{"id":"https://openalex.org/W2086985368","doi":"https://doi.org/10.1109/ccnc.2014.6866597","title":"A malicious activity detection system utilizing predictive modeling in complex environments","display_name":"A malicious activity detection system utilizing predictive modeling in complex environments","publication_year":2014,"publication_date":"2014-01-01","ids":{"openalex":"https://openalex.org/W2086985368","doi":"https://doi.org/10.1109/ccnc.2014.6866597","mag":"2086985368"},"language":"en","primary_location":{"id":"doi:10.1109/ccnc.2014.6866597","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccnc.2014.6866597","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2014 IEEE 11th Consumer Communications and Networking Conference (CCNC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5064296964","display_name":"Abdullah Almaatouq","orcid":"https://orcid.org/0000-0002-8467-9123"},"institutions":[{"id":"https://openalex.org/I1284598098","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39","country_code":"SA","type":"facility","lineage":["https://openalex.org/I1284598098"]},{"id":"https://openalex.org/I4210116219","display_name":"Engineering Systems (United States)","ror":"https://ror.org/02qg60849","country_code":"US","type":"company","lineage":["https://openalex.org/I4210116219"]}],"countries":["SA","US"],"is_corresponding":true,"raw_author_name":"Abdullah Almaatouq","raw_affiliation_strings":["Center for Complex Engineering Systems","King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"Center for Complex Engineering Systems","institution_ids":["https://openalex.org/I4210116219"]},{"raw_affiliation_string":"King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I1284598098"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102756489","display_name":"Ahmad Alabdulkareem","orcid":null},"institutions":[{"id":"https://openalex.org/I1284598098","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39","country_code":"SA","type":"facility","lineage":["https://openalex.org/I1284598098"]},{"id":"https://openalex.org/I4210116219","display_name":"Engineering Systems (United States)","ror":"https://ror.org/02qg60849","country_code":"US","type":"company","lineage":["https://openalex.org/I4210116219"]}],"countries":["SA","US"],"is_corresponding":false,"raw_author_name":"Ahmad Alabdulkareem","raw_affiliation_strings":["Center for Complex Engineering Systems","King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"Center for Complex Engineering Systems","institution_ids":["https://openalex.org/I4210116219"]},{"raw_affiliation_string":"King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I1284598098"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5098503936","display_name":"Mariani Nouh","orcid":null},"institutions":[{"id":"https://openalex.org/I4210116219","display_name":"Engineering Systems (United States)","ror":"https://ror.org/02qg60849","country_code":"US","type":"company","lineage":["https://openalex.org/I4210116219"]},{"id":"https://openalex.org/I1284598098","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39","country_code":"SA","type":"facility","lineage":["https://openalex.org/I1284598098"]}],"countries":["SA","US"],"is_corresponding":false,"raw_author_name":"Mariani Nouh","raw_affiliation_strings":["Center for Complex Engineering Systems","King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"Center for Complex Engineering Systems","institution_ids":["https://openalex.org/I4210116219"]},{"raw_affiliation_string":"King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I1284598098"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5115598991","display_name":"Mansour Alsaleh","orcid":"https://orcid.org/0000-0003-0920-7561"},"institutions":[{"id":"https://openalex.org/I1284598098","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39","country_code":"SA","type":"facility","lineage":["https://openalex.org/I1284598098"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Mansour Alsaleh","raw_affiliation_strings":["King Abdulaziz City for Science and Technology","King Abdulaziz City for Science and Technology,Riyadh,Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"King Abdulaziz City for Science and Technology","institution_ids":["https://openalex.org/I1284598098"]},{"raw_affiliation_string":"King Abdulaziz City for Science and Technology,Riyadh,Saudi Arabia","institution_ids":["https://openalex.org/I1284598098"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5109833231","display_name":"Abdulrahman Alarifi","orcid":null},"institutions":[{"id":"https://openalex.org/I1284598098","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39","country_code":"SA","type":"facility","lineage":["https://openalex.org/I1284598098"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Abdulrahman