{"id":"https://openalex.org/W2462955865","doi":"https://doi.org/10.1109/noms.2016.7502968","title":"VEGAS: Visualizing, exploring and grouping alerts","display_name":"VEGAS: Visualizing, exploring and grouping alerts","publication_year":2016,"publication_date":"2016-04-01","ids":{"openalex":"https://openalex.org/W2462955865","doi":"https://doi.org/10.1109/noms.2016.7502968","mag":"2462955865"},"language":"en","primary_location":{"id":"doi:10.1109/noms.2016.7502968","is_oa":false,"landing_page_url":"https://doi.org/10.1109/noms.2016.7502968","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://hal.science/hal-01416464","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5055059507","display_name":"Damien Cr\u00e9milleux","orcid":null},"institutions":[{"id":"https://openalex.org/I4210107720","display_name":"CentraleSup\u00e9lec","ror":"https://ror.org/019tcpt25","country_code":"FR","type":"facility","lineage":["https://openalex.org/I277688954","https://openalex.org/I4210107720"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Damien Cremilleux","raw_affiliation_strings":["CentraleSup\u00e9lec","CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CentraleSup\u00e9lec","institution_ids":["https://openalex.org/I4210107720"]},{"raw_affiliation_string":"CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021863932","display_name":"Christophe Bidan","orcid":null},"institutions":[{"id":"https://openalex.org/I4210107720","display_name":"CentraleSup\u00e9lec","ror":"https://ror.org/019tcpt25","country_code":"FR","type":"facility","lineage":["https://openalex.org/I277688954","https://openalex.org/I4210107720"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Christophe Bidan","raw_affiliation_strings":["CentraleSup\u00e9lec","CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CentraleSup\u00e9lec","institution_ids":["https://openalex.org/I4210107720"]},{"raw_affiliation_string":"CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5110938782","display_name":"Fr\u00e9d\u00e9ric Majorczyk","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Frederic Majorczyk","raw_affiliation_strings":["DGA-MI, CentraleSup\u00e9lec","DGA.MI - DGA Ma\u00eetrise de l'information (Route de Laill\u00e9. La Roche Marguerite - 35170 - Bruz - France)","CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"DGA-MI, CentraleSup\u00e9lec","institution_ids":[]},{"raw_affiliation_string":"DGA.MI - DGA Ma\u00eetrise de l'information (Route de Laill\u00e9. La Roche Marguerite - 35170 - Bruz - France)","institution_ids":[]},{"raw_affiliation_string":"CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5009309313","display_name":"Nicolas Prigent","orcid":null},"institutions":[{"id":"https://openalex.org/I4210107720","display_name":"CentraleSup\u00e9lec","ror":"https://ror.org/019tcpt25","country_code":"FR","type":"facility","lineage":["https://openalex.org/I277688954","https://openalex.org/I4210107720"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Nicolas Prigent","raw_affiliation_strings":["CentraleSup\u00e9lec","CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CentraleSup\u00e9lec","institution_ids":["https://openalex.org/I4210107720"]},{"raw_affiliation_string":"CIDRE - Confidentialit\u00e9, Int\u00e9grit\u00e9, Disponibilit\u00e9 et R\u00e9partition (France)","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.2954,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.63536957,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"1097","last_page":"1100"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8150806427001953},{"id":"https://openalex.org/keywords/visualization","display_name":"Visualization","score":0.6760821342468262},{"id":"https://openalex.org/keywords/las-vegas","display_name":"Las vegas","score":0.6053858399391174},{"id":"https://openalex.org/keywords/workflow","display_name":"Workflow","score":0.5983449816703796},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5435367822647095},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5341984629631042},{"id":"https://openalex.org/keywords/toolbox","display_name":"Toolbox","score":0.49806880950927734},{"id":"https://openalex.org/keywords/filter","display_name":"Filter (signal processing)","score":0.47778353095054626},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.44953471422195435},{"id":"https://openalex.org/keywords/representation","display_name":"Representation (politics)","score":0.42096590995788574},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.1801101565361023},{"id":"https://openalex.org/keywords/computer-vision","display_name":"Computer