{"id":"https://openalex.org/W2585581321","doi":"https://doi.org/10.1109/bigdata.2016.7840716","title":"Scalable attack propagation model and algorithms for honeypot systems","display_name":"Scalable attack propagation model and algorithms for honeypot systems","publication_year":2016,"publication_date":"2016-12-01","ids":{"openalex":"https://openalex.org/W2585581321","doi":"https://doi.org/10.1109/bigdata.2016.7840716","mag":"2585581321"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata.2016.7840716","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata.2016.7840716","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5007611944","display_name":"Ariel Bar","orcid":"https://orcid.org/0000-0001-6083-569X"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Ariel Bar","raw_affiliation_strings":["Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5086920790","display_name":"Bracha Shapira","orcid":"https://orcid.org/0000-0003-4943-9324"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Bracha Shapira","raw_affiliation_strings":["Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012622155","display_name":"Lior Rokach","orcid":"https://orcid.org/0000-0002-6956-3341"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Lior Rokach","raw_affiliation_strings":["Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5011134797","display_name":"Moshe Unger","orcid":"https://orcid.org/0000-0001-5512-0331"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Moshe Unger","raw_affiliation_strings":["Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Department of Information Systems Engineering and Telekom Innovation Laboratories, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5007611944"],"corresponding_institution_ids":["https://openalex.org/I124227911"],"apc_list":null,"apc_paid":null,"fwci":1.1581,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.82623145,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"4","issue":null,"first_page":"1130","last_page":"1135"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10064","display_name":"Complex Network Analysis Techniques","score":0.9912999868392944,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9818999767303467,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/honeypot","display_name":"Honeypot","score":0.964457094669342},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.8525274395942688},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8470350503921509},{"id":"https://openalex.org/keywords/attack-patterns","display_name":"Attack patterns","score":0.5516850352287292},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.49820494651794434},{"id":"https://openalex.org/keywords/hidden-markov-model","display_name":"Hidden Markov model","score":0.497941255569458},{"id":"https://openalex.org/keywords/attack-model","display_name":"Attack model","score":0.4541338384151459},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.44960761070251465},{"id":"https://openalex.org/keywords/markov-chain","display_name":"Markov chain","score":0.4304697513580322},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.39228910207748413},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.3674948215484619},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3364788293838501},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.27971744537353516},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.21488702297210693},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.18650436401367188}],"concepts":[{"id":"https://openalex.org/C191267431","wikidata":"https://www.wikidata.org/wiki/Q911932","display_name":"Honeypot","level":2,"score":0.964457094669342},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.8525274395942688},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8470350503921509},{"id":"https://openalex.org/C2780741293","wikidata":"https://www.wikidata.org/wiki/Q4818019","display_name":"Attack patterns","level":3,"score":0.5516850352287292},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.49820494651794434},{"id":"https://openalex.org/C23224414","wikidata":"https://www.wikidata.org/wiki/Q176769","display_name":"Hidden Markov model","level":2,"score":0.497941255569458},{"id":"https://openalex.org/C65856478","wikidata":"https://www.wikidata.org/wiki/Q3991682","display_name":"Attack model","level":2,"score":0.4541338384151459},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.44960761070251465},{"id":"https://openalex.org/C98763669","wikidata":"https://www.wikidata.org/wiki/Q176645","display_name":"Markov