At present, phishing attacks have developed as the most noticeable social network attacks controlled by government, public internet users, and businesses. Phishing websites is a cyberattack that mainly targets online user to steal their confidential data including banking details and login credentials. The websites phishing arise identical to their equal legitimate websites for appealing wide range of Internet users. The attacker cheats the user by suggesting the covered webpage as reliable or legitimate to recover its significant data. Numerous solutions for phishing websites attack had been introduced like heuristics, whitelisting or blacklisting, and Machine Learning (ML) based models. This study focuses on the design of Chicken Swarm Optimization with Explainable Artificial Intelligence using Phishing Detection and Classification (CSOXAI-PDC) techniques on Cyber-Physical Systems. The projected CSOXAI-PDC method emphasizes the effectual classification and recognition of phishing based on CPS. To attain this, the developed CSOXAI-PDC technique first executes the data normalization method. Next, the classification of phishing recognition occurs utilizing deep Q network (DQN) classifier. For enhancing the classification performance of DQN classifier, the hyperparameter tuning method can be done using the chicken swarm optimization (CSO) algorithm. Eventually, the CSOXAI-PDC method incorporates the XAI method LIME for superior clarification and perception of the black-box procedure for accurate identification of intrusions. The experimental analysis of the CSOXAI-PDC method is executed against real dataset and the outcomes establish the improvement of the projected method over existing techniques.
Criminals engaging in Internet fraud are growing in number and professionality. Cyber-attacks
are different, cultured, and common. Internet fraud usually involves the confidential theft of
data from an individual or organization for blackmail intentions, generating important tasks for
cybersecurity authorities [
Machine learning (ML) and modern Artificial Intelligence (AI) methods became well-active
in some human life applications, and various earlier investigators applied ML in safety domains
[
This study focuses on the design of Chicken Swarm Optimization with Explainable Artificial Intelligence using Phishing Detection and Classification (CSOXAI-PDC) techniques on CyberPhysical Systems. To attain this, the developed CSOXAI-PDC technique first executes data normalization method. Next, the classification of phishing recognition occurs utilizing deep Q network (DQN) classifier. For enhancing the classification performance of DQN classifier, the hyperparameter tuning method can be done using the chicken swarm optimization (CSO) algorithm. Eventually, the CSOXAI-PDC method incorporates the XAI method LIME for superior clarification and perception of the black-box procedure for accurate identification of intrusions. The experimental analysis of the CSOXAI-PDC method is executed against real dataset and the outcomes establish the improvement of the projected method over recent techniques.
Alotaibi et al. [
Alsubaei et al. [14] propose a new DL method, the ResNeXt technique, and embedding Gated Recurrent Unit (GRU) method (RNT). The systematized method contains SMOTE for handling data inequality throughout the early processing of data. This method's discriminatory ability is enhanced, especially in the process of feature extractions. The ensemble method of feature extraction exhibits critical data patterns. Fundamental to our AI classification is the RNT method, optimization by utilizing hyper-parameters over the Jaya optimizer technique (RNT-J). Almuqren et al. [15] introduce an Explainable AI Enabled Intrusion Detection Method for Secure Cyber Physical Systems (XAIID-SCPSs). The presented XAIID-SCPS method mostly focuses on the classification and ID in the CPS platforms. A Hybrid Enhanced Glowworm Swarm Optimizer (HEGSO) method has been used for FS. For ID, the Enhanced Elman Neural Networks (IENNs) method has been employed with an Enhanced Fruit Fly Optimizer (EFFO) method for the optimization of parameters. In addition, the developed method incorporates the XAI method LIME for understanding and better perceptive of the Blackbox technique for the intrusions of precise classifications.
In this article, we focus on the design of CSOXAI-PDC technique on CPS. The projected CSOXAI-PDC method emphasizes the effectual classification and recognition of phishing based on CPS. To attain this, the CSOXAI-PDC technique involved data normalization, classification using DQN, CSO based fine-tuning of hyperparameter, and LIME. Fig. 1 shows the workflow of CSOXAI-PDC technique.
Primarily, the CSOXAI-PDC technique executes data normalization method. Z-score normalization is a critical data pre-processing approach for phishing recognition, as it converts a value of features within a standard scale using a standard deviation of 1 and mean of 0 [16]. These methodologies underline differences from the mean to make it simple to identify abnormalities symbolic of phishing challenges. Through Z-score normalization, data standardization improves the reliability and precision of machine learning (ML) methods to detect phishing attacks. 3.2.
