{"id":"https://openalex.org/W1546161684","doi":"https://doi.org/10.1007/978-3-540-68825-9_29","title":"Using Unsupervised Learning for Network Alert Correlation","display_name":"Using Unsupervised Learning for Network Alert Correlation","publication_year":2008,"publication_date":"2008-01-01","ids":{"openalex":"https://openalex.org/W1546161684","doi":"https://doi.org/10.1007/978-3-540-68825-9_29","mag":"1546161684"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-540-68825-9_29","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-540-68825-9_29","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5109003864","display_name":"Reuben Smith","orcid":null},"institutions":[{"id":"https://openalex.org/I153718931","display_name":"University of Ottawa","ror":"https://ror.org/03c4mmv16","country_code":"CA","type":"education","lineage":["https://openalex.org/I153718931"]}],"countries":["CA"],"is_corresponding":true,"raw_author_name":"Reuben Smith","raw_affiliation_strings":["School of Information Technology and Engineering (SITE), University of Ottawa ON Canada,","School of Information Technology and Engineering, University of Ottawa, ON, Canada"],"affiliations":[{"raw_affiliation_string":"School of Information Technology and Engineering (SITE), University of Ottawa ON Canada,","institution_ids":["https://openalex.org/I153718931"]},{"raw_affiliation_string":"School of Information Technology and Engineering, University of Ottawa, ON, Canada","institution_ids":["https://openalex.org/I153718931"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018458084","display_name":"Nathalie Japkowicz","orcid":"https://orcid.org/0000-0003-1176-1617"},"institutions":[{"id":"https://openalex.org/I153718931","display_name":"University of Ottawa","ror":"https://ror.org/03c4mmv16","country_code":"CA","type":"education","lineage":["https://openalex.org/I153718931"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Nathalie Japkowicz","raw_affiliation_strings":["School of Information Technology and Engineering (SITE), University of Ottawa ON Canada,","School of Information Technology and Engineering, University of Ottawa, ON, Canada"],"affiliations":[{"raw_affiliation_string":"School of Information Technology and Engineering (SITE), University of Ottawa ON Canada,","institution_ids":["https://openalex.org/I153718931"]},{"raw_affiliation_string":"School of Information Technology and Engineering, University of Ottawa, ON, Canada","institution_ids":["https://openalex.org/I153718931"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009315500","display_name":"Maxwell G. Dondo","orcid":null},"institutions":[{"id":"https://openalex.org/I1297460800","display_name":"Defence Research and Development Canada","ror":"https://ror.org/00hgy8d33","country_code":"CA","type":"funder","lineage":["https://openalex.org/I1297460800","https://openalex.org/I1336338359","https://openalex.org/I2802286613"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Maxwell Dondo","raw_affiliation_strings":["Defence Research and Development Canada (DRDC) Ottawa ON Canada,","Defence Research & Development Canada, Ottawa, ON, Canada#TAB#"],"affiliations":[{"raw_affiliation_string":"Defence Research and Development Canada (DRDC) Ottawa ON Canada,","institution_ids":["https://openalex.org/I1297460800"]},{"raw_affiliation_string":"Defence Research & Development Canada, Ottawa, ON, Canada#TAB#","institution_ids":["https://openalex.org/I1297460800"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5113959985","display_name":"Peter Mason","orcid":null},"institutions":[{"id":"https://openalex.org/I1297460800","display_name":"Defence Research and Development Canada","ror":"https://ror.org/00hgy8d33","country_code":"CA","type":"funder","lineage":["https://openalex.org/I1297460800","https://openalex.org/I1336338359","https://openalex.org/I2802286613"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Peter Mason","raw_affiliation_strings":["Defence Research and Development Canada (DRDC) Ottawa ON Canada,","Defence Research & Development Canada, Ottawa, ON, Canada#TAB#"],"affiliations":[{"raw_affiliation_string":"Defence Research and Development Canada (DRDC) Ottawa ON Canada,","institution_ids":["https://openalex.org/I1297460800"]},{"raw_affiliation_string":"Defence Research & Development Canada, Ottawa, ON, Canada#TAB#","institution_ids":["https://openalex.org/I1297460800"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5109003864"],"corresponding_institution_ids":["https://openalex.org/I153718931"],"apc_list":{"value":5000,"currency":"EUR","value_usd":5392},"apc_paid":null,"fwci":6.1062,"has_fulltext":false,"cited_by_count":58,"citation_normalized_percentile":{"value":0.96893343,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"308","last_page":"319"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9894999861717224,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8621971607208252},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7732962965965271},{"id":"https://openalex.org/keywords/correlation","display_name":"Correlation","score":0.6028952598571777},{"id":"https://openalex.org/keywords/false-positive-paradox","display_name":"False