{"id":"https://openalex.org/W3106970112","doi":"https://doi.org/10.1109/idsta50958.2020.9264143","title":"Identification of Botnet Activity in IoT Network Traffic Using Machine Learning","display_name":"Identification of Botnet Activity in IoT Network Traffic Using Machine Learning","publication_year":2020,"publication_date":"2020-10-19","ids":{"openalex":"https://openalex.org/W3106970112","doi":"https://doi.org/10.1109/idsta50958.2020.9264143","mag":"3106970112"},"language":"en","primary_location":{"id":"doi:10.1109/idsta50958.2020.9264143","is_oa":false,"landing_page_url":"https://doi.org/10.1109/idsta50958.2020.9264143","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 International Conference on Intelligent Data Science Technologies and Applications (IDSTA)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5029466051","display_name":"Mandira Hegde","orcid":null},"institutions":[{"id":"https://openalex.org/I145311948","display_name":"Johns Hopkins University","ror":"https://ror.org/00za53h95","country_code":"US","type":"education","lineage":["https://openalex.org/I145311948"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Mandira Hegde","raw_affiliation_strings":["The Johns Hopkins University, Whiting School of Engineering, Baltimore, MD"],"affiliations":[{"raw_affiliation_string":"The Johns Hopkins University, Whiting School of Engineering, Baltimore, MD","institution_ids":["https://openalex.org/I145311948"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5070488868","display_name":"Gilles Kepnang","orcid":null},"institutions":[{"id":"https://openalex.org/I145311948","display_name":"Johns Hopkins University","ror":"https://ror.org/00za53h95","country_code":"US","type":"education","lineage":["https://openalex.org/I145311948"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Gilles Kepnang","raw_affiliation_strings":["The Johns Hopkins University, Whiting School of Engineering, Baltimore, MD"],"affiliations":[{"raw_affiliation_string":"The Johns Hopkins University, Whiting School of Engineering, Baltimore, MD","institution_ids":["https://openalex.org/I145311948"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078671918","display_name":"Mashail Al Mazroei","orcid":null},"institutions":[{"id":"https://openalex.org/I145311948","display_name":"Johns Hopkins University","ror":"https://ror.org/00za53h95","country_code":"US","type":"education","lineage":["https://openalex.org/I145311948"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mashail Al Mazroei","raw_affiliation_strings":["The Johns Hopkins University, Whiting School of Engineering, Baltimore, MD"],"affiliations":[{"raw_affiliation_string":"The Johns Hopkins University, Whiting School of Engineering, Baltimore, MD","institution_ids":["https://openalex.org/I145311948"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005855267","display_name":"Jeffrey S. Chavis","orcid":null},"institutions":[{"id":"https://openalex.org/I2802946424","display_name":"Johns Hopkins University Applied Physics Laboratory","ror":"https://ror.org/029pp9z10","country_code":"US","type":"facility","lineage":["https://openalex.org/I145311948","https://openalex.org/I2802946424"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jeffrey S. Chavis","raw_affiliation_strings":["The Johns Hopkins University Applied Physics Laboratory, Asymmetric Operations Sector, Laurel, MD"],"affiliations":[{"raw_affiliation_string":"The Johns Hopkins University Applied Physics Laboratory, Asymmetric Operations Sector, Laurel, MD","institution_ids":["https://openalex.org/I2802946424"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5035321347","display_name":"Lanier Watkins","orcid":"https://orcid.org/0000-0002-3322-1833"},"institutions":[{"id":"https://openalex.org/I2802946424","display_name":"Johns Hopkins University Applied Physics Laboratory","ror":"https://ror.org/029pp9z10","country_code":"US","type":"facility","lineage":["https://openalex.org/I145311948","https://openalex.org/I2802946424"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Lanier Watkins","raw_affiliation_strings":["The Johns Hopkins University Applied Physics Laboratory, Asymmetric Operations Sector, Laurel, MD"],"affiliations":[{"raw_affiliation_string":"The Johns Hopkins University Applied Physics Laboratory, Asymmetric Operations Sector, Laurel, MD","institution_ids":["https://openalex.org/I2802946424"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5029466051"],"corresponding_institution_ids":["https://openalex.org/I145311948"],"apc_list":null,"apc_paid":null,"fwci":3.0836,"has_fulltext":false,"cited_by_count":29,"citation_normalized_percentile":{"value":0.92059149,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.9261962175369263},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8087990283966064},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.6852184534072876},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.655536949634552},{"id":"https://openalex.org/keywords/classifier","display_name":"Classifier (UML)","score":0.6346370577812195},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6143395304679871},{"id":"https://openalex.org/keywords/false-alarm","display_name":"False