{"id":"https://openalex.org/W2072093965","doi":"https://doi.org/10.1109/icdim.2011.6093323","title":"Applying multi-correlation for improving forecasting in cyber security","display_name":"Applying multi-correlation for improving forecasting in cyber security","publication_year":2011,"publication_date":"2011-09-01","ids":{"openalex":"https://openalex.org/W2072093965","doi":"https://doi.org/10.1109/icdim.2011.6093323","mag":"2072093965"},"language":"en","primary_location":{"id":"doi:10.1109/icdim.2011.6093323","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icdim.2011.6093323","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2011 Sixth International Conference on Digital Information Management","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067546265","display_name":"Elvis Pontes","orcid":null},"institutions":[{"id":"https://openalex.org/I17974374","display_name":"Universidade de S\u00e3o Paulo","ror":"https://ror.org/036rp1748","country_code":"BR","type":"education","lineage":["https://openalex.org/I17974374"]},{"id":"https://openalex.org/I4210099111","display_name":"Association of the Technological Integrated Systems Laboratory","ror":"https://ror.org/00wp8rt14","country_code":"BR","type":"nonprofit","lineage":["https://openalex.org/I4210099111"]}],"countries":["BR"],"is_corresponding":true,"raw_author_name":"Elvis Pontes","raw_affiliation_strings":["Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil"],"affiliations":[{"raw_affiliation_string":"Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210099111","https://openalex.org/I17974374"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072284925","display_name":"Adilson Eduardo Guelfi","orcid":"https://orcid.org/0000-0002-4636-1878"},"institutions":[{"id":"https://openalex.org/I4210142765","display_name":"Instituto de Pesquisas Tecnol\u00f3gicas","ror":"https://ror.org/041mvdf76","country_code":"BR","type":"facility","lineage":["https://openalex.org/I4210142765"]},{"id":"https://openalex.org/I17974374","display_name":"Universidade de S\u00e3o Paulo","ror":"https://ror.org/036rp1748","country_code":"BR","type":"education","lineage":["https://openalex.org/I17974374"]},{"id":"https://openalex.org/I4210099111","display_name":"Association of the Technological Integrated Systems Laboratory","ror":"https://ror.org/00wp8rt14","country_code":"BR","type":"nonprofit","lineage":["https://openalex.org/I4210099111"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Adilson E. Guelfi","raw_affiliation_strings":["Institute of Technological Research of S\u00e3o Paulo (IPT), S\u00e3o Paulo, Brazil","Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil"],"affiliations":[{"raw_affiliation_string":"Institute of Technological Research of S\u00e3o Paulo (IPT), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210142765"]},{"raw_affiliation_string":"Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210099111","https://openalex.org/I17974374"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5067761366","display_name":"S\u00e9rgio Takeo Kofuji","orcid":"https://orcid.org/0000-0002-8477-4091"},"institutions":[{"id":"https://openalex.org/I4210099111","display_name":"Association of the Technological Integrated Systems Laboratory","ror":"https://ror.org/00wp8rt14","country_code":"BR","type":"nonprofit","lineage":["https://openalex.org/I4210099111"]},{"id":"https://openalex.org/I17974374","display_name":"Universidade de S\u00e3o Paulo","ror":"https://ror.org/036rp1748","country_code":"BR","type":"education","lineage":["https://openalex.org/I17974374"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Sergio T. Kofuji","raw_affiliation_strings":["Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil"],"affiliations":[{"raw_affiliation_string":"Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210099111","https://openalex.org/I17974374"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100702838","display_name":"Anderson Silva","orcid":"https://orcid.org/0000-0001-5426-6478"},"institutions":[{"id":"https://openalex.org/I4210142765","display_name":"Instituto de Pesquisas Tecnol\u00f3gicas","ror":"https://ror.org/041mvdf76","country_code":"BR","type":"facility","lineage":["https://openalex.org/I4210142765"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Anderson