{"id":"https://openalex.org/W2029649669","doi":"https://doi.org/10.1109/conielecomp.2014.6808591","title":"Characterization of worm attacks using entropy, Mahalanobis distance and K-nearest neighbors","display_name":"Characterization of worm attacks using entropy, Mahalanobis distance and K-nearest neighbors","publication_year":2014,"publication_date":"2014-02-01","ids":{"openalex":"https://openalex.org/W2029649669","doi":"https://doi.org/10.1109/conielecomp.2014.6808591","mag":"2029649669"},"language":"en","primary_location":{"id":"doi:10.1109/conielecomp.2014.6808591","is_oa":false,"landing_page_url":"https://doi.org/10.1109/conielecomp.2014.6808591","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2014 International Conference on Electronics, Communications and Computers (CONIELECOMP)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5075803496","display_name":"Jayro Santiago-Paz","orcid":"https://orcid.org/0000-0002-7036-0074"},"institutions":[{"id":"https://openalex.org/I68368234","display_name":"Center for Research and Advanced Studies of the National Polytechnic Institute","ror":"https://ror.org/009eqmr18","country_code":"MX","type":"facility","lineage":["https://openalex.org/I59361560","https://openalex.org/I68368234"]}],"countries":["MX"],"is_corresponding":true,"raw_author_name":"Jayro Santiago-Paz","raw_affiliation_strings":["CINVESTAV IPN, Department of Electrical Engineering and Computer Sciences Telecommunications, Jalisco, Mexico","Dept. of Electr. Eng. & Comput. Sci. Telecommun., CINVESTAV IPN, Guadalajara, Mexico"],"affiliations":[{"raw_affiliation_string":"CINVESTAV IPN, Department of Electrical Engineering and Computer Sciences Telecommunications, Jalisco, Mexico","institution_ids":["https://openalex.org/I68368234"]},{"raw_affiliation_string":"Dept. of Electr. Eng. & Comput. Sci. Telecommun., CINVESTAV IPN, Guadalajara, Mexico","institution_ids":["https://openalex.org/I68368234"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5086698147","display_name":"Deni Torres-Rom\u00e1n","orcid":"https://orcid.org/0000-0002-9813-7712"},"institutions":[{"id":"https://openalex.org/I68368234","display_name":"Center for Research and Advanced Studies of the National Polytechnic Institute","ror":"https://ror.org/009eqmr18","country_code":"MX","type":"facility","lineage":["https://openalex.org/I59361560","https://openalex.org/I68368234"]}],"countries":["MX"],"is_corresponding":false,"raw_author_name":"Deni Torres-Roman","raw_affiliation_strings":["CINVESTAV IPN, Department of Electrical Engineering and Computer Sciences Telecommunications, Jalisco, Mexico","Dept. of Electr. Eng. & Comput. Sci. Telecommun., CINVESTAV IPN, Guadalajara, Mexico"],"affiliations":[{"raw_affiliation_string":"CINVESTAV IPN, Department of Electrical Engineering and Computer Sciences Telecommunications, Jalisco, Mexico","institution_ids":["https://openalex.org/I68368234"]},{"raw_affiliation_string":"Dept. of Electr. Eng. & Comput. Sci. Telecommun., CINVESTAV IPN, Guadalajara, Mexico","institution_ids":["https://openalex.org/I68368234"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5075803496"],"corresponding_institution_ids":["https://openalex.org/I68368234"],"apc_list":null,"apc_paid":null,"fwci":0.7035,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.70174035,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":"2","issue":null,"first_page":"200","last_page":"205"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12261","display_name":"Statistical Mechanics and Entropy","score":0.9901999831199646,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12261","display_name":"Statistical Mechanics and Entropy","score":0.9901999831199646,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12592","display_name":"Opinion Dynamics and Social Influence","score":0.9894999861717224,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9847999811172485,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/mahalanobis-distance","display_name":"Mahalanobis distance","score":0.9490419626235962},{"id":"https://openalex.org/keywords/entropy","display_name":"Entropy (arrow of time)","score":0.6446317434310913},{"id":"https://openalex.org/keywords/distance-matrix","display_name":"Distance matrix","score":0.644050657749176},{"id":"https://openalex.org/keywords/ellipsoid","display_name":"Ellipsoid","score":0.5925968289375305},{"id":"https://openalex.org/keywords/k-nearest-neighbors-algorithm","display_name":"k-nearest neighbors algorithm","score":0.5670335292816162},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5294594168663025},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4916682839393616},{"id":"https://openalex.org/keywords/nearest-neighbour","display_name":"Nearest