{"id":"https://openalex.org/W2807501920","doi":"https://doi.org/10.1109/cybersa.2018.8551386","title":"A Taxonomy of Malicious Traffic for Intrusion Detection Systems","display_name":"A Taxonomy of Malicious Traffic for Intrusion Detection Systems","publication_year":2018,"publication_date":"2018-06-01","ids":{"openalex":"https://openalex.org/W2807501920","doi":"https://doi.org/10.1109/cybersa.2018.8551386","mag":"2807501920"},"language":"en","primary_location":{"id":"doi:10.1109/cybersa.2018.8551386","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cybersa.2018.8551386","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (Cyber SA)","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://rke.abertay.ac.uk/en/publications/9543bef3-742f-4480-ae6e-6099d771909a","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5031720352","display_name":"Hanan Hindy","orcid":"https://orcid.org/0000-0002-5195-8193"},"institutions":[{"id":"https://openalex.org/I877506347","display_name":"Abertay University","ror":"https://ror.org/04mwwnx67","country_code":"GB","type":"education","lineage":["https://openalex.org/I877506347"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Hanan Hindy","raw_affiliation_strings":["Division of Cyber Security, Abertay University, Dundee, Scotland","[Division of Cyber-Security, Abertay University, Dundee, Scotland]"],"affiliations":[{"raw_affiliation_string":"Division of Cyber Security, Abertay University, Dundee, Scotland","institution_ids":["https://openalex.org/I877506347"]},{"raw_affiliation_string":"[Division of Cyber-Security, Abertay University, Dundee, Scotland]","institution_ids":["https://openalex.org/I877506347"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001935778","display_name":"Elike Hodo","orcid":null},"institutions":[{"id":"https://openalex.org/I181647926","display_name":"University of Strathclyde","ror":"https://ror.org/00n3w3b69","country_code":"GB","type":"education","lineage":["https://openalex.org/I181647926"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Elike Hodo","raw_affiliation_strings":["EEE Department, University of Strathclyde, Glasgow, Scotland","[EEE Department, University of Strathclyde, Glasgow, Scotland]"],"affiliations":[{"raw_affiliation_string":"EEE Department, University of Strathclyde, Glasgow, Scotland","institution_ids":["https://openalex.org/I181647926"]},{"raw_affiliation_string":"[EEE Department, University of Strathclyde, Glasgow, Scotland]","institution_ids":["https://openalex.org/I181647926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5002206179","display_name":"Ethan Bayne","orcid":"https://orcid.org/0000-0003-1853-2921"},"institutions":[{"id":"https://openalex.org/I877506347","display_name":"Abertay University","ror":"https://ror.org/04mwwnx67","country_code":"GB","type":"education","lineage":["https://openalex.org/I877506347"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Ethan Bayne","raw_affiliation_strings":["Division of Cyber Security, Abertay University, Dundee, Scotland","[Division of Cyber-Security, Abertay University, Dundee, Scotland]"],"affiliations":[{"raw_affiliation_string":"Division of Cyber Security, Abertay University, Dundee, Scotland","institution_ids":["https://openalex.org/I877506347"]},{"raw_affiliation_string":"[Division of Cyber-Security, Abertay University, Dundee, Scotland]","institution_ids":["https://openalex.org/I877506347"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028009465","display_name":"Amar Seeam","orcid":"https://orcid.org/0000-0001-8203-1545"},"institutions":[{"id":"https://openalex.org/I4210163761","display_name":"Middlesex University","ror":"https://ror.org/0531tjg57","country_code":"MU","type":"education","lineage":["https://openalex.org/I4210163761"]}],"countries":["MU"],"is_corresponding":false,"raw_author_name":"Amar Seeam","raw_affiliation_strings":["Department of Computer Science, Middlesex University, Mauritius"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, Middlesex University, Mauritius","institution_ids":["https://openalex.org/I4210163761"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005039825","display_name":"Robert Atkinson","orcid":"https://orcid.org/0000-0002-6206-2229"},"institutions":[{"id":"https://openalex.org/I181647926","display_name":"University of Strathclyde","ror":"https://ror.org/00n3w3b69","country_code":"GB","type":"education","lineage":["https://openalex.org/I181647926"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Robert Atkinson","raw_affiliation_strings":["EEE Department, University of Strathclyde, Glasgow, Scotland","[EEE Department, University of Strathclyde, Glasgow, Scotland]"],"affiliations":[{"raw_affiliation_string":"EEE Department, University of Strathclyde, Glasgow, Scotland","institution_ids":["https://openalex.org/I181647926"]},{"raw_affiliation_string":"[EEE Department, University of