{"id":"https://openalex.org/W2614297953","doi":"https://doi.org/10.1007/978-3-319-59105-6_56","title":"Netflow-Based Malware Detection and Data Visualisation System","display_name":"Netflow-Based Malware Detection and Data Visualisation System","publication_year":2017,"publication_date":"2017-01-01","ids":{"openalex":"https://openalex.org/W2614297953","doi":"https://doi.org/10.1007/978-3-319-59105-6_56","mag":"2614297953"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-319-59105-6_56","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-319-59105-6_56","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://inria.hal.science/hal-01656262","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5042632349","display_name":"Rafa\u0142 Kozik","orcid":"https://orcid.org/0000-0001-7122-3306"},"institutions":[{"id":"https://openalex.org/I1300393620","display_name":"Bydgoszcz University of Science and Technology","ror":"https://ror.org/049eq0c58","country_code":"PL","type":"education","lineage":["https://openalex.org/I1300393620"]},{"id":"https://openalex.org/I686019","display_name":"AGH University of Krakow","ror":"https://ror.org/00bas1c41","country_code":"PL","type":"education","lineage":["https://openalex.org/I686019"]}],"countries":["PL"],"is_corresponding":true,"raw_author_name":"Rafa\u0142 Kozik","raw_affiliation_strings":["Institute of Telecommunication and Computer Science, UTP University of Science and Technology, Bydgoszcz, Poland"],"affiliations":[{"raw_affiliation_string":"Institute of Telecommunication and Computer Science, UTP University of Science and Technology, Bydgoszcz, Poland","institution_ids":["https://openalex.org/I686019","https://openalex.org/I1300393620"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075777984","display_name":"Robert M\u0142odzikowski","orcid":null},"institutions":[{"id":"https://openalex.org/I686019","display_name":"AGH University of Krakow","ror":"https://ror.org/00bas1c41","country_code":"PL","type":"education","lineage":["https://openalex.org/I686019"]},{"id":"https://openalex.org/I1300393620","display_name":"Bydgoszcz University of Science and Technology","ror":"https://ror.org/049eq0c58","country_code":"PL","type":"education","lineage":["https://openalex.org/I1300393620"]}],"countries":["PL"],"is_corresponding":false,"raw_author_name":"Robert M\u0142odzikowski","raw_affiliation_strings":["Institute of Telecommunication and Computer Science, UTP University of Science and Technology, Bydgoszcz, Poland"],"affiliations":[{"raw_affiliation_string":"Institute of Telecommunication and Computer Science, UTP University of Science and Technology, Bydgoszcz, Poland","institution_ids":["https://openalex.org/I686019","https://openalex.org/I1300393620"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5009283476","display_name":"Micha\u0142 Chora\u015b","orcid":"https://orcid.org/0000-0003-1405-9911"},"institutions":[{"id":"https://openalex.org/I686019","display_name":"AGH University of Krakow","ror":"https://ror.org/00bas1c41","country_code":"PL","type":"education","lineage":["https://openalex.org/I686019"]},{"id":"https://openalex.org/I1300393620","display_name":"Bydgoszcz University of Science and Technology","ror":"https://ror.org/049eq0c58","country_code":"PL","type":"education","lineage":["https://openalex.org/I1300393620"]}],"countries":["PL"],"is_corresponding":false,"raw_author_name":"Micha\u0142 Chora\u015b","raw_affiliation_strings":["Institute of Telecommunication and Computer Science, UTP University of Science and Technology, Bydgoszcz, Poland"],"affiliations":[{"raw_affiliation_string":"Institute of Telecommunication and Computer Science, UTP University of Science and Technology, Bydgoszcz, Poland","institution_ids":["https://openalex.org/I686019","https://openalex.org/I1300393620"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5042632349"],"corresponding_institution_ids":["https://openalex.org/I1300393620","https://openalex.org/I686019"],"apc_list":{"value":5000,"currency":"EUR","value_usd":5392},"apc_paid":{"value":5000,"currency":"EUR","value_usd":5392},"fwci":0.0,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.07432093,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"652","last_page":"660"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.9003771543502808},{"id":"https://openalex.org/keywords/netflow","display_name":"NetFlow","score":0.8638365268707275},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.6499106884002686},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5893205404281616},{"id":"https://openalex.org/keywords/visualization","display_name":"Visualization","score":0.5673458576202393},{"id":"https://openalex.org/keywords/field","display_name":"Field (mathematics)","score":0.5581186413764954},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5406259298324585},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.524405837059021},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.45807337760925293},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.4189172089099884},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.4057152271270752},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.38824331760406494},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.11462193727493286}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.9003771543502808},{"id":"https://openalex.org/C188067584","wikidata":"https://www.wikidata.org/wiki/Q219363","display_name":"NetFlow","level":2,"score":0.8638365268707275},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.6499106884002686},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5893205404281616},{"id":"https://openalex.org/C36464697","wikidata":"https://www.wikidata.org/wiki/Q451553","display_name":"Visualization","level":2,"score":0.5673458576202393},{"id":"https://openalex.org/C9652623","wikidata":"https://www.wikidata.org/wiki/Q190109","display_name":"Field (mathematics)","level":2,"score":0.5581186413764954},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5406259298324585},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.524405837059021},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.45807337760925293},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.4189172089099884},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4057152271270752},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.38824331760406494},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.11462193727493286},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C202444582","wikidata":"https://www.wikidata.org/wiki/Q837863","display_name":"Pure mathematics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/978-3-319-59105-6_56","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-319-59105-6_56","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},{"id":"pmh:oai:HAL:hal-01656262v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01656262","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"16th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Jun 2017, Bialystok, Poland. pp.652-660, &#x27E8;10.1007/978-3-319-59105-6_56&#x27E9;","raw_type":"Conference papers"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-01656262v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01656262","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"16th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Jun 2017, Bialystok, Poland. pp.652-660, &#x27E8;10.1007/978-3-319-59105-6_56&#x27E9;","raw_type":"Conference papers"},"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.4399999976158142,"id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W40890042","https://openalex.org/W45942525","https://openalex.org/W816542934","https://openalex.org/W2077488147","https://openalex.org/W2110675786","https://openalex.org/W2122465391","https://openalex.org/W2157578436","https://openalex.org/W2164210932","https://openalex.org/W2168248036","https://openalex.org/W2523146704","https://openalex.org/W3138598418","https://openalex.org/W3161677312"],"related_works":["https://openalex.org/W2134539183","https://openalex.org/W2359209543","https://openalex.org/W2370801098","https://openalex.org/W3088530179","https://openalex.org/W2329795475","https://openalex.org/W4385692127","https://openalex.org/W2121836138","https://openalex.org/W2377721740","https://openalex.org/W2023981610","https://openalex.org/W2145651364"],"abstract_inverted_index":{"This":[0],"paper":[1],"presents":[2],"a":[3,111],"system":[4,47,106],"for":[5,114],"network":[6,33,116],"traffic":[7],"visualisation":[8],"and":[9,17,25,49,53,68,93,101],"anomalies":[10,34,60],"detection":[11,35,61,91],"by":[12],"means":[13],"of":[14,32,74],"data":[15],"mining":[16],"machine":[18],"learning":[19],"techniques.":[20],"First,":[21],"this":[22],"work":[23],"describes":[24],"analyses":[26],"existing":[27],"solutions":[28],"in":[29,36,42,84],"the":[30,46,50,75,104,115],"field":[31],"order":[37,85],"to":[38,86],"identify":[39],"adapted":[40,51],"techniques":[41],"that":[43,103],"area.":[44],"Afterwards,":[45],"architecture":[48],"tools":[52],"libraries":[54],"are":[55,63,82,99],"presented.":[56],"Particularly,":[57],"two":[58],"different":[59,80],"methods":[62],"proposed.":[64],"The":[65,96],"key":[66],"experiments":[67],"analysis":[69],"focus":[70],"on":[71],"performance":[72],"evaluation":[73],"proposed":[76,105],"algorithms.":[77],"In":[78],"particular,":[79],"setups":[81],"considered":[83,109],"evaluate":[87],"such":[88],"aspects":[89],"as":[90,110],"effectiveness":[92],"computational":[94],"complexity.":[95],"obtained":[97],"results":[98],"promising":[100],"show":[102],"can":[107],"be":[108],"useful":[112],"tool":[113],"administrator.":[117]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}