{"id":"https://openalex.org/W2490967029","doi":"https://doi.org/10.1109/aiccsa.2015.7507118","title":"Behavioral appraoch for intrusion detection","display_name":"Behavioral appraoch for intrusion detection","publication_year":2015,"publication_date":"2015-11-01","ids":{"openalex":"https://openalex.org/W2490967029","doi":"https://doi.org/10.1109/aiccsa.2015.7507118","mag":"2490967029"},"language":"en","primary_location":{"id":"doi:10.1109/aiccsa.2015.7507118","is_oa":false,"landing_page_url":"https://doi.org/10.1109/aiccsa.2015.7507118","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 IEEE/ACS 12th International Conference of Computer Systems and Applications (AICCSA)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5010565140","display_name":"Taha Ait Tchakoucht","orcid":"https://orcid.org/0000-0001-5339-5067"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Taha Ait Tchakoucht","raw_affiliation_strings":["Mathematics and Applications Laboratory, UAE"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Mathematics and Applications Laboratory, UAE","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5039713090","display_name":"Mostafa Ezziyyani","orcid":"https://orcid.org/0000-0002-0557-7226"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mostafa Ezziyyani","raw_affiliation_strings":["Mathematics and Applications Laboratory, UAE"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Mathematics and Applications Laboratory, UAE","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5045033839","display_name":"Mohammed Jbilou","orcid":null},"institutions":[{"id":"https://openalex.org/I4210148559","display_name":"\u00c9cole nationale sup\u00e9rieure de techniques avanc\u00e9es Bretagne","ror":"https://ror.org/059n54003","country_code":"FR","type":"education","lineage":["https://openalex.org/I201181511","https://openalex.org/I4210145102","https://openalex.org/I4210148559"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Mohammed Jbilou","raw_affiliation_strings":["ENSTA Bretagne, Engineering School and Research Institute, Brest, FRANCE"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ENSTA Bretagne, Engineering School and Research Institute, Brest, FRANCE","institution_ids":["https://openalex.org/I4210148559"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5062766467","display_name":"Mika\u00ebl Sala\u00fcn","orcid":null},"institutions":[{"id":"https://openalex.org/I4210148559","display_name":"\u00c9cole nationale sup\u00e9rieure de techniques avanc\u00e9es Bretagne","ror":"https://ror.org/059n54003","country_code":"FR","type":"education","lineage":["https://openalex.org/I201181511","https://openalex.org/I4210145102","https://openalex.org/I4210148559"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Mikael Salaun","raw_affiliation_strings":["ENSTA Bretagne, Engineering School and Research Institute, Brest, FRANCE"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ENSTA Bretagne, Engineering School and Research Institute, Brest, FRANCE","institution_ids":["https://openalex.org/I4210148559"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.3507,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.71199303,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":"3029","issue":null,"first_page":"1","last_page":"5"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.8513408303260803},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7804380059242249},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7329742908477783},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.7156804203987122},{"id":"https://openalex.org/keywords/host","display_name":"Host (biology)","score":0.6607074737548828},{"id":"https://openalex.org/keywords/host-based-intrusion-detection-system","display_name":"Host-based intrusion detection system","score":0.6589477062225342},{"id":"https://openalex.org/keywords/anomaly-based-intrusion-detection-system","display_name":"Anomaly-based intrusion detection system","score":0.6503280401229858},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.572536051273346},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.5529108047485352},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.5187264084815979},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5045441389083862},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5042432546615601},{"id":"https://openalex.org/keywords/misuse-detection","display_name":"Misuse detection","score":0.47048071026802063},{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.46162039041519165},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3415142893791199},{"id":"https://openalex.org/keywords/intrusion-prevention-system","display_name":"Intrusion prevention system","score":0.3313073515892029},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.15906274318695068}],"concepts":[{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.8513408303260803},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7804380059242249},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7329742908477783},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.7156804203987122},{"id":"https://openalex.org/C126831891","wikidata":"https://www.wikidata.org/wiki/Q221673","display_name":"Host (biology)","level":2,"score":0.6607074737548828},{"id":"https://openalex.org/C90936777","wikidata":"https://www.wikidata.org/wiki/Q917189","display_name":"Host-based intrusion detection system","level":4,"score":0.6589477062225342},{"id":"https://openalex.org/C137524506","wikidata":"https://www.wikidata.org/wiki/Q2247688","display_name":"Anomaly-based intrusion detection system","level":3,"score":0.6503280401229858},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.572536051273346},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.5529108047485352},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.5187264084815979},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5045441389083862},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5042432546615601},{"id":"https://openalex.org/C2776973144","wikidata":"https://www.wikidata.org/wiki/Q6880649","display_name":"Misuse detection","level":4,"score":0.47048071026802063},{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.46162039041519165},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3415142893791199},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.3313073515892029},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.15906274318695068},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C18903297","wikidata":"https://www.wikidata.org/wiki/Q7150","display_name":"Ecology","level":1,"score":0.0},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/aiccsa.2015.7507118","is_oa":false,"landing_page_url":"https://doi.org/10.1109/aiccsa.2015.7507118","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 IEEE/ACS 12th International Conference of Computer Systems and Applications (AICCSA)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.7300000190734863}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W181378396","https://openalex.org/W194643239","https://openalex.org/W1541939527","https://openalex.org/W1570845098","https://openalex.org/W1978845641","https://openalex.org/W2074317528","https://openalex.org/W2100215068","https://openalex.org/W2102229321","https://openalex.org/W2103806672","https://openalex.org/W2105557138","https://openalex.org/W2111245913","https://openalex.org/W2121886199","https://openalex.org/W2131970275","https://openalex.org/W2150847526","https://openalex.org/W2166332868","https://openalex.org/W2256751539","https://openalex.org/W2292797743","https://openalex.org/W2293541294","https://openalex.org/W3099514962","https://openalex.org/W3214373139","https://openalex.org/W4250857377","https://openalex.org/W6607281195","https://openalex.org/W6632301646","https://openalex.org/W6675021112","https://openalex.org/W6696975131","https://openalex.org/W6803782233"],"related_works":["https://openalex.org/W2183313954","https://openalex.org/W2288321734","https://openalex.org/W1937493481","https://openalex.org/W2148459958","https://openalex.org/W3148526535","https://openalex.org/W3140688961","https://openalex.org/W2228468079","https://openalex.org/W2359460876","https://openalex.org/W3146948916","https://openalex.org/W2548647095"],"abstract_inverted_index":{"Intrusion":[0],"detection":[1,24,53],"systems":[2,25],"are":[3,142],"often":[4],"used":[5],"to":[6,12,31,104,114,118,124,169],"collect":[7],"and":[8,16,121,140,149],"analyze":[9],"network":[10,30],"traffic":[11],"help":[13,110],"administrators":[14],"prepare":[15],"deal":[17],"with":[18],"attacks.":[19],"In":[20,43],"behavioral":[21,56],"approach,":[22],"these":[23],"work":[26],"on":[27,55],"the":[28,36,69,119,143,154,160,170],"entire":[29],"detect":[32],"anomalies":[33],"after":[34],"establishing":[35],"network's":[37],"normal":[38],"profile":[39],"involving":[40],"all":[41],"users.":[42],"this":[44,100],"article":[45],"we":[46,59],"present":[47],"a":[48,129],"new":[49,86],"method":[50,109],"for":[51],"intrusion":[52],"based":[54],"approach":[57],"where":[58],"show":[60],"that":[61,68,133],"IDSs":[62],"could":[63,75],"also":[64,152],"be":[65,76,105,167],"host-based":[66],"so":[67],"behavior":[70,88],"of":[71,156],"an":[72,106],"individual":[73],"user":[74,87,130],"profiled":[77],"using":[78,159],"characteristics":[79],"extracted":[80],"from":[81,95],"system":[82,126,136,173],"log":[83],"data.":[84],"A":[85],"is":[89],"considered":[90],"abnormal":[91],"when":[92],"it":[93],"deviates":[94],"its":[96],"profile.":[97],"When":[98],"detected,":[99],"anomaly":[101],"can":[102],"prove":[103],"intrusion.":[107],"This":[108],"decrease":[111],"U2R(exploring":[112],"vulnerabilities":[113,139],"gain":[115],"root":[116],"access":[117,123],"system)":[120],"R2L(obtaining":[122],"remote":[125],"without":[127],"having":[128],"account)":[131],"attacks":[132,146],"exploit":[134],"operating":[135],"or":[137],"software":[138],"which":[141],"most":[144],"dangerous":[145],"towards":[147],"confidentiality":[148],"integrity.":[150],"It":[151],"demonstrates":[153],"effectiveness":[155],"data-mining":[157],"techniques":[158],"k-means":[161],"algorithm.":[162],"Our":[163],"experimental":[164],"results":[165],"will":[166],"applied":[168],"hospital":[171],"information":[172],"(HIS).":[174]},"counts_by_year":[{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":4},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}