A. A. Silva","raw_affiliation_strings":["Institute of Technological Research of S\u00e3o Paulo (IPT), S\u00e3o Paulo, Brazil"],"affiliations":[{"raw_affiliation_string":"Institute of Technological Research of S\u00e3o Paulo (IPT), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210142765"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5072284925","display_name":"Adilson Eduardo Guelfi","orcid":"https://orcid.org/0000-0002-4636-1878"},"institutions":[{"id":"https://openalex.org/I4210099111","display_name":"Association of the Technological Integrated Systems Laboratory","ror":"https://ror.org/00wp8rt14","country_code":"BR","type":"nonprofit","lineage":["https://openalex.org/I4210099111"]},{"id":"https://openalex.org/I4210142765","display_name":"Instituto de Pesquisas Tecnol\u00f3gicas","ror":"https://ror.org/041mvdf76","country_code":"BR","type":"facility","lineage":["https://openalex.org/I4210142765"]},{"id":"https://openalex.org/I17974374","display_name":"Universidade de S\u00e3o Paulo","ror":"https://ror.org/036rp1748","country_code":"BR","type":"education","lineage":["https://openalex.org/I17974374"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Adilson E. Guelfi","raw_affiliation_strings":["Institute of Technological Research of S\u00e3o Paulo (IPT), S\u00e3o Paulo, Brazil","Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil"],"affiliations":[{"raw_affiliation_string":"Institute of Technological Research of S\u00e3o Paulo (IPT), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210142765"]},{"raw_affiliation_string":"Laboratory of Integrated Systems of the Polytechnic, School at University of S\u00e3o Paulo (EPUSP), S\u00e3o Paulo, Brazil","institution_ids":["https://openalex.org/I4210099111","https://openalex.org/I17974374"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5067546265"],"corresponding_institution_ids":["https://openalex.org/I17974374","https://openalex.org/I4210099111"],"apc_list":null,"apc_paid":null,"fwci":1.4003,"has_fulltext":false,"cited_by_count":12,"citation_normalized_percentile":{"value":0.8242449,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":"107","issue":null,"first_page":"179","last_page":"186"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9933000206947327,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9907000064849854,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.773478627204895},{"id":"https://openalex.org/keywords/false-positive-paradox","display_name":"False positive paradox","score":0.7279412746429443},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7255358099937439},{"id":"https://openalex.org/keywords/reliability","display_name":"Reliability (semiconductor)","score":0.6349284648895264},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5458858013153076},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3643297553062439},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3043377995491028}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.773478627204895},{"id":"https://openalex.org/C64869954","wikidata":"https://www.wikidata.org/wiki/Q1859747","display_name":"False positive paradox","level":2,"score":0.7279412746429443},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7255358099937439},{"id":"https://openalex.org/C43214815","wikidata":"https://www.wikidata.org/wiki/Q7310987","display_name":"Reliability (semiconductor)","level":3,"score":0.6349284648895264},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5458858013153076},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3643297553062439},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3043377995491028},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C163258240","wikidata":"https://www.wikidata.org/wiki/Q25342","display_name":"Power (physics)","level":2,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icdim.2011.6093323","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icdim.2011.6093323","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2011 Sixth International Conference on Digital Information