Alarifi","raw_affiliation_strings":["King Abdulaziz City for Science and Technology","King Abdulaziz City for Science and Technology,Riyadh,Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"King Abdulaziz City for Science and Technology","institution_ids":["https://openalex.org/I1284598098"]},{"raw_affiliation_string":"King Abdulaziz City for Science and Technology,Riyadh,Saudi Arabia","institution_ids":["https://openalex.org/I1284598098"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103851771","display_name":"Abel Sanchez","orcid":null},"institutions":[{"id":"https://openalex.org/I63966007","display_name":"Massachusetts Institute of Technology","ror":"https://ror.org/042nb2s44","country_code":"US","type":"education","lineage":["https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Abel Sanchez","raw_affiliation_strings":["Massachusetts Institute of Technology","Massachusetts Institute of Technology; ,; Cambridge MA USA"],"affiliations":[{"raw_affiliation_string":"Massachusetts Institute of Technology","institution_ids":["https://openalex.org/I63966007"]},{"raw_affiliation_string":"Massachusetts Institute of Technology; ,; Cambridge MA USA","institution_ids":["https://openalex.org/I63966007"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5073189960","display_name":"Anas Alfaris","orcid":null},"institutions":[{"id":"https://openalex.org/I1284598098","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39","country_code":"SA","type":"facility","lineage":["https://openalex.org/I1284598098"]},{"id":"https://openalex.org/I4210116219","display_name":"Engineering Systems (United States)","ror":"https://ror.org/02qg60849","country_code":"US","type":"company","lineage":["https://openalex.org/I4210116219"]}],"countries":["SA","US"],"is_corresponding":false,"raw_author_name":"Anas Alfaris","raw_affiliation_strings":["Center for Complex Engineering Systems","King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"Center for Complex Engineering Systems","institution_ids":["https://openalex.org/I4210116219"]},{"raw_affiliation_string":"King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I1284598098"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101672405","display_name":"John Williams","orcid":"https://orcid.org/0000-0002-6118-0434"},"institutions":[{"id":"https://openalex.org/I63966007","display_name":"Massachusetts Institute of Technology","ror":"https://ror.org/042nb2s44","country_code":"US","type":"education","lineage":["https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"John Williams","raw_affiliation_strings":["Massachusetts Institute of Technology","Massachusetts Institute of Technology; ,; Cambridge MA USA"],"affiliations":[{"raw_affiliation_string":"Massachusetts Institute of Technology","institution_ids":["https://openalex.org/I63966007"]},{"raw_affiliation_string":"Massachusetts Institute of Technology; ,; Cambridge MA USA","institution_ids":["https://openalex.org/I63966007"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5064296964"],"corresponding_institution_ids":["https://openalex.org/I1284598098","https://openalex.org/I4210116219"],"apc_list":null,"apc_paid":null,"fwci":1.3792,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.84339548,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"371","last_page":"379"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.996999979019165,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7600570321083069},{"id":"https://openalex.org/keywords/replication","display_name":"Replication (statistics)","score":0.6180364489555359},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5581863522529602},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.5473657846450806},{"id":"https://openalex.org/keywords/resource","display_name":"Resource (disambiguation)","score":0.4171682894229889},{"id":"https://openalex.org/keywords/real-time-computing","display_name":"Real-time computing","score":0.3720599412918091},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3514004051685333},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.21428942680358887}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7600570321083069},{"id":"https://openalex.org/C12590798","wikidata":"https://www.wikidata.org/wiki/Q3933199","display_name":"Replication (statistics)","level":2,"score":0.6180364489555359},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5581863522529602},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.5473657846450806},{"id":"https://openalex.org/C206345919","wikidata":"https://www.wikidata.org/wiki/Q20380951","display_name":"Resource (disambiguation)","level":2,"score":0.4171682894229889},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.3720599412918091},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3514004051685333},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.21428942680358887},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ccnc.2014.6866597","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccnc.2014.6866597","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2014 IEEE 11th Consumer Communications and Networking Conference (CCNC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","score":0.5199999809265137,"display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320322997","display_name":"King Abdulaziz City for Science and Technology","ror":"https://ror.org/05tdz6m39"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":35,"referenced_works":["https://openalex.org/W1498749478","https://openalex.org/W1514071629","https://openalex.org/W1554130893","https://openalex.org/W1560724230","https://openalex.org/W1565377632","https://openalex.org/W1583865258","https://openalex.org/W1938740620","https://openalex.org/W1967476065","https://openalex.org/W1969158966","https://openalex.org/W1985987493","https://openalex.org/W1990911977","https://openalex.org/W2001141328","https://openalex.org/W2015887370","https://openalex.org/W2031163547","https://openalex.org/W2038819732","https://openalex.org/W2049058890","https://openalex.org/W2060549506","https://openalex.org/W2065685380","https://openalex.org/W2073917303","https://openalex.org/W2074548145","https://openalex.org/W2108073531","https://openalex.org/W2122301654","https://openalex.org/W2122646361","https://openalex.org/W2131241448","https://openalex.org/W2132870739","https://openalex.org/W2137130182","https://openalex.org/W2161027355","https://openalex.org/W2161336914","https://openalex.org/W2170981964","https://openalex.org/W2172154528","https://openalex.org/W2252387089","https://openalex.org/W2482589566","https://openalex.org/W3195149063","https://openalex.org/W4247957653","https://openalex.org/W6678911119"],"related_works":["https://openalex.org/W4205713785","https://openalex.org/W3016766501","https://openalex.org/W2901033488","https://openalex.org/W2357468538","https://openalex.org/W1577110157","https://openalex.org/W2355007334","https://openalex.org/W3086458689","https://openalex.org/W2031325922","https://openalex.org/W2169667823","https://openalex.org/W1914896963"],"abstract_inverted_index":{"Complex":[0],"enterprise":[1],"environments":[2],"consist":[3],"of":[4,11,17,33,46,61,77,103,114,131,151,158,168,178,186,197],"globally":[5],"distributed":[6],"infrastructure":[7,171],"with":[8,201],"a":[9,14,21,89,125,140,155,159],"variety":[10],"applications":[12],"and":[13,29,68,118,136,149,189,204],"large":[15],"number":[16,185],"activities":[18,40],"occurring":[19],"on":[20],"daily":[22],"basis.":[23],"This":[24],"increases":[25],"the":[26,31,44,62,75,85,101,112,147,152,166,169,173,184,198,206],"attack":[27],"surface":[28],"narrows":[30],"view":[32],"ongoing":[34],"intrinsic":[35],"dynamics.":[36],"Thus,":[37],"many":[38],"malicious":[39,104,119],"can":[41],"persist":[42],"under":[43],"radar":[45],"conventional":[47],"detection":[48,64,102,108,113,199],"mechanisms":[49],"long":[50],"enough":[51],"to":[52,72,127,194],"achieve":[53],"critical":[54],"mass":[55],"for":[56,87,100],"full-fledged":[57],"cyber":[58],"attacks.":[59,79],"Many":[60],"typical":[63],"approaches":[65],"are":[66,70],"signature-based":[67],"thus":[69],"expected":[71],"fail":[73],"in":[74,176],"face":[76],"zero-day":[78],"In":[80,192],"this":[81],"paper,":[82],"we":[83,164],"present":[84],"building-blocks":[86],"developing":[88],"Malicious":[90],"Activity":[91],"Detection":[92],"System":[93],"(MADS).":[94],"MADS":[95,110],"employs":[96],"predictive":[97],"modeling":[98],"techniques":[99],"activities.":[105],"Unlike":[106],"traditional":[107],"mechanisms,":[109],"includes":[111],"both":[115,134],"network-based":[116],"intrusions":[117],"user":[120],"behaviors.":[121],"The":[122],"system":[123],"utilizes":[124],"simulator":[126,153],"produce":[128],"holistic":[129],"replication":[130],"activities,":[132],"including":[133],"benign":[135],"malicious,":[137],"flowing":[138],"within":[139],"given":[141],"complex":[142],"IT":[143],"environment.":[144],"We":[145],"validate":[146],"performance":[148],"accuracy":[150],"through":[154],"case":[156],"study":[157],"Fortune":[160],"500":[161],"company":[162],"where":[163],"compare":[165],"results":[167],"simulated":[170],"against":[172],"physical":[174],"one":[175],"terms":[177],"resource":[179],"consumption":[180],"(i.e.,":[181],"CPU":[182],"utilization),":[183],"concurrent":[187],"users,":[188],"response":[190],"times.":[191],"addition":[193],"an":[195],"evaluation":[196],"algorithms":[200],"varying":[202],"hyper-parameters":[203],"comparing":[205],"results.":[207]},"counts_by_year":[{"year":2020,"cited_by_count":2},{"year":2016,"cited_by_count":4}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}