{"id":"https://openalex.org/W2782756972","doi":"https://doi.org/10.1109/icumt.2017.8255194","title":"Methodology for correlations discovery in security logs","display_name":"Methodology for correlations discovery in security logs","publication_year":2017,"publication_date":"2017-11-01","ids":{"openalex":"https://openalex.org/W2782756972","doi":"https://doi.org/10.1109/icumt.2017.8255194","mag":"2782756972"},"language":"en","primary_location":{"id":"doi:10.1109/icumt.2017.8255194","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icumt.2017.8255194","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 9th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5000738023","display_name":"Zden\u011bk Martin\u00e1sek","orcid":"https://orcid.org/0000-0002-6504-5619"},"institutions":[{"id":"https://openalex.org/I60587646","display_name":"Brno University of Technology","ror":"https://ror.org/03613d656","country_code":"CZ","type":"education","lineage":["https://openalex.org/I60587646"]}],"countries":["CZ"],"is_corresponding":true,"raw_author_name":"Zdenek Martinasek","raw_affiliation_strings":["Department of Telecommunications, Brno University of Technology, Brno, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Telecommunications, Brno University of Technology, Brno, Czech Republic","institution_ids":["https://openalex.org/I60587646"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063517624","display_name":"Petr Bla\u017eek","orcid":"https://orcid.org/0000-0001-7699-1531"},"institutions":[{"id":"https://openalex.org/I60587646","display_name":"Brno University of Technology","ror":"https://ror.org/03613d656","country_code":"CZ","type":"education","lineage":["https://openalex.org/I60587646"]}],"countries":["CZ"],"is_corresponding":false,"raw_author_name":"Petr Blazek","raw_affiliation_strings":["Department of Telecommunications, Brno University of Technology, Brno, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Telecommunications, Brno University of Technology, Brno, Czech Republic","institution_ids":["https://openalex.org/I60587646"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062099189","display_name":"Pavel Silhavy","orcid":null},"institutions":[{"id":"https://openalex.org/I60587646","display_name":"Brno University of Technology","ror":"https://ror.org/03613d656","country_code":"CZ","type":"education","lineage":["https://openalex.org/I60587646"]}],"countries":["CZ"],"is_corresponding":false,"raw_author_name":"Pavel Silhavy","raw_affiliation_strings":["Department of Telecommunications, Brno University of Technology, Brno, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Telecommunications, Brno University of Technology, Brno, Czech Republic","institution_ids":["https://openalex.org/I60587646"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5103121616","display_name":"David Sm\u00e9kal","orcid":"https://orcid.org/0000-0002-1996-5334"},"institutions":[{"id":"https://openalex.org/I60587646","display_name":"Brno University of Technology","ror":"https://ror.org/03613d656","country_code":"CZ","type":"education","lineage":["https://openalex.org/I60587646"]}],"countries":["CZ"],"is_corresponding":false,"raw_author_name":"David Smekal","raw_affiliation_strings":["Department of Telecommunications, Brno University of Technology, Brno, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Telecommunications, Brno University of Technology, Brno, Czech Republic","institution_ids":["https://openalex.org/I60587646"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5000738023"],"corresponding_institution_ids":["https://openalex.org/I60587646"],"apc_list":null,"apc_paid":null,"fwci":0.2072,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.59793879,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"294","last_page":"298"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10651","display_name":"IPv6, Mobility, Handover, Networks, Security","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12326","display_name":"Network Packet Processing and Optimization","score":0.9973999857902527,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7392599582672119},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6799812912940979},{"id":"https://openalex.org/keywords/nist","display_name":"NIST","score":0.6309025883674622},{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.6174038052558899},{"id":"https://openalex.org/keywords/ipsec","display_name":"IPsec","score":0.5842927098274231},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.5067382454872131},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.5019779205322266},{"id":"https://openalex.org/keywords/order","display_name":"Order (exchange)","score":0.4668097496032715},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.45950621366500854},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.4550929069519043},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.4317072629928589},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.4232005476951599},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.3840608596801758},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.16929802298545837},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.164989173412323},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.14303052425384521}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7392599582672119},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6799812912940979},{"id":"https://openalex.org/C111219384","wikidata":"https://www.wikidata.org/wiki/Q6954384","display_name":"NIST","level":2,"score":0.6309025883674622},{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.6174038052558899},{"id":"https://openalex.org/C67396069","wikidata":"https://www.wikidata.org/wiki/Q210214","display_name":"IPsec","level":3,"score":0.5842927098274231},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.5067382454872131},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.5019779205322266},{"id":"https://openalex.org/C182306322","wikidata":"https://www.wikidata.org/wiki/Q1779371","display_name":"Order (exchange)","level":2,"score":0.4668097496032715},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.45950621366500854},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.4550929069519043},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.4317072629928589},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.4232005476951599},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.3840608596801758},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.16929802298545837},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.164989173412323},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.14303052425384521},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C204321447","wikidata":"https://www.wikidata.org/wiki/Q30642","display_name":"Natural language processing","level":1,"score":0.0},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icumt.2017.8255194","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icumt.2017.8255194","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 9th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Partnerships for the goals","id":"https://metadata.un.org/sdg/17","score":0.5}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":13,"referenced_works":["https://openalex.org/W304131070","https://openalex.org/W597074816","https://openalex.org/W1923289336","https://openalex.org/W1997358438","https://openalex.org/W2140471436","https://openalex.org/W2253199766","https://openalex.org/W2254691854","https://openalex.org/W2269223136","https://openalex.org/W2522367401","https://openalex.org/W2561521908","https://openalex.org/W4214831726","https://openalex.org/W4232271737","https://openalex.org/W4290473017"],"related_works":["https://openalex.org/W2345270111","https://openalex.org/W2372674753","https://openalex.org/W3195904671","https://openalex.org/W293735344","https://openalex.org/W2745157681","https://openalex.org/W2362217043","https://openalex.org/W2033357182","https://openalex.org/W2030343105","https://openalex.org/W2165898552","https://openalex.org/W2560277441"],"abstract_inverted_index":{"Record":[0],"in":[1,45,56,59,66,111,179,187],"security":[2,33,67,85,117],"log":[3,34],"should":[4],"serve":[5],"primarily":[6],"to":[7,47,92,113,204],"identify":[8,114],"the":[9,13,29,49,93,115,151,154,157,161,168,172,180,193,198],"events":[10,61,97],"that":[11,53,62,75,107,197],"indicate":[12],"potentially":[14],"attacks":[15],"or":[16],"dangerous":[17],"configurations":[18],"posing":[19],"a":[20],"high":[21],"risk":[22,125],"of":[23,32,95,132,153,192,210],"asset":[24],"loss.":[25],"In":[26,99],"other":[27],"words,":[28],"primary":[30],"role":[31],"analysis":[35],"is":[36,71,121,201],"detecting":[37],"an":[38,42],"incident":[39],"and":[40,83,134,136],"generating":[41],"adequate":[43],"response":[44],"order":[46,112],"mitigate":[48],"losses.":[50],"Enormous":[51],"problem":[52,82],"often":[54,88],"occurs":[55],"practice":[57],"lies":[58],"determining":[60],"must":[63],"be":[64,109,205],"recorded":[65],"log.":[68],"Moreover,":[69],"there":[70],"no":[72],"general":[73],"methodology":[74,106,155,199],"would":[76],"help":[77],"us":[78],"with":[79],"this":[80,100,184],"crucial":[81],"therefore,":[84],"systems":[86],"are":[87],"incorrectly":[89],"implemented":[90],"due":[91],"lack":[94],"correct":[96],"specification.":[98],"article,":[101],"we":[102],"propose":[103],"our":[104],"own":[105],"can":[108],"utilized":[110,206],"required":[116],"events.":[118],"Our":[119],"approach":[120],"based":[122],"on":[123,160,189,207],"theoretical":[124,190],"assessments":[126],"provided":[127,140],"by":[128,141,156],"NIST":[129],"(National":[130],"Institute":[131],"Standards":[133],"Technology)":[135],"more":[137],"practical":[138,158],"information":[139],"OWASP":[142],"(Open":[143],"Web":[144],"Application":[145],"Security":[146,177],"Project).":[147],"We":[148,195],"have":[149],"proven":[150],"functionality":[152],"application":[159],"VPN":[162],"(Virtual":[163],"Private":[164],"Network)":[165],"connection":[166],"utilizing":[167],"IPsec":[169],"protocol":[170],"during":[171],"research":[173],"conducted":[174],"for":[175],"National":[176],"Authority":[178],"Czech":[181],"Republic.":[182],"However,":[183],"article":[185],"focuses":[186],"particular":[188],"principle":[191],"method.":[194],"believe":[196],"proposed":[200],"sufficiently":[202],"universal":[203],"various":[208],"types":[209],"systems.":[211]},"counts_by_year":[{"year":2019,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}