{"id":"https://openalex.org/W2109785100","doi":"https://doi.org/10.1109/icitst.2009.5402617","title":"Critical analyses of alerts swamping and intrusion redundancy","display_name":"Critical analyses of alerts swamping and intrusion redundancy","publication_year":2009,"publication_date":"2009-11-01","ids":{"openalex":"https://openalex.org/W2109785100","doi":"https://doi.org/10.1109/icitst.2009.5402617","mag":"2109785100"},"language":"en","primary_location":{"id":"doi:10.1109/icitst.2009.5402617","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icitst.2009.5402617","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5032880239","display_name":"Joshua Ojo Nehinbe","orcid":"https://orcid.org/0000-0002-0098-7437"},"institutions":[{"id":"https://openalex.org/I110002522","display_name":"University of Essex","ror":"https://ror.org/02nkf1q06","country_code":"GB","type":"education","lineage":["https://openalex.org/I110002522"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"J.O. Nehinbe","raw_affiliation_strings":["University of Essex, Colchester, UK","(University of Essex, Colchester, UK"],"affiliations":[{"raw_affiliation_string":"University of Essex, Colchester, UK","institution_ids":["https://openalex.org/I110002522"]},{"raw_affiliation_string":"(University of Essex, Colchester, UK","institution_ids":["https://openalex.org/I110002522"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5032880239"],"corresponding_institution_ids":["https://openalex.org/I110002522"],"apc_list":null,"apc_paid":null,"fwci":1.3714,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.82738668,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/redundancy","display_name":"Redundancy (engineering)","score":0.8643378019332886},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7753809690475464},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7743210196495056},{"id":"https://openalex.org/keywords/false-positive-paradox","display_name":"False positive paradox","score":0.6185011863708496},{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.6181498765945435},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.575308620929718},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5423626899719238},{"id":"https://openalex.org/keywords/intrusion-tolerance","display_name":"Intrusion tolerance","score":0.48508062958717346},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4647162854671478},{"id":"https://openalex.org/keywords/data-redundancy","display_name":"Data redundancy","score":0.4423454701900482},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3080904483795166},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.10046759247779846},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.07525953650474548}],"concepts":[{"id":"https://openalex.org/C152124472","wikidata":"https://www.wikidata.org/wiki/Q1204361","display_name":"Redundancy (engineering)","level":2,"score":0.8643378019332886},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7753809690475464},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7743210196495056},{"id":"https://openalex.org/C64869954","wikidata":"https://www.wikidata.org/wiki/Q1859747","display_name":"False positive paradox","level":2,"score":0.6185011863708496},{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.6181498765945435},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.575308620929718},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5423626899719238},{"id":"https://openalex.org/C196903269","wikidata":"https://www.wikidata.org/wiki/Q6059063","display_name":"Intrusion tolerance","level":3,"score":0.48508062958717346},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4647162854671478},{"id":"https://openalex.org/C7545210","wikidata":"https://www.wikidata.org/wiki/Q838123","display_name":"Data redundancy","level":2,"score":0.4423454701900482},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3080904483795166},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.10046759247779846},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.07525953650474548},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icitst.2009.5402617","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icitst.2009.5402617","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.550000011920929,"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":16,"referenced_works":["https://openalex.org/W1278625838","https://openalex.org/W1495304983","https://openalex.org/W1587595544","https://openalex.org/W1587979610","https://openalex.org/W1684452600","https://openalex.org/W1837847590","https://openalex.org/W2080668808","https://openalex.org/W2125737959","https://openalex.org/W2140165368","https://openalex.org/W2141200504","https://openalex.org/W2144378013","https://openalex.org/W2152449272","https://openalex.org/W2158288237","https://openalex.org/W2163277533","https://openalex.org/W2184034572","https://openalex.org/W2678934292"],"related_works":["https://openalex.org/W2352562479","https://openalex.org/W2389356976","https://openalex.org/W2356891656","https://openalex.org/W34565110","https://openalex.org/W2347413713","https://openalex.org/W2133389611","https://openalex.org/W136910588","https://openalex.org/W2353050426","https://openalex.org/W1539957869","https://openalex.org/W2487262093"],"abstract_inverted_index":{"Alerts":[0],"swamping":[1,63],"and":[2,26,31,64,66,85,93],"intrusion":[3,10,24,35],"redundancy":[4,65],"are":[5,37,44],"two":[6],"critical":[7],"problems":[8,17,92,101],"of":[9,18,34,61,99],"detection":[11],"technology":[12],"that":[13,79,110],"often":[14],"worsen":[15],"the":[16,29,41,97,113],"classification,":[19],"data":[20],"reduction,":[21],"false":[22],"positives,":[23],"correlation":[25],"reporting.":[27],"Consequently,":[28],"validity":[30],"continuous":[32],"usage":[33],"detectors":[36],"constantly":[38],"threatened":[39],"because":[40],"system":[42,114],"administrators":[43,115],"always":[45],"helpless":[46],"while":[47],"trying":[48],"to":[49,116],"thwart":[50,117],"attacks":[51],"on":[52,82],"computer":[53],"infrastructure.":[54],"Hence,":[55],"this":[56],"paper":[57],"presents":[58],"critically":[59],"investigations":[60],"alert":[62],"how":[67],"we":[68,80],"have":[69,88,94],"lessened":[70],"them":[71],"using":[72],"a":[73,108],"simple":[74],"clustering":[75],"method.":[76],"Extensive":[77],"evaluations":[78],"performed":[81],"several":[83],"synthetic":[84],"realistic":[86],"datasets":[87],"significantly":[89],"reduced":[90],"these":[91,100],"equally":[95],"demonstrated":[96],"variability":[98],"in":[102],"each":[103],"dataset.":[104],"Also":[105],"substantiated":[106],"was":[107],"method":[109],"could":[111],"help":[112],"attacks.":[118]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}