{"id":"https://openalex.org/W2911985804","doi":"https://doi.org/10.1109/bigdata.2018.8622077","title":"Generating Interpretable Network Asset Clusters For Security Analytics","display_name":"Generating Interpretable Network Asset Clusters For Security Analytics","publication_year":2018,"publication_date":"2018-12-01","ids":{"openalex":"https://openalex.org/W2911985804","doi":"https://doi.org/10.1109/bigdata.2018.8622077","mag":"2911985804"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata.2018.8622077","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata.2018.8622077","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5019796082","display_name":"Anying Li","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Anying Li","raw_affiliation_strings":["Exabeam Inc., San Mateo, California, USA"],"affiliations":[{"raw_affiliation_string":"Exabeam Inc., San Mateo, California, USA","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5110595057","display_name":"Derek Lin","orcid":"https://orcid.org/0009-0004-8526-0887"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Derek Lin","raw_affiliation_strings":["Exabeam Inc., San Mateo, California, USA"],"affiliations":[{"raw_affiliation_string":"Exabeam Inc., San Mateo, California, USA","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5019796082"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.20308371,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"2972","last_page":"2979"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10064","display_name":"Complex Network Analysis Techniques","score":0.9951000213623047,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9842000007629395,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.6916454434394836},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6598060131072998},{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.6311013102531433},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.5532245635986328},{"id":"https://openalex.org/keywords/cluster","display_name":"Cluster (spacecraft)","score":0.4376404285430908},{"id":"https://openalex.org/keywords/analytics","display_name":"Analytics","score":0.4294095039367676},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.37831777334213257},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2982981204986572},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.17361581325531006},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.13223743438720703}],"concepts":[{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.6916454434394836},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6598060131072998},{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.6311013102531433},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.5532245635986328},{"id":"https://openalex.org/C164866538","wikidata":"https://www.wikidata.org/wiki/Q367351","display_name":"Cluster (spacecraft)","level":2,"score":0.4376404285430908},{"id":"https://openalex.org/C79158427","wikidata":"https://www.wikidata.org/wiki/Q485396","display_name":"Analytics","level":2,"score":0.4294095039367676},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.37831777334213257},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2982981204986572},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.17361581325531006},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.13223743438720703}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata.2018.8622077","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata.2018.8622077","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W1458873377","https://openalex.org/W1532325895","https://openalex.org/W1880262756","https://openalex.org/W1976391658","https://openalex.org/W1978394996","https://openalex.org/W1995976200","https://openalex.org/W2013029404","https://openalex.org/W2015583498","https://openalex.org/W2064690543","https://openalex.org/W2108420397","https://openalex.org/W2120379285","https://openalex.org/W2123120907","https://openalex.org/W2130339025","https://openalex.org/W2159426623","https://openalex.org/W2554388950","https://openalex.org/W2579439731","https://openalex.org/W2587676558","https://openalex.org/W2592771984","https://openalex.org/W2773825811","https://openalex.org/W4213009331","https://openalex.org/W6639619044","https://openalex.org/W6653781006","https://openalex.org/W6679482899","https://openalex.org/W6683333316","https://openalex.org/W6732283255","https://openalex.org/W6733218031"],"related_works":["https://openalex.org/W2804364458","https://openalex.org/W4298130764","https://openalex.org/W2132641928","https://openalex.org/W4310225030","https://openalex.org/W2090259340","https://openalex.org/W2105642232","https://openalex.org/W2083665254","https://openalex.org/W2393816671","https://openalex.org/W2158836806","https://openalex.org/W1926736923"],"abstract_inverted_index":{"User-group":[0],"or":[1,56],"asset-group":[2],"information":[3],"in":[4,11,18,64,73,123],"an":[5],"enterprise":[6,34],"network":[7,37],"plays":[8],"important":[9],"roles":[10],"the":[12,66,96,116,119],"detection":[13],"of":[14,118],"behavioral":[15],"anomalies,":[16],"particularly":[17],"peer-based":[19],"analysis.":[20],"While":[21],"user":[22,98],"peer":[23,42,99,124],"group":[24,43,100],"data":[25,44,88],"is":[26,31,45,58,61],"readily":[27],"available,":[28],"since":[29],"it":[30],"maintained":[32],"by":[33,86],"IT":[35],"for":[36,69,76,111,126],"security":[38],"policy":[39],"administration,":[40],"asset":[41,54,67,103,121],"typically":[46],"nonexistent.":[47],"Therefore,":[48],"a":[49,82],"method":[50,85],"to":[51],"automatically":[52],"create":[53],"groups":[55],"clusters":[57,104,122],"desired.":[59],"This":[60,79],"useful":[62],"both":[63],"building":[65],"taxonomy":[68],"knowledge":[70],"discovery":[71],"and":[72],"asset-peer":[74],"analysis":[75,125],"anomaly":[77,127],"detection.":[78,128],"work":[80],"presents":[81],"behavior-based,":[83],"asset-clustering":[84],"analyzing":[87],"from":[89],"user-to-asset":[90],"logon":[91],"event":[92],"records":[93],"while":[94],"leveraging":[95],"existing":[97],"labels.":[101],"Output":[102],"are":[105],"stable,":[106],"with":[107],"interpretable":[108],"cluster":[109],"labels":[110],"operational":[112],"consideration.":[113],"We":[114],"demonstrate":[115],"value":[117],"derived":[120]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}