Strathclyde, Glasgow, Scotland]","institution_ids":["https://openalex.org/I181647926"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5029196733","display_name":"Xavier Bellekens","orcid":"https://orcid.org/0000-0003-1849-5788"},"institutions":[{"id":"https://openalex.org/I877506347","display_name":"Abertay University","ror":"https://ror.org/04mwwnx67","country_code":"GB","type":"education","lineage":["https://openalex.org/I877506347"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Xavier Bellekens","raw_affiliation_strings":["Division of Cyber Security, Abertay University, Dundee, Scotland","[Division of Cyber-Security, Abertay University, Dundee, Scotland]"],"affiliations":[{"raw_affiliation_string":"Division of Cyber Security, Abertay University, Dundee, Scotland","institution_ids":["https://openalex.org/I877506347"]},{"raw_affiliation_string":"[Division of Cyber-Security, Abertay University, Dundee, Scotland]","institution_ids":["https://openalex.org/I877506347"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5031720352"],"corresponding_institution_ids":["https://openalex.org/I877506347"],"apc_list":null,"apc_paid":null,"fwci":0.195,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.55791492,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"4"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.8235143423080444},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.73201584815979},{"id":"https://openalex.org/keywords/intrusion-prevention-system","display_name":"Intrusion prevention system","score":0.6888372898101807},{"id":"https://openalex.org/keywords/taxonomy","display_name":"Taxonomy (biology)","score":0.6142123341560364},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6090730428695679},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.599409818649292},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.5651510953903198},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.5172079801559448},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.35249951481819153}],"concepts":[{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.8235143423080444},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.73201584815979},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.6888372898101807},{"id":"https://openalex.org/C58642233","wikidata":"https://www.wikidata.org/wiki/Q8269924","display_name":"Taxonomy (biology)","level":2,"score":0.6142123341560364},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6090730428695679},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.599409818649292},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.5651510953903198},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.5172079801559448},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.35249951481819153},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":8,"locations":[{"id":"doi:10.1109/cybersa.2018.8551386","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cybersa.2018.8551386","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (Cyber SA)","raw_type":"proceedings-article"},{"id":"pmh:oai:rke.abertay.ac.uk:openaire_cris_publications/9543bef3-742f-4480-ae6e-6099d771909a","is_oa":true,"landing_page_url":"https://rke.abertay.ac.uk/en/publications/9543bef3-742f-4480-ae6e-6099d771909a","pdf_url":null,"source":{"id":"https://openalex.org/S4306402526","display_name":"Abertay Research Portal (Abertay University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I877506347","host_organization_name":"Abertay University","host_organization_lineage":["https://openalex.org/I877506347"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"Hindy , H , Hodo , E , Bayne , E , Seeam , A , Atkinson , R &amp; Bellekens , X 2018 , A taxonomy of malicious traffic for intrusion detection systems . in 2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (Cyber SA) . 2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment , Glasgow , United Kingdom , 11/06/18 . https://doi.org/10.1109/CyberSA.2018.8551386","raw_type":"contributionToPeriodical"},{"id":"pmh:oai:strathprints.strath.ac.uk:70971","is_oa":false,"landing_page_url":"https://strathprints.strath.ac.uk/view/author/925772.html>","pdf_url":null,"source":{"id":"https://openalex.org/S4306402226","display_name":"Strathprints: The University of Strathclyde institutional repository (University of Strathclyde)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I181647926","host_organization_name":"University of Strathclyde","host_organization_lineage":["https://openalex.org/I181647926"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"NonPeerReviewed"},{"id":"pmh:oai:arXiv.org:1806.03516","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1806.03516","pdf_url":"https://arxiv.org/pdf/1806.03516","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"mag:2807501920","is_oa":true,"landing_page_url":"http://arxiv.org/pdf/1806.03516.pdf","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"arXiv (Cornell University)","raw_type":null},{"id":"pmh:oai:eprints.mdx.ac.uk:36115","is_oa":false,"landing_page_url":"https://eprints.mdx.ac.uk/36115/","pdf_url":null,"source":{"id":"https://openalex.org/S4306400025","display_name":"Middlesex University Research Repository (Middlesex University Of London)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I60488453","host_organization_name":"Middlesex University","host_organization_lineage":["https://openalex.org/I60488453"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Conference or Workshop Item"},{"id":"pmh:oai:eprints.mdx.ac.uk:36116","is_oa":false,"landing_page_url":"https://eprints.mdx.ac.uk/36116/","pdf_url":null,"source":{"id":"https://openalex.org/S4306400025","display_name":"Middlesex University Research Repository (Middlesex University Of London)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I60488453","host_organization_name":"Middlesex University","host_organization_lineage":["https://openalex.org/I60488453"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Other"},{"id":"doi:10.48550/arxiv.1806.03516","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.1806.03516","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:rke.abertay.ac.uk:openaire_cris_publications/9543bef3-742f-4480-ae6e-6099d771909a","is_oa":true,"landing_page_url":"https://rke.abertay.ac.uk/en/publications/9543bef3-742f-4480-ae6e-6099d771909a","pdf_url":null,"source":{"id":"https://openalex.org/S4306402526","display_name":"Abertay Research Portal (Abertay University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I877506347","host_organization_name":"Abertay University","host_organization_lineage":["https://openalex.org/I877506347"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"Hindy , H , Hodo , E , Bayne , E , Seeam , A , Atkinson , R &amp; Bellekens , X 2018 , A taxonomy of malicious traffic for intrusion detection systems . in 2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (Cyber SA) . 2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment , Glasgow , United Kingdom , 11/06/18 . https://doi.org/10.1109/CyberSA.2018.8551386","raw_type":"contributionToPeriodical"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":32,"referenced_works":["https://openalex.org/W1529728259","https://openalex.org/W1671661096","https://openalex.org/W2012446724","https://openalex.org/W2040431736","https://openalex.org/W2047696272","https://openalex.org/W2056152451","https://openalex.org/W2076014973","https://openalex.org/W2091923980","https://openalex.org/W2104692292","https://openalex.org/W2122590816","https://openalex.org/W2126782589","https://openalex.org/W2158238145","https://openalex.org/W2343165823","https://openalex.org/W2360146046","https://openalex.org/W2564566221","https://openalex.org/W2566440770","https://openalex.org/W2576897537","https://openalex.org/W2579768231","https://openalex.org/W2733010877","https://openalex.org/W2733765803","https://openalex.org/W2734412659","https://openalex.org/W2768817314","https://openalex.org/W2779079325","https://openalex.org/W3098609257","https://openalex.org/W3098878596","https://openalex.org/W4251836839","https://openalex.org/W6600897621","https://openalex.org/W6636167291","https://openalex.org/W6730999400","https://openalex.org/W6732343696","https://openalex.org/W6784771302","https://openalex.org/W6978135970"],"related_works":["https://openalex.org/W2964216554","https://openalex.org/W1986923509","https://openalex.org/W2127233333","https://openalex.org/W2970773360","https://openalex.org/W2345595457","https://openalex.org/W2993958839","https://openalex.org/W3038806475","https://openalex.org/W2341183758","https://openalex.org/W2252581552","https://openalex.org/W3048796864","https://openalex.org/W2735171663","https://openalex.org/W1985545944","https://openalex.org/W2997697302","https://openalex.org/W2025319900","https://openalex.org/W9778195","https://openalex.org/W2383892082","https://openalex.org/W2958285686","https://openalex.org/W3210092962","https://openalex.org/W2187253855","https://openalex.org/W2102573541"],"abstract_inverted_index":{"With":[0],"the":[1],"increasing":[2],"number":[3],"of":[4,14],"network":[5,18,37],"threats":[6,19],"it":[7],"is":[8],"essential":[9],"to":[10,22,46],"have":[11],"a":[12,33,40],"knowledge":[13],"existing":[15],"and":[16,56],"new":[17],"in":[20,39],"order":[21],"design":[23],"better":[24],"intrusion":[25,53],"detection":[26,54],"systems.":[27],"In":[28],"this":[29],"paper":[30],"we":[31],"propose":[32],"taxonomy":[34],"for":[35],"classifying":[36],"attacks":[38],"consistent":[41],"way,":[42],"allowing":[43],"security":[44],"researchers":[45],"focus":[47],"their":[48],"efforts":[49],"on":[50],"creating":[51],"accurate":[52],"systems":[55],"targeted":[57],"datasets.":[58]},"counts_by_year":[{"year":2020,"cited_by_count":1}],"updated_date":"2026-03-17T09:09:15.849793","created_date":"2025-10-10T00:00:00"}