neighbour","score":0.47573232650756836},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.4661596715450287},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4186669886112213},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.38064810633659363},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.3506971597671509},{"id":"https://openalex.org/keywords/combinatorics","display_name":"Combinatorics","score":0.3313882648944855},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.19963142275810242}],"concepts":[{"id":"https://openalex.org/C1921717","wikidata":"https://www.wikidata.org/wiki/Q1334846","display_name":"Mahalanobis distance","level":2,"score":0.9490419626235962},{"id":"https://openalex.org/C106301342","wikidata":"https://www.wikidata.org/wiki/Q4117933","display_name":"Entropy (arrow of time)","level":2,"score":0.6446317434310913},{"id":"https://openalex.org/C111208986","wikidata":"https://www.wikidata.org/wiki/Q901698","display_name":"Distance matrix","level":2,"score":0.644050657749176},{"id":"https://openalex.org/C57489055","wikidata":"https://www.wikidata.org/wiki/Q190046","display_name":"Ellipsoid","level":2,"score":0.5925968289375305},{"id":"https://openalex.org/C113238511","wikidata":"https://www.wikidata.org/wiki/Q1071612","display_name":"k-nearest neighbors algorithm","level":2,"score":0.5670335292816162},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5294594168663025},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4916682839393616},{"id":"https://openalex.org/C2983946233","wikidata":"https://www.wikidata.org/wiki/Q4088109","display_name":"Nearest neighbour","level":2,"score":0.47573232650756836},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.4661596715450287},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4186669886112213},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.38064810633659363},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.3506971597671509},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.3313882648944855},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.19963142275810242},{"id":"https://openalex.org/C1276947","wikidata":"https://www.wikidata.org/wiki/Q333","display_name":"Astronomy","level":1,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/conielecomp.2014.6808591","is_oa":false,"landing_page_url":"https://doi.org/10.1109/conielecomp.2014.6808591","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2014 International Conference on Electronics, Communications and Computers (CONIELECOMP)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":8,"referenced_works":["https://openalex.org/W1540596182","https://openalex.org/W1607810777","https://openalex.org/W1995875735","https://openalex.org/W2089852843","https://openalex.org/W2121420728","https://openalex.org/W2155915275","https://openalex.org/W3138273970","https://openalex.org/W4301689241"],"related_works":["https://openalex.org/W2807748361","https://openalex.org/W2140530403","https://openalex.org/W2104531299","https://openalex.org/W4324119285","https://openalex.org/W2622145841","https://openalex.org/W3125396527","https://openalex.org/W1591806955","https://openalex.org/W2029649669","https://openalex.org/W1605858995","https://openalex.org/W3004382963"],"abstract_inverted_index":{"This":[0],"paper":[1],"presents":[2],"an":[3,54],"algorithm":[4],"based":[5],"on":[6],"entropy":[7,27],"and":[8,92,94],"Mahalanobis":[9],"distance":[10],"to":[11],"characterize":[12],"the":[13,33,59,62,65,69,95,104,118,123],"behavior":[14,60],"of":[15,26,28,32,36,61,78,117],"worms":[16],"attack.":[17],"For":[18],"this,":[19],"is":[20,98],"built":[21],"a":[22,83,99,115],"matrix":[23,38],"with":[24,75],"estimates":[25],"different":[29],"intrinsic":[30],"features":[31],"network":[34,85],"traffic,":[35],"this":[37],"four":[39],"parameters":[40],"{\u03bc,":[41],"\u03b3,":[42],"\u03bb,":[43],"d":[44],"<sup":[45],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[46],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">2</sup>":[47],"}":[48],"are":[49],"obtained.":[50],"These":[51],"values":[52],"determine":[53],"ellipsoidal":[55,124],"region":[56],"that":[57,120],"characterizes":[58],"worm":[63],"within":[64],"space":[66],"defined":[67,126],"by":[68],"traffic":[70,86],"features.":[71],"Tests":[72],"were":[73,121],"conducted":[74],"two":[76],"types":[77],"traces,":[79],"one":[80,97],"obtained":[81,102],"from":[82,103],"LAN":[84],"containing":[87],"real":[88],"attacks":[89],"Blaster,":[90],"Sasser":[91],"Welchia,":[93],"other":[96],"Smurf":[100],"attack":[101],"MIT-DARPA":[105],"dataset.":[106],"Using":[107],"K":[108],"nearest":[109],"neighbors":[110],"in":[111],"time":[112],"was":[113],"performed":[114],"classification":[116],"slots":[119],"outside":[122],"regions":[125],"previously.":[127]},"counts_by_year":[{"year":2015,"cited_by_count":2},{"year":2014,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}