TNSM Searchable Index

Author(s)	Title	Year	Publication	Keywords
Ibirisol Fontes Ferreira, Eiji Oki	Forestall: A Prefetching Scheme for Domain Name System Resolver Cache Services	2026	Early Access		The domain name system (DNS) is crucial to accessing Internet services by playing an essential role in facilitating this process for Internet users. Still, it affects the quality of experience within the Internet service chain. This impact includes the role of the resolver component, which can negatively influence the final user experience when consuming services. Some studies have developed strategies to reduce resolution time within the DNS resolver ecosystem by incorporating components into users’ devices to trigger resolution in advance, changing DNS service and cache algorithm implementation, or utilizing a complex and expensive service architecture that is not scalable for local DNS resolvers in edge deployments. This paper proposes a dynamic prefetching scheme called Forestall to reduce misses, including those caused by expired domain translation data, and to improve the overall performance of the resolver cache component. We model the prefetching scheme for DNS resolvers using DNS transactional information. We define a prefetching advising routine that advises on possible domains by observing past request patterns. We introduce two prefetching routines for efficient domain tracking and advising. We introduce miss-based metrics to measure the efficiency of the prefetching scheme and the potential resource trade-off associated with its deployment. The numerical results indicate that the prefetching scheme improves the performance of the DNS resolver cache component compared to well-deployed prefetching solutions on the Internet. Forestall reduces the miss ratio by more than 50%, depending on the dataset. In a specific workload, Forestall’s results with adjusted parameter combinations yield a decrease in the miss ratio of more than 16%, accompanied by a reasonable increase in additional fetches of around 35%. In terms of service latency that users perceive, Forestall achieves a reduction varying between 20% and 49%.	10.1109/TNSM.2026.3704549
Wenying Wang, Mohammad S. Obaidat, Xuxun Liu, Kuei-Fang Hsiao	Node-Differentiated Resource Allocation for Media Access Control in Wireless Body Area Networks	2026	Early Access	Timing Resource management Media Access Control	Medium access control (MAC) is crucial for resource allocation in wireless body area networks (WBANs). However, existing MAC protocols often suffer from transmission conflicts and inefficient channel utilization. To address these issues, this paper proposes a Node-Differentiated Resource Scheduling (NDRS) MAC protocol, which dynamically allocates access resources based on node-specific requirements. This protocol employs a superframe structure consisting of a contention-based phase and a contention-free phase for data transmission. A Mamdani fuzzy inference system is utilized to calculate continuous node priorities. These priorities achieve fine-grained differentiation of node importance and thus serve as the foundation for transmission conflict minimization. During the contention-based phase, continuous and differentiated backoff times are assigned to nodes based on their priorities. These backoff times effectively reduce transmission collisions and enhance channel utilization. In the contention-free phase, time slots are preferentially allocated to nodes with higher priority, better channel utilization, and greater transmission reliability. This allocation thereby enhances channel usage efficiency and reduce transmission delays. This protocol is characterized by three key features: precise node prioritization, low transmission collisions, and high channel utilization. Extensive experimental results demonstrate that NDRS outperforms existing protocols in terms of average delay, throughput, packet loss ratio, and average energy consumption.	10.1109/TNSM.2026.3700262
Arash Heidari, Jamal N. Al-Karaki	NOVA: A Self-Supervised Graph Framework for Real-Time Anomaly Detection in Internet of Vehicles	2026	Early Access	Context Internet of Vehicles Modeling	The Internet of Vehicles (IoV) enables cooperative driving and real-time Vehicle-to-Everything (V2X) communication but remains vulnerable to behavioral and structural anomalies due to its dynamic, decentralized nature. Existing deep learning methods either overlook topological inconsistencies or ignore communication feature fidelity, while random-walk sampling introduces contextual noise. In this paper, we propose Network Observation for Vehicular Anomalies (NOVA), a self-supervised graph-based framework that detects both behavioral and structural anomalies in IoV networks without labeled data. NOVA models vehicular communications as attributed graphs and employs intimacy-guided subgraph sampling to extract meaningful neighborhoods. A Graph Convolutional Network (GCN)–based generative module reconstructs node attributes to reveal behavioral deviations, while a contrastive module validates structural coherence through embedding comparisons of real and perturbed contexts. Their hybrid anomaly score enables accurate, scalable, and real-time detection of compromised nodes. Performance results show that NOVA achieves state-of-the-art performance (98.7% accuracy, 98.1% F1), real-time throughput (~4.7k events/s at 5k msg/s), and strong robustness (AUROC 0.99, AUPRC 0.98, FAR 0.05) with near-linear scalability (≤40 ms latency for 50k vehicles). By integrating generative and contrastive self-supervised learning with context-aware sampling, NOVA significantly enhances IoV security, reliability, and adaptability.	10.1109/TNSM.2026.3696324