chain","level":2,"score":0.4304697513580322},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.39228910207748413},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.3674948215484619},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3364788293838501},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.27971744537353516},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.21488702297210693},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.18650436401367188}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata.2016.7840716","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata.2016.7840716","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W1525561699","https://openalex.org/W1639032689","https://openalex.org/W1968105228","https://openalex.org/W1971113501","https://openalex.org/W2012971387","https://openalex.org/W2061892850","https://openalex.org/W2085723952","https://openalex.org/W2109722477","https://openalex.org/W2137786570","https://openalex.org/W2145592206","https://openalex.org/W2147767253","https://openalex.org/W2151915331","https://openalex.org/W2173213060","https://openalex.org/W2751555667","https://openalex.org/W3023540311","https://openalex.org/W6676367512","https://openalex.org/W6681568008"],"related_works":["https://openalex.org/W2800346278","https://openalex.org/W257206989","https://openalex.org/W4361731978","https://openalex.org/W3047671688","https://openalex.org/W2155640889","https://openalex.org/W2382100376","https://openalex.org/W2744188981","https://openalex.org/W4385688323","https://openalex.org/W2090868254","https://openalex.org/W2036903135"],"abstract_inverted_index":{"Attack":[0],"propagation":[1,27,88,193,217],"models":[2,28],"within":[3],"honeypot":[4,23,181],"systems":[5],"aim":[6],"at":[7],"providing":[8],"insights":[9],"about":[10,95],"attack":[11,26,58,87,124,135,192,216],"strategies":[12],"that":[13,90,118,137,185,194,245],"target":[14],"multiple":[15,100],"honeypots,":[16,73],"rather":[17],"than":[18],"analyzing":[19],"attacks":[20,71,97,177],"on":[21,30,72,168,178,240],"each":[22],"separately.":[24],"Traditional":[25],"focus":[29],"building":[31],"a":[32,74,85,114,130,151,169,248],"single":[33],"probabilistic":[34],"model.":[35],"This":[36],"modeling":[37,76,187],"approach":[38,77],"may":[39,195],"be":[40,139],"misleading,":[41],"since":[42],"it":[43],"does":[44],"not":[45],"take":[46],"into":[47],"consideration":[48],"contextual":[49,93,186],"information":[50,94],"such":[51],"as":[52],"the":[53,57,64,68,96,203,206,215,222,226,232,237],"country":[54],"from":[55],"which":[56,172],"is":[59,78,188],"initiated.":[60],"In":[61,80,199],"addition,":[62,200],"with":[63],"massive":[65,170],"increase":[66],"in":[67,149,158,221],"magnitude":[69],"of":[70,109,205,234,236],"scalable":[75],"required.":[79],"this":[81],"work":[82],"we":[83,105,112,128,147,201,219,230],"present":[84,113],"novel":[86],"model":[89],"can":[91,119,138],"utilize":[92],"by":[98,197,213],"training":[99,142],"Markov":[101],"Chain":[102],"models.":[103],"Moreover,":[104],"add":[106],"additional":[107],"layers":[108],"analysis:":[110],"first,":[111],"likelihood":[115],"estimation":[116],"procedure":[117],"identify":[120],"new":[121],"and":[122,126,225,242],"evolving":[123],"patterns;":[125],"second,":[127],"introduce":[129],"method":[131,208],"for":[132,141,154,190,209],"generating":[133,210],"simulated":[134,211],"sequences":[136,212],"used":[140],"or":[143],"sensitivity":[144],"analysis.":[145],"Lastly,":[146],"present,":[148],"details,":[150],"MapReduce":[152],"design":[153],"all":[155,235],"suggested":[156,207],"algorithms":[157,239],"order":[159],"to":[160],"address":[161],"scalability":[162,233],"issues.":[163],"We":[164],"evaluate":[165],"our":[166],"methods":[167],"dataset":[171,224],"includes":[173],"approximately":[174],"170":[175],"million":[176],"an":[179],"operational":[180],"system.":[182],"Results":[183],"indicate":[184],"important":[189],"explaining":[191],"vary":[196],"country.":[198],"show":[202],"effectiveness":[204],"comparing":[214],"patterns":[218],"learned":[220],"generated":[223],"original":[227],"one.":[228],"Finally,":[229],"demonstrate":[231],"proposed":[238],"real":[241],"synthetic":[243],"datasets":[244],"include":[246],"over":[247],"billion":[249],"records.":[250]},"counts_by_year":[{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}