{"id":"https://openalex.org/W3014059767","doi":"https://doi.org/10.1109/icnc47757.2020.9049740","title":"On the Effectiveness of Intrusion Response Systems against Persistent Threats","display_name":"On the Effectiveness of Intrusion Response Systems against Persistent Threats","publication_year":2020,"publication_date":"2020-02-01","ids":{"openalex":"https://openalex.org/W3014059767","doi":"https://doi.org/10.1109/icnc47757.2020.9049740","mag":"3014059767"},"language":"en","primary_location":{"id":"doi:10.1109/icnc47757.2020.9049740","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icnc47757.2020.9049740","pdf_url":null,"source":{"id":"https://openalex.org/S4306498707","display_name":"2020 International Conference on Computing, Networking and Communications (ICNC)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 International Conference on Computing, Networking and Communications (ICNC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071845094","display_name":"Sharif Ullah","orcid":"https://orcid.org/0000-0001-8286-3122"},"institutions":[{"id":"https://openalex.org/I81365321","display_name":"Old Dominion University","ror":"https://ror.org/04zjtrb98","country_code":"US","type":"education","lineage":["https://openalex.org/I81365321"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sharif Ullah","raw_affiliation_strings":["Old Dominion University, Norfolk, VA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Old Dominion University, Norfolk, VA, USA","institution_ids":["https://openalex.org/I81365321"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012483986","display_name":"Sachin Shelly","orcid":null},"institutions":[{"id":"https://openalex.org/I81365321","display_name":"Old Dominion University","ror":"https://ror.org/04zjtrb98","country_code":"US","type":"education","lineage":["https://openalex.org/I81365321"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sachin Shelly","raw_affiliation_strings":["Old Dominion University, Norfolk, VA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Old Dominion University, Norfolk, VA, USA","institution_ids":["https://openalex.org/I81365321"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006296461","display_name":"Amin Hassanzadeh","orcid":null},"institutions":[{"id":"https://openalex.org/I4210086895","display_name":"Community Connections","ror":"https://ror.org/00109m582","country_code":"US","type":"nonprofit","lineage":["https://openalex.org/I4210086895"]},{"id":"https://openalex.org/I4210149442","display_name":"Fusion Academy","ror":"https://ror.org/05rwjyj14","country_code":"US","type":"education","lineage":["https://openalex.org/I4210149442"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Amin Hassanzadeh","raw_affiliation_strings":["Accenlure Cyber Lab, Cyber Fusion Cenler, Arlinglon, VA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Accenlure Cyber Lab, Cyber Fusion Cenler, Arlinglon, VA, USA","institution_ids":["https://openalex.org/I4210086895","https://openalex.org/I4210149442"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061440857","display_name":"Anup Nayak","orcid":null},"institutions":[{"id":"https://openalex.org/I4210086895","display_name":"Community Connections","ror":"https://ror.org/00109m582","country_code":"US","type":"nonprofit","lineage":["https://openalex.org/I4210086895"]},{"id":"https://openalex.org/I4210149442","display_name":"Fusion Academy","ror":"https://ror.org/05rwjyj14","country_code":"US","type":"education","lineage":["https://openalex.org/I4210149442"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Anup Nayak","raw_affiliation_strings":["Accenlure Cyber Lab, Cyber Fusion Cenler, Arlinglon, VA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Accenlure Cyber Lab, Cyber Fusion Cenler, Arlinglon, VA, USA","institution_ids":["https://openalex.org/I4210086895","https://openalex.org/I4210149442"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5067871758","display_name":"Kamrul Hasan","orcid":"https://orcid.org/0000-0002-9703-5052"},"institutions":[{"id":"https://openalex.org/I81365321","display_name":"Old Dominion University","ror":"https://ror.org/04zjtrb98","country_code":"US","type":"education","lineage":["https://openalex.org/I81365321"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Kamrul Hasan","raw_affiliation_strings":["Old Dominion University, Norfolk, VA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Old Dominion University, Norfolk, VA, USA","institution_ids":["https://openalex.org/I81365321"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.9904,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.75903006,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"415","last_page":"421"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7699487805366516},{"id":"https://openalex.org/keywords/situation-awareness","display_name":"Situation awareness","score":0.6931273937225342},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.6929823160171509},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6578628420829773},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6563242673873901},{"id":"https://openalex.org/keywords/intrusion-prevention-system","display_name":"Intrusion prevention