Next, the classification of phishing recognition occurs by utilizing the DQN classifier. To diminish the cost of computational related to the iterative procedure, neural networks are used to estimate the value function of state‐action [17]. Firstly, the upgrade function of 0‐learning can be stated as:
(, ) ← (, ) + - + m!a!x (", ") − (, )4 (1)
A fluctuating rate of learning within the interval [
(, |) ≈ (, ) (2)
In Q‐Learning, only neural networks and a target Q network are employed, DQN includes experience replay in training. The stochastic gradient descent (SGD) technique is used to upgrade the parameters of network in the training procedure. The DQN loss function is stated below:
() = [( − (, |))$] The optimization objective for the state‐action function is expressed below: (3) = + m!a!x (#, #|) (4)
Here, signifies a parameter of neural network, the policy gradient model is a model‐free technique intended to enhance the predictable total return of a tactic, discovering the optimum tactic directly in the strategy space. The greedy policy picks the action, which boosts the function of value on every occasion. Conversely, action and state values that were not tested earlier will not be selected afterward because they are not assessed. The ‐greedy policy integrates the advantages of exploitation and exploration. Actions are selected stochastically from every obtainable action with a probability of , whereas the finest action is nominated with a probability of 1 − . 3.3.
For enhancing the classification performance of DQN classifier, the hyperparameter tuning method can be done using the CSO algorithm. The nature of chickens creates them a special type of poultry animal, and often they manage their food‐searching efforts in clusters [18]. Hens, chicks, and roosters are three different classes of chicken flocks. According to different foraging capacities, there is a foraging hierarchal order in the group. Hens forage after roosters owing to their less foraging abilities, whereas chicks follow the lead because they have inferior foraging abilities. The chicken population shows that the chicks are arranged around the hen, the rooster occupies the center of population, and the hens are positioned around the rooster. Accordingly, there is competition among similar individual species, namely hens and hens, roosters and roosters, or among members of diverse species, namely hens and chicks, through the foraging process. For instance, hen groups %, $ forage around rooster $ and acquire the foraging pattern of rooster $ that define the foraging direction of hens %, $. Simultaneously, as hen $ is closer to the rooster %, the foraging patterns of rooster % affects hen $ towards a certain range. Chicks &, ' and ( will forage around hen $, which learn foraging patterns, and hen $ define the foraging direction of chicks &, ' and (. The CSO algorithm was inspired by self‐organizing evolution of intelligence and the coexistence of learning.
The objective function that requires an optimum solution is the optimizer object, and its variables are composed of ‐dimensional vector space , where is the number and is the dimensionality, and represents positive integer. The fitness value differentiates the chick, rooster, and hen flocks. The chick group ) is allocated to the CN individual with the high fitness values; the rooster group ) is allocated to the individual with the lower fitness values; and, the residual individuals are allocated to the hen cluster *. , and denotes the rooster, hen, and chick groups, respectively.
* = {%, $, … , +, } ) = {%, $, … , -, } ) = {%, $, … , ., } (5) (6) (7)
All the chicks have an individual mother hen, and all the hens have a matching individual dominant male. The succeeding formula updates the foraging position of rooster, hen, and chick individuals: 1) Computation equation for the rooster group /2,13 = )2,*[1 + (0, $)] 1, ) ≤ 4
5".75# $ = W|9$̇|3ℰ,
) > 4 ∈ [1, ], ≠
Where 2 denotes the location of the 2; roosters at the 2; dimension after 2; iteration,
0, $ denotes the Gaussian distribution random value within [
|.) | + $ = 5&'75'# (12)
Where 2 denotes the location of 2; hens in the 2; dimension after 2; iterations.
denotes the random =< within [
3) Calculation formula for the hen group:
)2,*3% = )2,* + ∗ (*2 − /2,1 (13)
Where )2* and *2are the location of the 2; chick and hens in the 2; dimension after 2;
iterations; refers to a random integer within [
The CSO obtains a FF to achieve heightened classifier performances. It identifies a positive numeral to express the best performances of the candidate solutions. In this research, the minimization of the classifier rate of error is examined as the FF, as delivered in Eq. (14). (8) (9) ()) = ())
. = . ∗ 100 (14) 3.4.
Eventually, the CSOXAI-PDC method incorporates the XAI method LIME for enhanced clarification and perception of the black-box procedure for precise identification of intrusions. LIME has appeared as a dominant device in the domain of XAI, mainly for the classification of text responsibilities [19]. LIME functions by creating disturbed input data examples and spotting the changes in the predictive model. In the text classification context, LIME offers local, humanaccountable descriptions for single predictions, permitting users to know how a particular decision was achieved. For example, in natural language processing (NLP) applications, LIME can emphasize the important phrases or terms in a document that are greatly subjective to the classification result. This interpretability is critical for constructing trust in the AI approach, particularly in fields where accountability and transparency are paramount namely finance or healthcare. LIME’s capability for shedding light on the decision-making method of the composite approach improves its value in different applications and promotes the liable utilization of AI schemes. Its assistance with interpretability and transparency makes good a valuable device for practitioners, investigators, and stakeholders to try to find validate, and comprehend the results.