Masoumeh Safkhani, Mohammad Reza Servati, Fatemeh Rezaei	HEIoT: A Novel Three-Factor Authentication Protocol for Enhanced Security in IoT and Next-Generation Networks	2026	Early Access	Authentication Internet of Things Protocols	The Internet has a significant impact on contemporary society, enabling a wide range of applications, including advanced cellular networks such as 4G, 5G, and 6G. Since these communications occur over shared or open channels, ensuring secure data exchange is of critical importance, as any weakness in the communication infrastructure may compromise system reliability. Device authentication in the Internet of Things (IoT) and user authentication in smart environments, such as smart homes, remain fundamental security challenges. As the first line of defense, authentication mechanisms must be robust, since vulnerabilities at this stage can expose the entire system to serious threats. To address these challenges, numerous authentication schemes based on cryptographic primitives, including Elliptic Curve Cryptography (ECC), have been proposed. In this paper, we present a comprehensive security analysis of an ECC-based three-factor authentication protocol proposed by Yuan et al. Our analysis shows that the protocol is vulnerable to desynchronization, user impersonation, traceability, and insider attacks, all of which succeed with probability 1 by exploiting at most two protocol phases. To mitigate these weaknesses, we propose an improved authentication scheme, called HEIoT. The proposed scheme is formally analyzed under the Real-or-Random (RoR) model to establish session-key security and is further verified using the Scyther tool. Moreover, a Python-based implementation is provided to demonstrate the practicality of the proposed protocol. Comparative results indicate that HEIoT achieves stronger security while maintaining acceptable communication, computational, and storage overhead.	10.1109/TNSM.2026.3702041
Huijuan Zhu, Chenhao Zheng, Zhongyuan Liu, Yuan Zhang	Reliable Interpretations of Deep Learning-based Malware Detectors via Deep Q-Networks	2026	Early Access	Malware Signal detection Modeling	Deep learning has become widely used in Android malware detection, but its black-box nature raises trust concerns, limiting its use in critical security areas. To address this, various interpretation methods have been proposed. Unfortunately, these solutions often suffer from inconsistent results and poor adaptability to model updates. In this work, we propose XDQNMal, a Deep Q-Networks (DQN)-based global interpretation framework designed to uncover the critical features that drive decisions in deep learning-based malware detectors. To enhance the reliability of interpretation, XDQNMal captures API call frequency features derived from the runtime behavior of each application (App). Then, it unites a DQN model with the TabPFN detection model to work collaboratively, using variations in detection results as reward signals. These signals guide the DQN model to gradually identify the most impactful features as interpretations for the detection model’s decisions. Our experimental evaluation on real-world datasets demonstrates that the proposed XDQNMal framework generates reliable interpretation for deep learning-based malware detection models. For instance, suppressing the critical features identified by XDQNMal leads to an average decrease of 20.30% in the probability that the malicious sample is predicted as malicious, highlighting the pivotal role these features play in the model’s decision-making.	10.1109/TNSM.2026.3699408