system","score":0.552483081817627},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.5005583763122559},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.42173904180526733},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.4212004840373993},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.41717109084129333},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.14661553502082825},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.11148032546043396},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.08835837244987488}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7699487805366516},{"id":"https://openalex.org/C145804949","wikidata":"https://www.wikidata.org/wiki/Q478123","display_name":"Situation awareness","level":2,"score":0.6931273937225342},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.6929823160171509},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6578628420829773},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6563242673873901},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.552483081817627},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.5005583763122559},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.42173904180526733},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.4212004840373993},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.41717109084129333},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.14661553502082825},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.11148032546043396},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.08835837244987488},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icnc47757.2020.9049740","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icnc47757.2020.9049740","pdf_url":null,"source":{"id":"https://openalex.org/S4306498707","display_name":"2020 International Conference on Computing, Networking and Communications (ICNC)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 International Conference on Computing, Networking and Communications (ICNC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Sustainable cities and communities","score":0.5400000214576721,"id":"https://metadata.un.org/sdg/11"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":11,"referenced_works":["https://openalex.org/W1550952730","https://openalex.org/W2110908300","https://openalex.org/W2120839938","https://openalex.org/W2513580371","https://openalex.org/W2520200210","https://openalex.org/W2591278480","https://openalex.org/W2789825598","https://openalex.org/W2792721951","https://openalex.org/W2886157449","https://openalex.org/W2892608421","https://openalex.org/W6753827980"],"related_works":["https://openalex.org/W2040442727","https://openalex.org/W2083687613","https://openalex.org/W2381954448","https://openalex.org/W2738227997","https://openalex.org/W4387444477","https://openalex.org/W2368512134","https://openalex.org/W4390321040","https://openalex.org/W2393409647","https://openalex.org/W2387383822","https://openalex.org/W2133389611"],"abstract_inverted_index":{"Persistent":[0],"threats":[1],"are":[2],"the":[3,29,45,57,85,103,110,126,165,174],"most":[4],"sophisticated":[5],"type":[6],"of":[7,84,116,168],"cyber":[8],"attacks":[9],"that":[10],"involves":[11],"multi-step":[12],"attack":[13,86,122,131],"sequences.":[14],"There":[15],"is":[16,119,137],"a":[17,76,154],"need":[18],"to":[19,27,66,107,120,139],"develop":[20],"timely,":[21],"efficient":[22],"and":[23,88,97,128,133,144],"appropriate":[24],"intrusion":[25,40],"response":[26,41,77],"mitigate":[28],"risk":[30],"from":[31,95],"persistent":[32],"threats.":[33],"In":[34],"this":[35],"paper,":[36],"we":[37],"model":[38,61],"an":[39,48],"system":[42],"by":[43,124],"considering":[44],"diverse":[46],"strategy":[47,68],"attacker":[49],"could":[50],"employ":[51],"in":[52,69,130,173],"his":[53],"lateral":[54],"movement":[55],"within":[56],"target":[58],"environment.":[59],"Our":[60],"investigates":[62],"attackers'":[63],"opportunity":[64],"corresponding":[65],"each":[67],"their":[70,89,100],"potential":[71],"penetration":[72],"path.":[73],"We":[74],"design":[75],"mechanism":[78],"by,":[79],"first,":[80],"analyzing":[81],"prior":[82],"steps":[83],"sequence":[87],"impacts,":[90],"next,":[91],"extracting":[92],"attacker's":[93],"characteristics":[94],"them,":[96],"finally,":[98],"incorporating":[99],"influence":[101],"on":[102,157],"next":[104],"adversarial":[105],"options,":[106],"efficiently":[108],"restricts":[109],"follow":[111],"up":[112],"opportunities.":[113],"The":[114,147,161],"objective":[115],"our":[117],"method":[118],"deter":[121],"occurrence":[123],"increasing":[125],"cost":[127],"uncertainty":[129],"planning":[132],"execution.":[134],"Simultaneously,":[135],"it":[136],"designed":[138],"ensure":[140],"real-time":[141],"situational":[142],"awareness":[143],"operational":[145],"efficiency.":[146],"proposed":[148],"approach":[149],"has":[150],"been":[151],"implemented":[152],"with":[153],"case":[155],"study":[156],"Industrial":[158],"Control":[159],"Systems.":[160],"empirical":[162],"results":[163],"show":[164],"significant":[166],"improvement":[167],"impeding":[169],"active":[170],"threat":[171],"propagation":[172],"network.":[175]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}
