relation.isAuthorOfPublication | 2ba8b74b-6ed2-4eab-9d14-4127cea1d1e0 | |
| relation.isAuthorOfPublication.latestForDiscovery | 2ba8b74b-6ed2-4eab-9d14-4127cea1d1e0 |