{"id":"https://openalex.org/W2787701431","doi":"https://doi.org/10.1109/apsipa.2017.8282154","title":"Detection and classification of malicious patterns in network traffic using Benford's law","display_name":"Detection and classification of malicious patterns in network traffic using Benford's law","publication_year":2017,"publication_date":"2017-12-01","ids":{"openalex":"https://openalex.org/W2787701431","doi":"https://doi.org/10.1109/apsipa.2017.8282154","mag":"2787701431"},"language":"en","primary_location":{"id":"doi:10.1109/apsipa.2017.8282154","is_oa":false,"landing_page_url":"https://doi.org/10.1109/apsipa.2017.8282154","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 Asia-Pacific Signal and Information Processing Association Annual Summit and Conference (APSIPA ASC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5060625013","display_name":"Liuying Sun","orcid":null},"institutions":[{"id":"https://openalex.org/I196699116","display_name":"Wuhan University of Technology","ror":"https://ror.org/03fe7t173","country_code":"CN","type":"education","lineage":["https://openalex.org/I196699116"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Liuying Sun","raw_affiliation_strings":["Wuhan University of Technology, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"Wuhan University of Technology, Wuhan, China","institution_ids":["https://openalex.org/I196699116"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056891678","display_name":"T. S. Ho Anthony","orcid":null},"institutions":[{"id":"https://openalex.org/I196699116","display_name":"Wuhan University of Technology","ror":"https://ror.org/03fe7t173","country_code":"CN","type":"education","lineage":["https://openalex.org/I196699116"]},{"id":"https://openalex.org/I132369690","display_name":"Tianjin University of Science and Technology","ror":"https://ror.org/018rbtf37","country_code":"CN","type":"education","lineage":["https://openalex.org/I132369690"]},{"id":"https://openalex.org/I28290843","display_name":"University of Surrey","ror":"https://ror.org/00ks66431","country_code":"GB","type":"education","lineage":["https://openalex.org/I28290843"]}],"countries":["CN","GB"],"is_corresponding":false,"raw_author_name":"T. S. Anthony","raw_affiliation_strings":["Tianjin University of Science and Technology, Tianjin, China","University of Surrey, UK","Wuhan University of Technology, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"Tianjin University of Science and Technology, Tianjin, China","institution_ids":["https://openalex.org/I132369690"]},{"raw_affiliation_string":"University of Surrey, UK","institution_ids":["https://openalex.org/I28290843"]},{"raw_affiliation_string":"Wuhan University of Technology, Wuhan, China","institution_ids":["https://openalex.org/I196699116"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5089894448","display_name":"Ho Zhe Xia","orcid":null},"institutions":[{"id":"https://openalex.org/I196699116","display_name":"Wuhan University of Technology","ror":"https://ror.org/03fe7t173","country_code":"CN","type":"education","lineage":["https://openalex.org/I196699116"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Ho Zhe Xia","raw_affiliation_strings":["Wuhan University of Technology, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"Wuhan University of Technology, Wuhan, China","institution_ids":["https://openalex.org/I196699116"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033630348","display_name":"Jiageng Chen","orcid":"https://orcid.org/0000-0001-9033-2575"},"institutions":[{"id":"https://openalex.org/I40963666","display_name":"Central China Normal University","ror":"https://ror.org/03x1jna21","country_code":"CN","type":"education","lineage":["https://openalex.org/I40963666"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jiageng Chen","raw_affiliation_strings":["Central China Normal University, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"Central China Normal University, Wuhan, China","institution_ids":["https://openalex.org/I40963666"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088399298","display_name":"Xuzhe Huang","orcid":null},"institutions":[{"id":"https://openalex.org/I40963666","display_name":"Central China Normal University","ror":"https://ror.org/03x1jna21","country_code":"CN","type":"education","lineage":["https://openalex.org/I40963666"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xuzhe Huang","raw_affiliation_strings":["Central China Normal University, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"Central China Normal University, Wuhan, China","institution_ids":["https://openalex.org/I40963666"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100652607","display_name":"Yidan Zhang","orcid":"https://orcid.org/0000-0003-3041-5082"},"institutions":[{"id":"https://openalex.org/I40963666","display_name":"Central China Normal University","ror":"https://ror.org/03x1jna21","country_code":"CN","type":"education","lineage":["https://openalex.org/I40963666"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yidan Zhang","raw_affiliation_strings":["Central China Normal University, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"Central China Normal