Soonbeom Kwon, Yusu Noh, Youngwoo Jang, Illyoung Choi, Byungchul Tak, In-geol Chun, Young-Kyoon Suh	Scalable and Robust Resource Provisioning via Adaptive Task Scheduling for Edge Devices	2026	Early Access	Schedules Scheduling Cloning	Edge devices, such as wearables, drones, and CCTV systems, are vital for real-time data collection in urban intelligence. However, their limited computational and storage capacities pose significant challenges. While offloading to public clouds offers scalability, it often incurs high latency and operational costs. Conversely, centralizing workloads on edge servers may result in the underutilization of high-performance edge devices. To address these limitations, we introduce ERPF, a Kubernetes-based Edge Resource Provisioning Framework that augments the capabilities of heterogeneous edge environments. ERPF orchestrates dynamic volume provisioning, GPU-aware resource allocation, execution context migration, and adaptive task distribution to improve system flexibility and efficiency. Building on this, we propose a novel adaptive task scheduling technique, termed eATS, composed of three key mechanisms: (i) Partition Smoothing Scheme for stable task granularity control, (ii) Resilient Edge Reintegration for failure detection and task reassignment, and (iii) Competitive Task Cloning for speculative execution with fastest-result commitment. The proposed eATS scheme reduces task execution time by up to 27.6%, lowers partition size variability by 8.7×, and improves scheduling robustness across heterogeneous edge devices over the baseline.	10.1109/TNSM.2026.3694238
Jing Zhang, Chao Luo, Rui Shao	MTG-GAN: A Masked Temporal Graph Generative Adversarial Network for Cross-Domain System Log Anomaly Detection	2026	Early Access	Anomaly detection Adaptation models Generative adversarial networks	Anomaly detection of system logs is crucial for the service management of large-scale information systems. Nowadays, log anomaly detection faces two main challenges: 1) capturing evolving temporal dependencies between log events to adaptively tackle with emerging anomaly patterns, 2) and maintaining high detection capabilities across varies data distributions. Existing methods rely heavily on domain-specific data features, making it challenging to handle the heterogeneity and temporal dynamics of log data. This limitation restricts the deployment of anomaly detection systems in practical environments. In this article, a novel framework, Masked Temporal Graph Generative Adversarial Network (MTG-GAN), is proposed for both conventional and cross-domain log anomaly detection. The model enhances the detection capability for emerging abnormal patterns in system log data by introducing an adaptive masking mechanism that combines generative adversarial networks with graph contrastive learning. Additionally, MTG-GAN reduces dependency on specific data distribution and improves model generalization by using diffused graph adjacency information deriving from temporal relevance of event sequence, which can be conducive to improve cross-domain detection performance. Experimental results demonstrate that MTG-GAN outperforms existing methods on multiple real-world datasets in both conventional and cross-domain log anomaly detection.	10.1109/TNSM.2026.3654642
Guofu Zhu, Wenting Shen, Jiewang Cai, Zhiquan Liu, Ye Su, Jinlu Liu	EPVFL: Efficient Privacy-Preserving and Verifiable Federated Learning	2026	Early Access		Federated learning (FL), as a distributed machine learning paradigm, has gained widespread adoption due to its ability to retain user data locally, thereby protecting privacy, while collaboratively training a global model through gradient sharing. However, existing studies have shown that attackers may obtain privacy information from the gradients, and malicious server may return erroneous aggregated results, compromising federated learning model. Although prior studies have addressed privacy preservation and aggregated result verification, these methods often incur significant computation and communication overhead on the user side. In this paper, we propose an efficient privacy-preserving and verifiable federated learning (EPVFL) scheme. Specifically, we group the gradients and employ polynomial encryption to achieve efficient privacy protection. Furthermore, we design a lightweight verification mechanism where users only need to perform lightweight local computation without interaction and transmit just a floating-point vector to verify the correctness of the aggregated gradient. EPVFL supports users going offline at any time, while online users can still obtain the correct aggregated gradient without incurring additional computation or communication overhead. Finally, through security analysis and experiments on real datasets, we demonstrate the correctness, verifiability, and privacy protection of EPVFL. Experiment results indicate that EPVFL protects privacy without sacrificing model accuracy and significantly reduces the computation and communication overheads on the user side compared to the related schemes.	10.1109/TNSM.2026.3704994