Management","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":47,"referenced_works":["https://openalex.org/W47175211","https://openalex.org/W123720765","https://openalex.org/W163339721","https://openalex.org/W1488676795","https://openalex.org/W1497828419","https://openalex.org/W1569319680","https://openalex.org/W1570086078","https://openalex.org/W1594026167","https://openalex.org/W1594277290","https://openalex.org/W1964793108","https://openalex.org/W1996482171","https://openalex.org/W2001608959","https://openalex.org/W2033274527","https://openalex.org/W2040410517","https://openalex.org/W2044036264","https://openalex.org/W2046894403","https://openalex.org/W2054802564","https://openalex.org/W2086405802","https://openalex.org/W2102503993","https://openalex.org/W2107035663","https://openalex.org/W2108867737","https://openalex.org/W2110437951","https://openalex.org/W2125333248","https://openalex.org/W2127113826","https://openalex.org/W2129353829","https://openalex.org/W2138390375","https://openalex.org/W2141200504","https://openalex.org/W2142589838","https://openalex.org/W2142876969","https://openalex.org/W2144771675","https://openalex.org/W2147042673","https://openalex.org/W2149663582","https://openalex.org/W2153807554","https://openalex.org/W2166431113","https://openalex.org/W2168373333","https://openalex.org/W2170701348","https://openalex.org/W2199139755","https://openalex.org/W2678934292","https://openalex.org/W2798340094","https://openalex.org/W3091405665","https://openalex.org/W4210698001","https://openalex.org/W4234982023","https://openalex.org/W4253481229","https://openalex.org/W6606601333","https://openalex.org/W6675399861","https://openalex.org/W6684635441","https://openalex.org/W6684762730"],"related_works":["https://openalex.org/W1557094818","https://openalex.org/W2183246718","https://openalex.org/W2099261052","https://openalex.org/W3209204065","https://openalex.org/W2105707930","https://openalex.org/W1755711892","https://openalex.org/W2364419519","https://openalex.org/W2360767377","https://openalex.org/W2017948608","https://openalex.org/W2360951146"],"abstract_inverted_index":{"Currently,":[0],"defense":[1],"of":[2,13,31,54,64,70,78,95,99,116,130,166,176,185],"the":[3,29,43,55,61,76,88,97,112,145,157,164,167,174,177,182,186],"cyber":[4],"space":[5],"is":[6,28,92,119],"mostly":[7],"based":[8],"on":[9,153,161],"detection":[10],"and/or":[11],"blocking":[12],"attacks":[14],"(Intrusion":[15],"Detection":[16],"and":[17,148,181],"Prevention":[18],"System":[19,39,134],"-":[20],"IDPS).":[21],"But,":[22],"a":[23,35,93,122],"significant":[24],"improvement":[25,175,184],"for":[26,45,136],"IDPS":[27,143],"employment":[30,129],"forecasting":[32,151],"techniques":[33,152],"in":[34],"Distributed":[36],"Intrusion":[37],"Forecasting":[38],"(DIFS),":[40],"which":[41,126],"enables":[42],"capability":[44],"predicting":[46],"attacks.":[47],"Notwithstanding,":[48],"during":[49],"our":[50],"earlier":[51],"works,":[52],"one":[53],"issues":[56],"we":[57],"have":[58],"faced":[59],"was":[60],"huge":[62],"amount":[63],"alerts":[65,79,140],"produced":[66],"by":[67,111,156,163],"IDPS,":[68],"several":[69],"them":[71],"were":[72],"false":[73,100],"positives.":[74],"Checking":[75],"veracity":[77],"through":[80],"other":[81],"sources":[82],"(multi-correlation),":[83],"e.g.":[84],"logs":[85],"taken":[86],"from":[87,141],"operating":[89],"system":[90,125,170],"(OS),":[91],"way":[94],"reducing":[96],"number":[98],"alerts,":[101],"and,":[102],"therefore,":[103],"improving":[104],"data":[105,154],"(historical":[106],"series)":[107],"to":[108,120],"be":[109],"used":[110],"DIFS.":[113],"The":[114],"goal":[115],"this":[117],"paper":[118],"propose":[121],"two":[123,168],"stage":[124,169],"allows:":[127],"(1)":[128],"an":[131,142],"Event":[132],"Analysis":[133],"(EAS)":[135],"making":[137],"multi-correlation":[138],"between":[139],"with":[144],"OS'":[146],"logs;":[147],"(2)":[149],"applying":[150],"generated":[155],"EAS.":[158],"Tests":[159],"applied":[160],"laboratory":[162],"use":[165],"allow":[171],"concluding":[172],"about":[173],"historical":[178],"series":[179],"reliability,":[180],"consequent":[183],"forecasts":[187],"accuracy.":[188]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":1},{"year":2014,"cited_by_count":2},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}