positive paradox","score":0.5932493805885315},{"id":"https://openalex.org/keywords/novelty","display_name":"Novelty","score":0.5819034576416016},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.51926589012146},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.49930787086486816},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.49473831057548523},{"id":"https://openalex.org/keywords/filter","display_name":"Filter (signal processing)","score":0.44961681962013245},{"id":"https://openalex.org/keywords/novelty-detection","display_name":"Novelty detection","score":0.44310829043388367},{"id":"https://openalex.org/keywords/unsupervised-learning","display_name":"Unsupervised learning","score":0.4368613362312317},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.43080461025238037},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.370883584022522},{"id":"https://openalex.org/keywords/computer-vision","display_name":"Computer vision","score":0.07943084836006165}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8621971607208252},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7732962965965271},{"id":"https://openalex.org/C117220453","wikidata":"https://www.wikidata.org/wiki/Q5172842","display_name":"Correlation","level":2,"score":0.6028952598571777},{"id":"https://openalex.org/C64869954","wikidata":"https://www.wikidata.org/wiki/Q1859747","display_name":"False positive paradox","level":2,"score":0.5932493805885315},{"id":"https://openalex.org/C2778738651","wikidata":"https://www.wikidata.org/wiki/Q16546687","display_name":"Novelty","level":2,"score":0.5819034576416016},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.51926589012146},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.49930787086486816},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.49473831057548523},{"id":"https://openalex.org/C106131492","wikidata":"https://www.wikidata.org/wiki/Q3072260","display_name":"Filter (signal processing)","level":2,"score":0.44961681962013245},{"id":"https://openalex.org/C2778924833","wikidata":"https://www.wikidata.org/wiki/Q7064603","display_name":"Novelty detection","level":3,"score":0.44310829043388367},{"id":"https://openalex.org/C8038995","wikidata":"https://www.wikidata.org/wiki/Q1152135","display_name":"Unsupervised learning","level":2,"score":0.4368613362312317},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.43080461025238037},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.370883584022522},{"id":"https://openalex.org/C31972630","wikidata":"https://www.wikidata.org/wiki/Q844240","display_name":"Computer vision","level":1,"score":0.07943084836006165},{"id":"https://openalex.org/C27206212","wikidata":"https://www.wikidata.org/wiki/Q34178","display_name":"Theology","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/978-3-540-68825-9_29","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-540-68825-9_29","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.156.4668","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.156.4668","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.site.uottawa.ca/~nat/Papers/reuben-cai2008.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.5699999928474426}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W146732267","https://openalex.org/W1483650506","https://openalex.org/W1554596310","https://openalex.org/W1674877186","https://openalex.org/W1679913846","https://openalex.org/W1982304603","https://openalex.org/W1999427165","https://openalex.org/W1999448603","https://openalex.org/W2016559036","https://openalex.org/W2049633694","https://openalex.org/W2105742458","https://openalex.org/W2108867737","https://openalex.org/W2252269454","https://openalex.org/W2495930550","https://openalex.org/W4213332169"],"related_works":["https://openalex.org/W2064636555","https://openalex.org/W2585503716","https://openalex.org/W1939982668","https://openalex.org/W2105014086","https://openalex.org/W2076090200","https://openalex.org/W3025682415","https://openalex.org/W2081173909","https://openalex.org/W4389009659","https://openalex.org/W4312933423","https://openalex.org/W2604316291"],"abstract_inverted_index":null,"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":4},{"year":2019,"cited_by_count":5},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":10},{"year":2015,"cited_by_count":7},{"year":2014,"cited_by_count":5},{"year":2013,"cited_by_count":6},{"year":2012,"cited_by_count":3}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}