Victor Le Pochat, Simon Fernandez, Samaneh Tajalizadehkhoob, Lieven Desmet, Andrzej Duda, Wouter Joosen, Maciej Korczyński	Evaluating design decisions and bias resistance for passive DNS-based domain rankings	2026	Early Access		’Top sites’ rankings of the most popular domains are a core resource for the large-scale measurements that are crucial in Web and Internet research. Recent rankings evolved towards using passive DNS traffic data, but this data’s suitability for measuring website popularity is poorly understood. In this paper, we holistically evaluate how design decisions influence the composition and desired properties of passive DNS-based domain rankings. We isolate the effects of these decisions by generating a ranking from the ground up using aggregated “post-recursor” passive DNS data. We confirm that decisions for bucketing and aggregation produce more stable rankings, and see that corrections for resolver caching, CDNs, and service classification strongly impact suitability for Web measurements. We further analyze the resistance of rankings to inadvertent biases or even active manipulation, and find that design choices such as TTL weighting severely impact robustness. Our goal is to give transparent insight into the process of using passive DNS data for domain rankings, as a framework for the research community to understand how to develop future rankings that address their needs.	10.1109/TNSM.2026.3705306
Qing Chen, Hua Wu, Tian Tian, Anting Lu, Guang Cheng, Xiaoyan Hu	A Generalized Video Platform Identification Method over Obfuscated Encrypted Protocols in Real-world Networks	2026	Early Access		Despite platforms adopt encryption protocols such as TLS to protect user privacy, adversaries can still infer user preferences through platform identification attacks. To obtain enhanced privacy, a lot of users employ obfuscated encrypted protocols, such as encrypted proxies and virtual private networks. However, existing state-of-the-art platform identification methods are only effective in laboratory-closed networks. In real-world networks, their performance degrades significantly when confronted with unknown obfuscated encrypted protocols or dynamic transmission paths. In addition, asymmetric routing also substantially weakens their effectiveness, which is a prevalent scenario in real-world networks. To overcome these challenges, this paper introduces a generalized method for identifying encrypted video streams over obfuscated encrypted protocols. Our approach achieves this by designing protocol-agnostic and path-agnostic features through granular analysis of video transmission patterns. Specifically, we first extract the inherent transmission patterns from unidirectional flows. Subsequently, we derive robust statistical features from temporal and spatial dimensions, respectively. Finally, these features are used to train a machine-learning-based classifier. Our experimental results demonstrate that the proposed method achieves a classification accuracy exceeding 98% against both unknown obfuscated encrypted protocols and dynamic transmission paths. Compared with the state-of-the-art methods, our method requires only 15% of the storage and 74% of the computational time while delivering superior performance. These findings reveal significant privacy vulnerabilities in obfuscated encrypted protocols and underscore the urgent need for developing more advanced security mechanisms to provide users with stronger anonymity services.	10.1109/TNSM.2026.3705064
Behrooz Farkiani, Fan Liu, Ke Yang, John DeHart, Jyoti Parwatikar, Patrick Crowley	Hermes: A General-Purpose Proxy-Enabled Networking Architecture	2026	Early Access		We introduce Hermes, a general-purpose networking architecture that aims to improve service delivery over the Internet. Hermes delegates networking responsibilities from applications and services to proxies and is designed as a portable, adaptable solution to four fundamental challenges of efficient service delivery over the Internet: end-to-end traffic management, backward compatibility, data-plane security and privacy models, and adaptable communication layers. The design centers on an overlay of reconfigurable proxies and HTTP tunneling and proxying techniques, utilizing assisting components to extend proxy functionality when needed. Through prototyping and emulation, we demonstrate that Hermes improves key performance metrics across multiple use cases: it provides backward compatibility through protocol translation and tunneling, improves reliability by delegating retry logic to proxies, enables unified policy-based Layer 3 routing across network segments, and serves as an efficient substrate for future architectures like NDN, facilitating their operation over the Internet. Beyond evaluating Hermes across various use cases, we measured the overhead of Hermes’ HTTP tunneling and proxying mechanisms and found it to be modest, typically under 2 ms per proxy pair traversal in an isolated collocated setup. Although the HTTP proxying and tunneling techniques used by Hermes increase single-connection processing overhead, we also show that, with up to 1,000 concurrent requests, proxies can amortize connection setup time and reduce end-to-end latency by utilizing connection pooling and multiplexing.	10.1109/TNSM.2026.3705327