alarm","score":0.5872345566749573},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.5835813879966736},{"id":"https://openalex.org/keywords/alarm","display_name":"ALARM","score":0.5643404722213745},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.5283111929893494},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.48328450322151184},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4447602331638336},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.41406264901161194},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.41354700922966003},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.32469066977500916},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.10209807753562927},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.08199635148048401}],"concepts":[{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.9261962175369263},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8087990283966064},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.6852184534072876},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.655536949634552},{"id":"https://openalex.org/C95623464","wikidata":"https://www.wikidata.org/wiki/Q1096149","display_name":"Classifier (UML)","level":2,"score":0.6346370577812195},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6143395304679871},{"id":"https://openalex.org/C2776836416","wikidata":"https://www.wikidata.org/wiki/Q1364844","display_name":"False alarm","level":2,"score":0.5872345566749573},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.5835813879966736},{"id":"https://openalex.org/C2779119184","wikidata":"https://www.wikidata.org/wiki/Q294350","display_name":"ALARM","level":2,"score":0.5643404722213745},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.5283111929893494},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.48328450322151184},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4447602331638336},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.41406264901161194},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.41354700922966003},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.32469066977500916},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.10209807753562927},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.08199635148048401},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/idsta50958.2020.9264143","is_oa":false,"landing_page_url":"https://doi.org/10.1109/idsta50958.2020.9264143","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 International Conference on Intelligent Data Science Technologies and Applications (IDSTA)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":7,"referenced_works":["https://openalex.org/W2154874878","https://openalex.org/W2292781412","https://openalex.org/W2546296060","https://openalex.org/W2774161712","https://openalex.org/W2907467192","https://openalex.org/W2942910248","https://openalex.org/W3000094279"],"related_works":["https://openalex.org/W4387497383","https://openalex.org/W3183948672","https://openalex.org/W3173606202","https://openalex.org/W3110381201","https://openalex.org/W2948807893","https://openalex.org/W2778153218","https://openalex.org/W2758277628","https://openalex.org/W1531601525","https://openalex.org/W3121346907","https://openalex.org/W4379535633"],"abstract_inverted_index":{"Today":[0],"our":[1,22,44,81],"world":[2],"benefits":[3],"from":[4,110,126],"Internet":[5,34],"of":[6,26,52,98,146,151,163,168,178],"Things":[7],"(IoT)":[8],"technology;":[9],"however,":[10],"new":[11],"security":[12],"problems":[13],"arise":[14],"when":[15],"these":[16,27,179],"IoT":[17,28,56,116,183],"devices":[18,29],"are":[19],"introduced":[20],"into":[21],"homes.":[23],"Because":[24],"many":[25],"have":[30,37,135],"access":[31],"to":[32,39,49],"the":[33,53,104,176],"and":[35,58,62,77,148,165,188],"they":[36,42],"little":[38],"no":[40],"security,":[41],"make":[43],"smart":[45],"homes":[46],"highly":[47],"vulnerable":[48],"compromise.":[50],"Some":[51],"threats":[54],"include":[55,158],"botnets":[57],"generic":[59],"confidentiality,":[60],"integrity,":[61],"availability":[63],"(CIA)":[64],"attacks.":[65],"Our":[66,133],"research":[67],"explores":[68],"botnet":[69],"detection":[70],"by":[71],"experimenting":[72],"with":[73,95],"supervised":[74],"machine":[75],"learning":[76],"deep-learning":[78],"classifiers.":[79],"Further,":[80],"approach":[82],"assesses":[83],"classifier":[84],"performance":[85,156,177],"on":[86],"unbalanced":[87],"datasets":[88,185],"that":[89,103],"contain":[90],"benign":[91,111,127],"data,":[92],"mixed":[93],"in":[94,129,139],"small":[96,115],"amounts":[97],"malicious":[99,108,124],"data.":[100],"We":[101],"demonstrate":[102],"classifiers":[105,120,180],"can":[106,121],"separate":[107,123],"activity":[109,112,125,128],"within":[113],"a":[114],"network":[117],"dataset.":[118],"The":[119,154],"also":[122,173],"increasingly":[130],"larger":[131,187],"datasets.":[132],"experiments":[134],"demonstrated":[136],"incremental":[137],"improvement":[138],"results":[140,157],"for":[141],"(1)":[142],"accuracy,":[143,160],"(2)":[144],"probability":[145,150,162,167],"detection,":[147,164],"(3)":[149],"false":[152,169],"alarm.":[153,170],"best":[155],"99.9%":[159],"99.8%":[161],"0%":[166],"This":[171],"paper":[172],"demonstrates":[174],"how":[175],"increases,":[181],"as":[182],"training":[184],"become":[186],"larger.":[189]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":5}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}