The experimental analysis of the CSOXAI-PDC technique is examined utilizing phishing emails dataset [20], which encompasses 10000 samples with two classes illustrated in Table 1. > of 98.33%, ? of 98.34%, @ of 98.33%, 4AB<= of 98.33%, and 4AB<= of 98.33%. Similarly, with 30%TESP, the CSOXAI-PDC approach acquires average > of 98.38%, ? of 98.36%, @ of 98.38%, 4AB<= of 98.37%, and 4AB<= of 98.38%. Legitimate email Phishing email
Average
In Fig. 4, the training and validation accuracy outcomes of the CSOXAI-PDC methodology can be displayed. The accuracy values are computed throughout 0-25 epoch counts. This figure underscored that the training and validation accuracy values show growing trend that informed the capacity of the CSOXAI-PDC method with better performance over numerous iterations. Furthermore, the training accuracy and validation accuracy rest nearer over the epoch counts that exhibit least minimum overfitting and display improved performance of the CSOXAI-PDC technique, ensuring continuous prediction on hidden samples.
In Fig. 5, the training and validation loss graph of the CSOXAI-PDC system was depicted. The loss values are calculated for 0-25 epoch counts. It is denoted that the training and validation accuracy values demonstrate a minimum trend that reported the capability of the CSOXAI-PDC system to balance a trade-off between generalization and data fitting. The steady decrease in loss values in addition assurances the superior performance of the CSOXAI-PDC approach and tuning the prediction outcomes in time.
To demonstrate the superior performance of the CSOXAI-PDC model, a short comparative analysis can be produced in Table 3 and Fig. 6 [21]. This outcome illustrated that the LR and the decision forest technique have demonstrated least classification outcomes. In the meanwhile, SVM, the locally-deep SVM, Boosted DT, and averaged perceptron approaches have been tested to execute slightly adjacent classification results [22]. Additionally, the NN model has shown reasonable performance with > of 97.70%, ? of 96.40%,@ of 89.30%, and 4AB<= of 92.70%. On the other hand, the CSOXAI-PDC model illustrates promising performance with > of 98.38%, ? of 98.36%,@ of 98.38%, and 4AB<= of 98.37%.
In this study, we focus on the design of CSOXAI-PDC technique on CPS. The projected CSOXAI-PDC method emphasizes the effectual classification and recognition of phishing based on CPS. To attain this, the CSOXAI-PDC technique first executes data normalization method. Next, the classification of phishing recognition occurs by utilizing DQN classifier. For enhancing the classification performance of DQN classifier, the hyperparameter tuning method can be done using the CSO algorithm. Eventually, the CSOXAI-PDC method incorporates the XAI method LIME for superior clarification and perception of the black-box procedure for accurate identification of intrusions. The experimental analysis of the CSOXAI-PDC algorithm is executed against real dataset and the results establish the improvement of the projected method over recent techniques. [14] R. Arthi, S. Krishnaveni, S. Zeadally, An intelligent SDN-IoT enabled intrusion detection system for healthcare systems using a hybrid deep learning and machine learning approach, China Communications., (2024). [15] F. S. Alsubaei, A. A. Almazroi, N. Ayub, Enhancing Phishing Detection: A Novel Hybrid
Deep Learning Framework for Cybercrime Forensics, in IEEE Access, 12, (2024) 8373-8389. [16] L. Almuqren, M.S. Maashi, M. Alamgeer, H. Mohsen, M.A. Hamza, A.A. Abdelmageed, Explainable artificial intelligence enabled intrusion detection technique for secure cyberphysical systems, Applied Sciences, 13.5, (2023) 3081. [17] H.A. Prihanditya, The implementation of z-score normalizatio, boosting techniques to increase accuracy of c4, 5 algorithm in diagnosing chronic kidney disease. Journal of Soft Computing Exploration, 1.1, (2020) 63-69. [18] R. BOUMEGOURA, Y. ZENNIR, S.F. TAMINE, Deep Q-Learning-Based Trajectory Optimization for Vehicle Navigation in CARLA, Algerian Journal of Signals and Systems, 9.2, (2024) 128-133. [19] Chen, L. Cao, C. Chen, Y. Chen, Y. Yue, A comprehensive survey on the chicken swarm optimization algorithm and its applications: state-of-the-art and research challenges, Artificial Intelligence Review, 57.7, (2024) 170. [20] T. Aljrees, Improving Prediction of Arabic Fake News Using ELMO’s Features-Based Tri
Ensemble Model and LIME XAI, in IEEE Access,12, (2024) 63066-63076. [21] https://www.kaggle.com/datasets/subhajournal/phishingemails [22] A. Mughaid, S. AlZu’bi, A. Hnaif, S. Taamneh, A. Alnajjar, E.A. Elsoud, An intelligent cyber security phishing detection system using deep learning techniques, Cluster Computing, 25.6, (2022) 3819-3828. [23] M. Ragab, Hybrid firefly particle swarm optimisation algorithm for feature selection problems, Expert Systems, 41.7(2024) e13363.