Ryotaro Taniguchi, Takeru Inoue, Kazuya Anazawa, Eiji Oki	Terminal Shuffling for Twisted and Folded Clos Network Design: Guaranteeing Blocking Probability under Different Request Active Rates	2026	Early Access		Optical circuit switching (OCS) is being used in some data center networks due to its low power consumption, low latency, and high bandwidth. Previous research introduced a design model for a twisted and folded Clos network (TF-Clos) as a data center network to maximize the switching network size, i.e., the number of connected terminals, while guaranteeing the admissible blocking probability. The previous model assumes that the request active rates from all the terminals are identical. However, it is an overly conservative design when the active rates differ, resulting in a smaller switching network size than desired. This paper proposes a terminal-shuffling (TS) scheme for designing an OCS TF-Clos network with an admissible blocking probability guarantee, which supports different active rates. Each terminal can arbitrarily choose any leaf switch to connect, enhancing the flexibility of the network design to accommodate heterogeneous active rates across different terminals. A patch panel or direct termination by operators can wire optical fibers between the terminals and the leaf switches. We formulate a TS-based TF-Clos design problem to maximize the switching network size. We develop an approximation approach to find a feasible solution to the optimization problem. Numerical results demonstrate that the switching network size of the proposed TS scheme is larger than that of baseline schemes.	10.1109/TNSM.2026.3704894
Ibirisol Fontes Ferreira, Cassio Vinicius Serafim Prazeres, Maycon Leone Maciel Peixoto, Eiji Oki, Gustavo Bittencourt Figueiredo	Narrow: A Fair Routing Multicast Algorithm for Distributed Interactive Applications in Edge Networks	2026	Early Access		Recent research in networking has increasingly focused on addressing the challenges of edge network services. A crucial issue in this context is routing, which must account for quality-of-service requirements. In particular, multicast routing provides optimized network services for groups of people using the same application, which is advantageous for operators and application providers. However, latency-constrained routing poses challenges when integrating diverse requirements into the routing computation, particularly when fairness among users is required. This work addresses the fairness requirement in multicast-overlaid and virtualized networks by presenting a solution that improves the equity of group interactions in the routing service. Our proposal, named Narrow, achieves fairer group interaction by selecting improved path options for multicast routing in edge networks. We compared Narrow with the Fair Shortest Path Tree (FSPT) and Chains algorithms from related studies on delay-constrained routing. Simulations indicated that Narrow reduced the inter-destination delay deviation by up to 84% and 49% relative to FSPT and Chains, respectively, across topologies of varying sizes. Similarly, Narrow improved by more than 99% against FSPT and by 70% against Chains across topologies with varying node degrees. Depending on the number of allowed alternative paths, Narrow reduced the inter-destination delay deviation by more than 99% compared with FSPT and by 38% compared with Chains. In emulated distributed interactive application session experiments, Narrow delivered the fairest response time, reducing it by 89% and 86% relative to FSPT and Chains, respectively. Furthermore, fairness in players’ scores improved by 20% and 16%, respectively, yielding more equitable group interaction from the application’s perspective.	10.1109/TNSM.2026.3704927
Yuanhao Liu, Fen Zhou, Micha³ Pi´oro, Cao Chen, Tao Shang, Juan-Manuel Torres-Moreno	Power-Efficient Directed p-Cycle Design Leveraging Loop-Eliminating Flow and Column Generation	2026	Early Access		As Internet traffic patterns exhibit increasing asymmetry, the directed pre-configured cycle (directed p-cycle) has demonstrated superior effectiveness and flexibility for protection in elastic optical networks (EONs). This paper addresses directed p-cycle protection against single-link failure using a just-enough modulation format (MF) adaptation approach. Unlike the conventional methods that rely on an estimated upper bound for the protection path length of a directed p-cycle, our method accurately calculates the exact length. We introduce a novel mixed integer linear programming (MILP) formulation incorporating a strategically designed loop-eliminating flow (LEF) model, eliminating the need for candidate cycle enumeration. The objective is to jointly minimize power consumption and spare spectrum usage. To solve large-scale instances, we propose two column generation (CG) approaches: MILP-CG, which generates columns via the MILP model and provides a guaranteed performance bound, and De-CG, which uses a fast heuristic decomposition algorithm for high efficiency and scalability. Numerical results show that our method achieves up to 37.14% performance improvement under asymmetric traffic. The proposed CG approaches also exhibit high computational efficiency and near-optimal performance for large-scale traffic.	10.1109/TNSM.2026.3704661
