{"id":"https://openalex.org/W2106305974","doi":"https://doi.org/10.1109/mnet.2009.5274916","title":"Effective discovery of attacks using entropy of packet dynamics","display_name":"Effective discovery of attacks using entropy of packet dynamics","publication_year":2009,"publication_date":"2009-09-01","ids":{"openalex":"https://openalex.org/W2106305974","doi":"https://doi.org/10.1109/mnet.2009.5274916","mag":"2106305974"},"language":"en","primary_location":{"id":"doi:10.1109/mnet.2009.5274916","is_oa":false,"landing_page_url":"https://doi.org/10.1109/mnet.2009.5274916","pdf_url":null,"source":{"id":"https://openalex.org/S186584794","display_name":"IEEE Network","issn_l":"0890-8044","issn":["0890-8044","1558-156X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Network","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5114253247","display_name":"Chan\u2010Kyu Han","orcid":null},"institutions":[{"id":"https://openalex.org/I848706","display_name":"Sungkyunkwan University","ror":"https://ror.org/04q78tk20","country_code":"KR","type":"education","lineage":["https://openalex.org/I848706"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Chan-Kyu Han","raw_affiliation_strings":["Mobile Systems Engineering, SungKyunKwan University, South Korea","Sungkyunkwan University, Suwon, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Mobile Systems Engineering, SungKyunKwan University, South Korea","institution_ids":["https://openalex.org/I848706"]},{"raw_affiliation_string":"Sungkyunkwan University, Suwon, South Korea","institution_ids":["https://openalex.org/I848706"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5050697645","display_name":"Hyoung-Kee Choi","orcid":null},"institutions":[{"id":"https://openalex.org/I848706","display_name":"Sungkyunkwan University","ror":"https://ror.org/04q78tk20","country_code":"KR","type":"education","lineage":["https://openalex.org/I848706"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Hyoung-Kee Choi","raw_affiliation_strings":["Mobile Communications, SungKyunKwan University, South Korea","Sungkyunkwan University, Suwon, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Mobile Communications, SungKyunKwan University, South Korea","institution_ids":["https://openalex.org/I848706"]},{"raw_affiliation_string":"Sungkyunkwan University, Suwon, South Korea","institution_ids":["https://openalex.org/I848706"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.4515,"has_fulltext":false,"cited_by_count":14,"citation_normalized_percentile":{"value":0.83643153,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"23","issue":"5","first_page":"4","last_page":"12"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9941999912261963,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8453838229179382},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.6652559638023376},{"id":"https://openalex.org/keywords/entropy","display_name":"Entropy (arrow of time)","score":0.6273195743560791},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.5829715132713318},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5190635323524475},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.49020248651504517},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.35632044076919556},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.34450244903564453},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.32493913173675537}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8453838229179382},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.6652559638023376},{"id":"https://openalex.org/C106301342","wikidata":"https://www.wikidata.org/wiki/Q4117933","display_name":"Entropy (arrow of time)","level":2,"score":0.6273195743560791},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.5829715132713318},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5190635323524475},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.49020248651504517},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.35632044076919556},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.34450244903564453},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.32493913173675537},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/mnet.2009.5274916","is_oa":false,"landing_page_url":"https://doi.org/10.1109/mnet.2009.5274916","pdf_url":null,"source":{"id":"https://openalex.org/S186584794","display_name":"IEEE Network","issn_l":"0890-8044","issn":["0890-8044","1558-156X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Network","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":30,"referenced_works":["https://openalex.org/W1500320716","https://openalex.org/W1521843029","https://openalex.org/W1583624683","https://openalex.org/W1592622566","https://openalex.org/W1930113944","https://openalex.org/W2057653879","https://openalex.org/W2085533912","https://openalex.org/W2096847629","https://openalex.org/W2107035663","https://openalex.org/W2113061123","https://openalex.org/W2115379950","https://openalex.org/W2121511513","https://openalex.org/W2129976399","https://openalex.org/W2130598205","https://openalex.org/W2139386233","https://openalex.org/W2155915275","https://openalex.org/W2156204309","https://openalex.org/W2157578436","https://openalex.org/W2164210932","https://openalex.org/W2165032725","https://openalex.org/W2168653163","https://openalex.org/W2293322640","https://openalex.org/W3138273970","https://openalex.org/W3138598418","https://openalex.org/W4239856175","https://openalex.org/W4248484754","https://openalex.org/W6674805939","https://openalex.org/W6676437331","https://openalex.org/W6677197789","https://openalex.org/W6679589109"],"related_works":["https://openalex.org/W2061466315","https://openalex.org/W2376886931","https://openalex.org/W1992118813","https://openalex.org/W2010561419","https://openalex.org/W2374845301","https://openalex.org/W2351448539","https://openalex.org/W1977863481","https://openalex.org/W2384741105","https://openalex.org/W1495178644","https://openalex.org/W2185594426"],"abstract_inverted_index":{"Network-based":[0],"attacks":[1,20,133,154],"are":[2],"so":[3,160],"devastating":[4],"that":[5],"they":[6],"have":[7],"become":[8],"major":[9],"threats":[10],"to":[11,36,62,87,101,108,112],"network":[12,52,68,114,119],"security.":[13],"Early":[14],"yet":[15],"accurate":[16],"warning":[17],"of":[18,45,77,93,99,118,128],"these":[19],"is":[21,34,60,72,138],"critical":[22],"for":[23],"both":[24,39],"operators":[25],"and":[26,43,66,158],"end":[27],"users.":[28],"However,":[29],"neither":[30],"speed":[31],"nor":[32],"accuracy":[33,157],"easy":[35],"achieve":[37],"because":[38],"require":[40],"effective":[41],"extraction":[42],"interpretation":[44],"anomalous":[46],"patterns":[47,127],"from":[48,145],"overwhelmingly":[49],"massive,":[50],"noisy":[51],"traffic.":[53],"The":[54,116,135],"intrusion":[55],"detection":[56],"system":[57],"presented":[58],"here":[59],"designed":[61],"assist":[63],"in":[64,132,161],"diagnosing":[65],"identifying":[67],"attacks.":[69,94,115,148],"This":[70],"IDS":[71],"based":[73],"on":[74],"the":[75,90,125],"notion":[76],"packet":[78,82,104,129],"dynamics,":[79],"rather":[80],"than":[81],"content,":[83],"as":[84],"a":[85,97,162],"way":[86],"cope":[88],"with":[89,155],"increasing":[91],"complexity":[92],"We":[95],"employ":[96],"concept":[98],"entropy":[100,111,117],"measure":[102],"time-variant":[103],"dynamics":[105,130],"and,":[106],"further,":[107],"extrapolate":[109],"this":[110],"detect":[113],"traffic":[120],"should":[121],"vary":[122],"abruptly":[123],"once":[124],"distinct":[126],"embedded":[131],"appear.":[134],"proposed":[136],"classifier":[137,150],"evaluated":[139],"by":[140],"comparing":[141],"independent":[142],"statistics":[143],"derived":[144],"five":[146,153],"well-known":[147],"Our":[149],"detects":[151],"those":[152],"high":[156],"does":[159],"timely":[163],"manner.":[164]},"counts_by_year":[{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":1},{"year":2015,"cited_by_count":1},{"year":2014,"cited_by_count":1},{"year":2012,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}