{"id":"https://openalex.org/W2904360034","doi":"https://doi.org/10.1109/cybersecpods.2018.8560678","title":"Unsupervised Approach for Detecting Low Rate Attacks on Network Traffic with Autoencoder","display_name":"Unsupervised Approach for Detecting Low Rate Attacks on Network Traffic with Autoencoder","publication_year":2018,"publication_date":"2018-06-01","ids":{"openalex":"https://openalex.org/W2904360034","doi":"https://doi.org/10.1109/cybersecpods.2018.8560678","mag":"2904360034"},"language":"en","primary_location":{"id":"doi:10.1109/cybersecpods.2018.8560678","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cybersecpods.2018.8560678","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5028417272","display_name":"Baskoro Adi Pratomo","orcid":"https://orcid.org/0000-0002-1419-7073"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Baskoro Adi Pratomo","raw_affiliation_strings":["School of Computer Science and Informatics, Cardiff University, Cardiff, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Informatics, Cardiff University, Cardiff, UK","institution_ids":["https://openalex.org/I79510175"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090436792","display_name":"Pete Burnap","orcid":"https://orcid.org/0000-0003-0396-633X"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Pete Burnap","raw_affiliation_strings":["School of Computer Science and Informatics, Cardiff University, Cardiff, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Informatics, Cardiff University, Cardiff, UK","institution_ids":["https://openalex.org/I79510175"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5042246090","display_name":"George Theodorakopoulos","orcid":"https://orcid.org/0000-0003-2701-7809"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"George Theodorakopoulos","raw_affiliation_strings":["School of Computer Science and Informatics, Cardiff University, Cardiff, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Informatics, Cardiff University, Cardiff, UK","institution_ids":["https://openalex.org/I79510175"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.9764,"has_fulltext":false,"cited_by_count":32,"citation_normalized_percentile":{"value":0.88056944,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/autoencoder","display_name":"Autoencoder","score":0.8710540533065796},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8077222108840942},{"id":"https://openalex.org/keywords/header","display_name":"Header","score":0.6652500629425049},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6298915147781372},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.6156309247016907},{"id":"https://openalex.org/keywords/backdoor","display_name":"Backdoor","score":0.6067428588867188},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6055117845535278},{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.5629774928092957},{"id":"https://openalex.org/keywords/false-positive-rate","display_name":"False positive rate","score":0.5555169582366943},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.5145747065544128},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.47146254777908325},{"id":"https://openalex.org/keywords/constant-false-alarm-rate","display_name":"Constant false alarm rate","score":0.4319782257080078},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4312950372695923},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4069485068321228},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4030364751815796},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.37060147523880005},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.33101415634155273},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.3216297924518585}],"concepts":[{"id":"https://openalex.org/C101738243","wikidata":"https://www.wikidata.org/wiki/Q786435","display_name":"Autoencoder","level":3,"score":0.8710540533065796},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8077222108840942},{"id":"https://openalex.org/C48105269","wikidata":"https://www.wikidata.org/wiki/Q1141160","display_name":"Header","level":2,"score":0.6652500629425049},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6298915147781372},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.6156309247016907},{"id":"https://openalex.org/C2781045450","wikidata":"https://www.wikidata.org/wiki/Q254569","display_name":"Backdoor","level":2,"score":0.6067428588867188},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6055117845535278},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.5629774928092957},{"id":"https://openalex.org/C95922358","wikidata":"https://www.wikidata.org/wiki/Q5432725","display_name":"False positive