Emilio Paolini, Andrea Pinto, Luca Valcarenghi, Flavio Esposito	Programmable In-Network Aggregation for Communication-Aware Federated Learning in 5G RANs	2026	Early Access	Modeling Timing Training	Federated Learning (FL) enables collaborative model training without sharing raw data, making it attractive for privacy-preserving applications at the wireless edge. However, when executed over real 5G networks, FL performance degrades due to uplink congestion, heterogeneous client capabilities, and intermittent connectivity. Most existing approaches attempt to mitigate these issues indirectly by optimizing clients (through adaptive participation, local training, or selection strategies) or by optimizing models (via pruning, quantization, or compression), but they ignore potential network bottlenecks. This paper introduces FLAG, an FL architecture that embeds innetwork aggregation directly into 5G gNodeBs, transforming the network into an active participant in the learning process. In particular, FLAG performs parameter aggregation at line rate within the 5G Service Data Adaptation Protocol layer and incorporates three mechanisms: Partial-Contribution Correction for loss-tolerant averaging, a timer-driven pipeline for real-time scheduling, and a deadline-based grouping strategy to mitigate stragglers. Experiments with realistic wireless emulation show that FLAG achieves up to 5.1× faster time-to-accuracy and maintains accuracy within 0.8% of a loss-free baseline, while reducing gNB-to-server bandwidth by aggregating pergNB rather than per-client. FLAG requires no modifications to clients or the parameter server, demonstrating how 5G-aware system design can make federated learning scalable, efficient, and resilient under real-world wireless conditions.	10.1109/TNSM.2026.3697723
Heng Xu, Chengze Du, Zhiwei Yu, Letian Li, Ying Zhou, Bo Liu, Jialong Li	Distributed Flow Control for Efficient DNN Training Scheduling	2026	Early Access	Schedules Scheduling Training	Distributed Deep Neural Network (DNN) training generates periodic, long-lived, and interdependent flows that contrast sharply with the short, bursty, and independent flows typical of traditional cloud services. Existing flow scheduling methods, optimized for cloud traffic, struggle to handle the structured communication of DNN workloads, while static schedulers remain brittle under the computation jitter and stochasticity inherent in multi-tenant AI clusters. We propose a distributed traffic control and scheduling framework called PQ, which shifts from fragile global synchronization to a token-based queuing concept. PQ utilizes standard priority queues in commercial switches as elastic buffers, dynamically mapping task urgency to traffic priorities based on specific scheduling policies, such as minimizing waiting time, thereby accelerating efficiency. Results show that PQ achieves stable communication interleaving 3.6× to 8.8× faster than reactive baselines like MLTCP and FQ. Furthermore, it significantly optimizes performance by reducing average iteration time by up to 29.2% while maintaining higher link utilization.	10.1109/TNSM.2026.3704403
Aziz Kord, Mary Gregg, M. Keith Forsyth, Julia L. Sharp, Jason B. Coder, Vu Le	Towards Improved Standards for Open RAN Interoperability: A Factor Screening Experiment	2026	Early Access	Information rates Open RAN Throughput	As Open Radio Access Networks (Open RAN) move toward large-scale deployment, the industry requires a transition from binary “pass/fail” conformance testing to a rigorous performance metrology that characterizes system stability in multi-vendor environments. This study introduces a statistical factor screening methodology, utilizing a Resolution V fractional factorial design, to isolate the key configuration parameters that govern interoperability in a commercial-grade 7.2x functional split testbed. By executing a 1,024-run automated experimental campaign, we identify critical non-linear "performance boundaries" where specific combinations of modulation coding, power control, and UE scaling cause functional decoupling between disaggregated O-DU and O-RU components. Our results demonstrate that O-RU interoperability is not a static state but a dynamic boundary of functional invariance. This work provides a mathematically grounded framework for Mobile Network Operators (MNOs) to prioritize high-impact factors in certification and badging, accelerating the maturity of secure, high-capacity Open RAN ecosystems.	10.1109/TNSM.2026.3703354