University, Wuhan, China","institution_ids":["https://openalex.org/I40963666"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5060625013"],"corresponding_institution_ids":["https://openalex.org/I196699116"],"apc_list":null,"apc_paid":null,"fwci":1.6322,"has_fulltext":false,"cited_by_count":20,"citation_normalized_percentile":{"value":0.87959419,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"864","last_page":"872"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T13720","display_name":"Benford\u2019s Law and Fraud Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/2613","display_name":"Statistics and Probability"},"field":{"id":"https://openalex.org/fields/26","display_name":"Mathematics"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T13720","display_name":"Benford\u2019s Law and Fraud Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/2613","display_name":"Statistics and Probability"},"field":{"id":"https://openalex.org/fields/26","display_name":"Mathematics"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12357","display_name":"Digital Media Forensic Detection","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9846000075340271,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/benfords-law","display_name":"Benford's law","score":0.9283338785171509},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6333825588226318},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5305754542350769},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.38417163491249084},{"id":"https://openalex.org/keywords/statistics","display_name":"Statistics","score":0.1215313971042633},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.10288196802139282}],"concepts":[{"id":"https://openalex.org/C152636012","wikidata":"https://www.wikidata.org/wiki/Q817168","display_name":"Benford's law","level":2,"score":0.9283338785171509},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6333825588226318},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5305754542350769},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.38417163491249084},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.1215313971042633},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.10288196802139282}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/apsipa.2017.8282154","is_oa":false,"landing_page_url":"https://doi.org/10.1109/apsipa.2017.8282154","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 Asia-Pacific Signal and Information Processing Association Annual Summit and Conference (APSIPA ASC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.8199999928474426,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W1481984145","https://openalex.org/W1531884035","https://openalex.org/W1601789105","https://openalex.org/W1649927443","https://openalex.org/W1835421862","https://openalex.org/W1913389475","https://openalex.org/W2007087405","https://openalex.org/W2031163547","https://openalex.org/W2070040249","https://openalex.org/W2103312864","https://openalex.org/W2111280862","https://openalex.org/W2114952587","https://openalex.org/W2122646361","https://openalex.org/W2129700391","https://openalex.org/W2147384283","https://openalex.org/W2150847526","https://openalex.org/W2162606277","https://openalex.org/W2239878508","https://openalex.org/W2260798440","https://openalex.org/W2307682200","https://openalex.org/W2327767063","https://openalex.org/W2520686781"],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W2734415684","https://openalex.org/W1980147927","https://openalex.org/W3186068795","https://openalex.org/W2165048824","https://openalex.org/W3124667545","https://openalex.org/W4212843477","https://openalex.org/W2254161145","https://openalex.org/W3208799667","https://openalex.org/W3128979240"],"abstract_inverted_index":{"Computer":[0],"networks":[1,20],"are":[2,21,34,81],"vital":[3],"for":[4,143],"the":[5,13,53,85,89,94,115],"secure":[6],"and":[7,24,39,58,79,88,105],"fast":[8,49],"communication":[9],"of":[10,62,114,121,152],"information":[11],"in":[12,101,167],"modern":[14],"society.":[15],"To":[16],"ensure":[17],"that":[18,29,93,136],"these":[19],"functioning":[22],"properly":[23],"safely,":[25],"it":[26],"is":[27],"essential":[28],"effective":[30,100],"intrusion":[31,74],"detection":[32,50],"methods":[33],"available":[35],"to":[36,56,66,130,146,164],"accurately":[37],"detect":[38,57],"classify":[40,59],"malicious":[41,106,122],"behaviors.":[42],"In":[43],"this":[44],"paper,":[45],"we":[46],"introduce":[47],"a":[48],"method":[51,129],"using":[52,111],"Benford's":[54,95,116],"Law":[55,96],"certain":[60,119],"types":[61,120,151],"network":[63,107,153],"attacks":[64],"so":[65,145],"provide":[67],"an":[68],"early":[69],"warning":[70],"system":[71],"against":[72],"potential":[73],"by":[75,127],"criminals.":[76],"Our":[77],"experiments":[78],"analysis":[80,156],"performed":[82,159],"based":[83,160],"on":[84,161],"KDD99":[86],"dataset,":[87],"results":[90],"have":[91,124],"shown":[92],"can":[97,137],"be":[98,138,158,165],"very":[99],"distinguishing":[102],"between":[103],"normal":[104],"flows,":[108],"especially":[109],"when":[110],"multiple":[112],"digits":[113],"Law.":[117],"Moreover,":[118],"attack":[123],"been":[125],"detected":[126],"our":[128,168],"contain":[131],"unique":[132],"signatures":[133],"or":[134],"patterns":[135],"further":[139],"used":[140],"as":[141],"features":[142],"classification":[144],"distinguish":[147],"them":[148],"from":[149],"other":[150],"attacks.":[154],"More":[155],"will":[157],"additional":[162],"datasets":[163],"presented":[166],"paper.":[169]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}