rate","level":2,"score":0.5555169582366943},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.5145747065544128},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.47146254777908325},{"id":"https://openalex.org/C77052588","wikidata":"https://www.wikidata.org/wiki/Q644307","display_name":"Constant false alarm rate","level":2,"score":0.4319782257080078},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4312950372695923},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4069485068321228},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4030364751815796},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.37060147523880005},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.33101415634155273},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.3216297924518585},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/cybersecpods.2018.8560678","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cybersecpods.2018.8560678","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.46000000834465027,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W6908809","https://openalex.org/W1594536929","https://openalex.org/W1965334909","https://openalex.org/W2031163547","https://openalex.org/W2066664409","https://openalex.org/W2067086051","https://openalex.org/W2086437504","https://openalex.org/W2098449509","https://openalex.org/W2108601876","https://openalex.org/W2110890874","https://openalex.org/W2116065364","https://openalex.org/W2121035740","https://openalex.org/W2134857847","https://openalex.org/W2146232384","https://openalex.org/W2162275200","https://openalex.org/W2296509296","https://openalex.org/W2399941526","https://openalex.org/W2501244995","https://openalex.org/W2565788054","https://openalex.org/W4255911135","https://openalex.org/W4301808003","https://openalex.org/W6677305135","https://openalex.org/W7018722687"],"related_works":["https://openalex.org/W3093744786","https://openalex.org/W2013909972","https://openalex.org/W2280598164","https://openalex.org/W2189092700","https://openalex.org/W2993555267","https://openalex.org/W4241302526","https://openalex.org/W2925487447","https://openalex.org/W2019269853","https://openalex.org/W2158760744","https://openalex.org/W3120726910"],"abstract_inverted_index":{"Most":[0],"approaches":[1,16],"to":[2,19,38,46,56,76,95,147,181,212],"network":[3,13,70,96,134],"intrusion":[4,86,135],"detection":[5,87,229],"look":[6],"only":[7],"at":[8,224],"the":[9,67,77,100,108,127,130,145,176,199,202,205],"header":[10],"part":[11],"of":[12,26,33,69,102,104,112,129,184,195,204,215],"packets.":[14],"These":[15],"are":[17,43,72],"able":[18,45,180],"detect":[20,47,182],"high-rate":[21],"attacks,":[22,50],"such":[23,51],"as":[24,52],"Denial":[25],"Service":[27],"or":[28,60],"probing,":[29],"with":[30,189],"high":[31],"degrees":[32],"accuracy.":[34],"However,":[35],"it":[36,154],"remains":[37],"be":[39,116],"seen":[40],"whether":[41],"they":[42],"also":[44],"more":[48],"subtle":[49],"when":[53],"adversaries":[54],"try":[55],"exploit":[57],"a":[58,62,82,139,151,213],"vulnerability":[59],"plant":[61],"backdoor.":[63],"In":[64],"these":[65],"cases,":[66],"attributes":[68],"packets":[71],"usually":[73],"very":[74],"similar":[75,217],"legitimate":[78,163],"traffic":[79,166,188],"which":[80,160],"presents":[81],"limitation":[83],"for":[84,133,167],"header-only":[85],"methods.":[88],"Such":[89],"attacks":[90],"present":[91],"an":[92,190],"increasing":[93,110],"problem":[94,124],"security,":[97],"especially":[98],"given":[99],"rise":[101],"Internet":[103],"Things":[105],"(IoT)":[106],"and":[107,164,219],"rapidly":[109],"number":[111,214],"devices":[113],"that":[114,143,175],"can":[115],"exploited":[117],"through":[118],"low-intensity":[119],"attacks.":[120],"To":[121,197],"address":[122],"this":[123],"we":[125,173,207],"propose":[126],"use":[128],"Autoencoder":[131,137],"method":[132,222],"detection.":[136],"is":[138],"deep":[140],"learning":[141],"architecture":[142],"has":[144],"capability":[146],"identify":[148],"outliers":[149],"in":[150,228],"dataset.":[152],"Thus":[153],"does":[155],"not":[156],"need":[157],"labelled":[158],"datasets":[159],"contain":[161],"both":[162],"malicious":[165],"training":[168],"purposes.":[169],"Through":[170],"our":[171,210,220],"experiments,":[172],"show":[174],"proposed":[177,221],"approach":[178],"was":[179],"100%":[183],"low":[185],"rate":[186,194],"attack":[187],"average":[191],"false":[192],"positive":[193],"8.01%.":[196],"demonstrate":[198],"improvement":[200],"over":[201],"state":[203],"art":[206],"have":[208],"compared":[209],"results":[211],"other":[216],"works":[218],"gave":[223],"least":[225],"32.81%":[226],"better":[227],"rate.":[230]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":3}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}