{"id":"https://openalex.org/W2124905990","doi":"https://doi.org/10.1109/ijcnn.2008.4633994","title":"Modeling network attacks for scenario construction","display_name":"Modeling network attacks for scenario construction","publication_year":2008,"publication_date":"2008-06-01","ids":{"openalex":"https://openalex.org/W2124905990","doi":"https://doi.org/10.1109/ijcnn.2008.4633994","mag":"2124905990"},"language":"en","primary_location":{"id":"doi:10.1109/ijcnn.2008.4633994","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn.2008.4633994","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2008 IEEE International Joint Conference on Neural Networks (IEEE World Congress on Computational Intelligence)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5056763353","display_name":"Safaa O. Al\u2010Mamory","orcid":"https://orcid.org/0000-0003-3144-8222"},"institutions":[{"id":"https://openalex.org/I204983213","display_name":"Harbin Institute of Technology","ror":"https://ror.org/01yqg2h08","country_code":"CN","type":"education","lineage":["https://openalex.org/I204983213"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Safaa O. Al-Mamory","raw_affiliation_strings":["Harbin Institute of Technology, Harbin, China"],"affiliations":[{"raw_affiliation_string":"Harbin Institute of Technology, Harbin, China","institution_ids":["https://openalex.org/I204983213"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100417312","display_name":"Hongli Zhang","orcid":"https://orcid.org/0000-0002-8167-7106"},"institutions":[{"id":"https://openalex.org/I204983213","display_name":"Harbin Institute of Technology","ror":"https://ror.org/01yqg2h08","country_code":"CN","type":"education","lineage":["https://openalex.org/I204983213"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hongli Zhang","raw_affiliation_strings":["Harbin Institute of Technology, Harbin, Heilongjiang, CN"],"affiliations":[{"raw_affiliation_string":"Harbin Institute of Technology, Harbin, Heilongjiang, CN","institution_ids":["https://openalex.org/I204983213"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5066733749","display_name":"Ayad R. Abbas","orcid":"https://orcid.org/0000-0002-9797-421X"},"institutions":[{"id":"https://openalex.org/I91125648","display_name":"Wuhan Institute of Technology","ror":"https://ror.org/04jcykh16","country_code":"CN","type":"education","lineage":["https://openalex.org/I91125648"]},{"id":"https://openalex.org/I204983213","display_name":"Harbin Institute of Technology","ror":"https://ror.org/01yqg2h08","country_code":"CN","type":"education","lineage":["https://openalex.org/I204983213"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Ayad R. Abbas","raw_affiliation_strings":["School of Computer Science, Harbin Institute of Technology","Wuhan Institute of technology, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, Harbin Institute of Technology","institution_ids":["https://openalex.org/I204983213"]},{"raw_affiliation_string":"Wuhan Institute of technology, Wuhan, China","institution_ids":["https://openalex.org/I91125648"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5056763353"],"corresponding_institution_ids":["https://openalex.org/I204983213"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.15058771,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":"5","issue":null,"first_page":"1495","last_page":"1502"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8498954176902771},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7122867107391357},{"id":"https://openalex.org/keywords/parsing","display_name":"Parsing","score":0.6916323900222778},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.601491391658783},{"id":"https://openalex.org/keywords/construct","display_name":"Construct (python library)","score":0.5497598052024841},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.5155677795410156},{"id":"https://openalex.org/keywords/grammar","display_name":"Grammar","score":0.4353256821632385},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.4191870093345642},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3506789207458496},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.31182050704956055},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3052821159362793},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.22183778882026672}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8498954176902771},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7122867107391357},{"id":"https://openalex.org/C186644900","wikidata":"https://www.wikidata.org/wiki/Q194152","display_name":"Parsing","level":2,"score":0.6916323900222778},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.601491391658783},{"id":"https://openalex.org/C2780801425","wikidata":"https://www.wikidata.org/wiki/Q5164392","display_name":"Construct (python library)","level":2,"score":0.5497598052024841},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.5155677795410156},{"id":"https://openalex.org/C26022165","wikidata":"https://www.wikidata.org/wiki/Q8091","display_name":"Grammar","level":2,"score":0.4353256821632385},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.4191870093345642},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3506789207458496},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.31182050704956055},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3052821159362793},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.22183778882026672},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ijcnn.2008.4633994","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn.2008.4633994","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2008 IEEE International Joint Conference on Neural Networks (IEEE World Congress on Computational Intelligence)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W1278625838","https://openalex.org/W1491178396","https://openalex.org/W1518431406","https://openalex.org/W1554596310","https://openalex.org/W1674877186","https://openalex.org/W1684452600","https://openalex.org/W2000304804","https://openalex.org/W2008170713","https://openalex.org/W2054127354","https://openalex.org/W2107751401","https://openalex.org/W2108867737","https://openalex.org/W2115149820","https://openalex.org/W2117485601","https://openalex.org/W2121805588","https://openalex.org/W2122269808","https://openalex.org/W2136561182","https://openalex.org/W2161830378","https://openalex.org/W2521576330","https://openalex.org/W4249173680","https://openalex.org/W6633128530","https://openalex.org/W6637096788","https://openalex.org/W6676373661","https://openalex.org/W6680441834"],"related_works":["https://openalex.org/W2061466315","https://openalex.org/W2376886931","https://openalex.org/W1992118813","https://openalex.org/W2010561419","https://openalex.org/W2374845301","https://openalex.org/W2351448539","https://openalex.org/W1977863481","https://openalex.org/W2384741105","https://openalex.org/W1495178644","https://openalex.org/W2185594426"],"abstract_inverted_index":{"The":[0,102,120,129],"Intrusion":[1],"detection":[2],"system":[3,96],"(IDS)":[4],"is":[5,24],"a":[6,25,79],"security":[7],"technology":[8],"that":[9,76,133],"attempts":[10],"to":[11,37,55],"identify":[12],"network":[13,111],"intrusions.":[14],"Defending":[15],"against":[16],"multistep":[17,40,138],"intrusions":[18],"which":[19],"prepare":[20,77],"for":[21,74,78,85],"each":[22,91],"other":[23],"challenging":[26],"task.":[27],"In":[28],"this":[29],"paper,":[30],"the":[31,39,47,49,57,61,65,71,86,94,134,142,148],"Context-Free":[32],"Grammar":[33],"(CFG)":[34],"was":[35,53],"used":[36],"describe":[38,137],"attacks":[41,139],"using":[42,114],"alerts":[43,73],"classes.":[44],"Based":[45],"on":[46,106,147],"CFGs,":[48],"modified":[50,143],"LR":[51,144],"parser":[52],"employed":[54],"generate":[56],"parse":[58],"trees":[59],"of":[60,68,90,110],"scenarios":[62,122,152],"presented":[63],"in":[64],"alerts.":[66],"Instead":[67],"searching":[69],"all":[70],"received":[72],"those":[75],"new":[80],"alert,":[81],"we":[82],"only":[83],"search":[84],"latest":[87],"alertpsilas":[88],"type":[89],"scenario.":[92],"Consequently,":[93],"proposed":[95],"has":[97],"an":[98],"attractive":[99],"time":[100],"complexity.":[101],"experiments":[103],"were":[104],"performed":[105],"two":[107],"different":[108,115],"sets":[109],"traffic":[112],"traces,":[113],"open-source":[116],"and":[117,141],"commercial":[118],"IDSs.":[119],"detected":[121],"are":[123],"represented":[124],"by":[125],"Correlation":[126],"Graphs":[127],"(CGs).":[128],"experimental":[130],"results":[131],"show":[132],"CFG":[135],"can":[136,150],"explicitly":[140],"parser,":[145],"based":[146],"CFG,":[149],"construct":[151],"successfully.":[153]},"counts_by_year":[{"year":2016,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}