Siya Xu, Ye Yu, Shaoyong Guo	F-CShard: A Fast Cross-Shard Consensus Protocol for the Large-Scale Sharing of Cultural Resources	2026	Early Access	Sharding Protocols Consensus protocol	Blockchain’s decentralization and immutability inherently ensure the privacy and transactional reliability of cultural resources. However, traditional global consensus mechanisms scale poorly with increasing data volume and transaction frequency. While sharding enhances blockchain scalability, current sharding-based implementations exhibit high latency and communication overhead during cross-shard transactions. In this paper, we propose F-CShard, a fast cross-shard consensus protocol that optimizes blockchain sharding and consensus for large-scale cultural resource sharing. F-CShard addresses two key challenges in existing systems: low transaction throughput and high cross-shard communication costs. Our solution incorporates four technical innovations. First, we construct a spatio-temporal correlation model based on historical transaction patterns and account geographical distribution to minimize cross-shard transactions. Second, we add a random-bit to optimize the Cuckoo Rule, thereby reducing the migratory frequency of nodes while improving system throughput and robustness. Third, we design a heartbeat-enhanced consensus protocol to decrease latency and communication overhead. Finally, we propose a cross-shard consensus protocol based on virtual accounts to simplify the processing of cross-shard transactions and ultimately improve the scalability and security of the system. Experimental results show that F-CShard outperforms X-Shard and LBF in terms of throughput and latency, and has near-linear scalability in high concurrency environments.	10.1109/TNSM.2026.3703588
Mansoor Davoodi, Setareh Maghsudi	Efficient Resource Allocation under Adversary Attacks: A Decomposition-Based Approach	2026	Early Access	Resource management Optimization Modeling	We address the problem of allocating limited resources in a network under persistent yet statistically unknown adversarial attacks. Each node in the network may be degraded, but not fully disabled, depending on its available defensive resources. The objective is twofold: to minimize total system damage and to reduce cumulative resource allocation and transfer costs over time. We model this challenge as a bi-objective optimization problem and propose a decomposition-based solution that integrates chance-constrained programming with network flow optimization. The framework separates the problem into two interrelated subproblems: determining optimal node-level allocations across time slots, and computing efficient inter-node resource transfers. We theoretically prove the convergence of our method to the optimal solution that would be obtained with full statistical knowledge of the adversary. We further establish an O(√T log(nT)) regret bound, showing that the average per-round performance gap shrinks as O(1/√T). Extensive simulations demonstrate that our method efficiently learns the adversarial patterns and achieves substantial gains in minimizing both damage and operational costs, comparing three benchmark strategies under various parameter settings.	10.1109/TNSM.2026.3703620
Deemah H. Tashman, Soumaya Cherkaoui	Trustworthy AI-Driven Dynamic Hybrid RIS: Joint Optimization and Reward Poisoning-Resilient Control in Cognitive MISO Networks	2026	Early Access	Reconfigurable intelligent surfaces Reliability Optimization	Cognitive radio networks (CRNs) are a key mechanism for alleviating spectrum scarcity by enabling secondary users (SUs) to opportunistically access licensed frequency bands without harmful interference to primary users (PUs). To address unreliable direct SU links and energy constraints common in next-generation wireless networks, this work introduces an adaptive, energy-aware hybrid reconfigurable intelligent surface (RIS) for underlay multiple-input single-output (MISO) CRNs. Distinct from prior approaches relying on static RIS architectures, our proposed RIS dynamically alternates between passive and active operation modes in real time according to harvested energy availability. We also model our scenario under practical hardware impairments and cascaded fading channels. We formulate and solve a joint transmit beamforming and RIS phase optimization problem via the soft actor-critic (SAC) deep reinforcement learning (DRL) method, leveraging its robustness in continuous and highly dynamic environments. Notably, we conduct the first systematic study of reward poisoning attacks on DRL agents in RIS-enhanced CRNs, and propose a lightweight, real-time defense based on reward clipping and statistical anomaly filtering. Numerical results demonstrate that the SAC-based approach consistently outperforms established DRL base-lines, and that the dynamic hybrid RIS strikes a superior trade-off between throughput and energy consumption compared to fully passive and fully active alternatives. We further show the effectiveness of our defense in maintaining SU performance even under adversarial conditions. Our results advance the practical and secure deployment of RIS-assisted CRNs, and highlight crucial design insights for energy-constrained wireless systems.	10.1109/TNSM.2026.3660728