Abstract
This article proposes a novel approach to cyber threat detection in adaptive network structures (ANS) that dynamically alter their topology in response to internal or external events. The results of modeling network behavior dynamics are presented, considering structural and parametric changes in ANS nodes. A formalized criterion for anomaly detection in the ANS topology is proposed, based on spatial-structural deviations, local changes at critical nodes, and their connectivity. An LSTM recurrent neural network model is used to predict threat realization, which can store information about the sequence of network state changes and adapt to network dynamics. A simulated environment was created to generate network activity data, enabling the training of the model for binary classification of network states (attack/normal). Computational experiments demonstrated the model’s ability to detect consistent sequences of anomalies and identify potentially hazardous states. However, certain challenges were identified in classifying isolated or rare attacks, suggesting further development through stratified learning and loss function optimization. The proposed approach combines a graph-based network model with deep learning, enabling context-aware threat detection in complex ANS. This opens up prospects for its application in the cybersecurity of distributed systems.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Sayed, A.H.: Adaptive networks. Proc. IEEE. 102(4), 460–497 (2014)
Gross, T., Sayama, H.: Adaptive networks. In: Adaptive Networks: Theory, Models and Applications, pp. 1–8. Berlin/Heidelberg, Springer (2009)
Cao, B., Li, S., Chen, H., Deng, H.: A fault diagnosis method for service function chaining with adaptive network topology changes. In: Proceedings of the 2024 2nd International Conference on Computer, Internet of Things and Smart City, pp. 144–152 (2024)
Prakalya, S.B.: Adaptive network security using machine learning for real-time threat detection. In: 2025 3rd International Conference on Communication, Security, and Artificial Intelligence (ICCSAI), vol. 3, pp. 850–854. IEEE (2025)
Shafiq, M., Yu, X., Bashir, A.K., Chaudhry, H.N., Wang, D.: A machine learning approach for feature selection traffic classification using security analysis. J. Supercomput. 74(10), 4867–4892 (2018)
Cai, L., et al.: Structural temporal graph neural networks for anomaly detection in dynamic graphs. In: Proceedings of the 30th ACM international conference on Information & Knowledge Management, pp. 3747–3756 (2021)
Eiteneuer, B., Niggemann, O.: LSTM for model-based anomaly detection in cyber-physical systems. arXiv preprint arXiv:2010.15680 (2020)
Mahamat, M., Jaber, G., Bouabdallah, A.: Achieving efficient energy-aware security in IoT networks: a survey of recent solutions and research challenges. Wirel. Netw. 29(2), 787–808 (2023)
Singh, I., Lee, S.W.: Self-adaptive and secure mechanism for IoT based multimedia services: a survey. Multimed. Tools Appl. 81(19), 26685–26720 (2022)
Zang, X., Yang, B., Liu, X., Li, A.: DNEA: dynamic network embedding method for anomaly detection. In: International Conference on Knowledge Science, Engineering and Management, pp. 236–248. Springer, Cham (2021)
Yang, Y.T., Zhu, Q.: Game-theoretic foundations for cyber resilience against deceptive information attacks in intelligent transportation systems. arXiv preprint arXiv:2412.04627 (2024)
Lansky, J., et al.: Deep learning-based intrusion detection systems: a systematic review. IEEE Access. 9, 101574–101599 (2021)
Abdulganiyu, O.H., Ait Tchakoucht, T., Saheed, Y.K.: A systematic literature review for network intrusion detection system (IDS). Int. J. Inf. Secur. 22(5), 1125–1162 (2023)
Ahmad, Z., Shahid Khan, A., Wai Shiang, C., Abdullah, J., Ahmad, F.: Network intrusion detection system: a systematic study of machine learning and deep learning approaches. Trans. Emerg. Telecommun. Technol. 32(1), e4150 (2021)
Kostiuk, Y., Skladannyi, P., Korshun, N., Bebeshko, B., Khorolska, K.: Integrated Protection Strategies and Adaptive Resource Distribution for Secure Video Streaming Over a Bluetooth Network, vol. 3826, pp. 129–138. Cybersecurity Providing in Information and Telecommunication Systems II (2024) ISSN 1613-0073. https://ceur-ws.org/Vol-3826/
Lakhno, V., Alimseitova, Z., Kalaman, Y., Kryvoruchko, O., Desyatko, A., Kaminskyi, S.: Development of an information security system based on modeling distributed computer network vulnerability indicators of an informatization object. Int. J. Electr. Telecommun. 69(3), 495–502 (2023). https://doi.org/10.24425/ijet.2023.146495
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2026 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Lakhno, V., Desiatko, A., Khorolska, K., Bebeshko, B., Redko, D. (2026). LSTM Model for Cyber Threat Detection in Adaptive Networks. In: Bazilo, C., Bondarenko, M., Faure, E., Antonyuk, V., Dzierwa, A., Usyk, L. (eds) Sensors, Devices and Systems. SDaS 2025. Lecture Notes in Electrical Engineering, vol 1570. Springer, Cham. https://doi.org/10.1007/978-3-032-18415-3_16
Download citation
DOI: https://doi.org/10.1007/978-3-032-18415-3_16
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-032-18414-6
Online ISBN: 978-3-032-18415-3
eBook Packages: EngineeringEngineering (R0)Springer Nature Proceedings excluding Computer Science