vision","score":0.08703267574310303}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8150806427001953},{"id":"https://openalex.org/C36464697","wikidata":"https://www.wikidata.org/wiki/Q451553","display_name":"Visualization","level":2,"score":0.6760821342468262},{"id":"https://openalex.org/C2993101906","wikidata":"https://www.wikidata.org/wiki/Q23768","display_name":"Las vegas","level":3,"score":0.6053858399391174},{"id":"https://openalex.org/C177212765","wikidata":"https://www.wikidata.org/wiki/Q627335","display_name":"Workflow","level":2,"score":0.5983449816703796},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5435367822647095},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5341984629631042},{"id":"https://openalex.org/C2777655017","wikidata":"https://www.wikidata.org/wiki/Q1501161","display_name":"Toolbox","level":2,"score":0.49806880950927734},{"id":"https://openalex.org/C106131492","wikidata":"https://www.wikidata.org/wiki/Q3072260","display_name":"Filter (signal processing)","level":2,"score":0.47778353095054626},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.44953471422195435},{"id":"https://openalex.org/C2776359362","wikidata":"https://www.wikidata.org/wiki/Q2145286","display_name":"Representation (politics)","level":3,"score":0.42096590995788574},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.1801101565361023},{"id":"https://openalex.org/C31972630","wikidata":"https://www.wikidata.org/wiki/Q844240","display_name":"Computer vision","level":1,"score":0.08703267574310303},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C94625758","wikidata":"https://www.wikidata.org/wiki/Q7163","display_name":"Politics","level":2,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0},{"id":"https://openalex.org/C158739034","wikidata":"https://www.wikidata.org/wiki/Q1907114","display_name":"Metropolitan area","level":2,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/noms.2016.7502968","is_oa":false,"landing_page_url":"https://doi.org/10.1109/noms.2016.7502968","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium","raw_type":"proceedings-article"},{"id":"pmh:oai:HAL:hal-01416464v1","is_oa":true,"landing_page_url":"https://hal.science/hal-01416464","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE/IFIP International Workshop on Analytics for Network and Service Management, Apr 2016, Istanbul, Turkey. pp.1097 - 1100, &#x27E8;10.1109/NOMS.2016.7502968&#x27E9;","raw_type":"Conference papers"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-01416464v1","is_oa":true,"landing_page_url":"https://hal.science/hal-01416464","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE/IFIP International Workshop on Analytics for Network and Service Management, Apr 2016, Istanbul, Turkey. pp.1097 - 1100, &#x27E8;10.1109/NOMS.2016.7502968&#x27E9;","raw_type":"Conference papers"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W1494756088","https://openalex.org/W1980810881","https://openalex.org/W2028770253","https://openalex.org/W2039157918","https://openalex.org/W2051877362","https://openalex.org/W2054054049","https://openalex.org/W2063329049","https://openalex.org/W2071128523","https://openalex.org/W2146341912","https://openalex.org/W4252261106","https://openalex.org/W4298414258","https://openalex.org/W6889449900"],"related_works":["https://openalex.org/W4205140848","https://openalex.org/W4245666690","https://openalex.org/W2068663075","https://openalex.org/W2978678743","https://openalex.org/W2797837731","https://openalex.org/W4393677513","https://openalex.org/W4390832911","https://openalex.org/W829257147","https://openalex.org/W4233922020","https://openalex.org/W4385302116"],"abstract_inverted_index":{"The":[0],"large":[1],"quantities":[2],"of":[3,69,95,98,105],"alerts":[4,32,45,71,85],"generated":[5,80],"by":[6],"intrusion":[7],"detection":[8],"systems":[9],"(IDS)":[10],"make":[11],"very":[12],"difficult":[13],"to":[14,43,86],"distinguish":[15],"on":[16,48],"a":[17,59,63,67,77],"network":[18],"real":[19],"threats":[20],"from":[21],"noise.":[22],"To":[23],"help":[24],"solving":[25],"this":[26,96],"problem,":[27],"we":[28],"propose":[29],"VEGAS,":[30],"an":[31],"visualization":[33],"and":[34,75],"classification":[35],"tool":[36],"that":[37,65,81,90],"allows":[38],"first":[39],"line":[40],"security":[41,88],"operators":[42],"group":[44],"visually":[46],"based":[47],"their":[49],"principal":[50],"component":[51],"analysis":[52],"(PCA)":[53],"representation.":[54],"VEGAS":[55],"is":[56,79],"included":[57],"in":[58,61,93,100],"workflow":[60],"such":[62],"way":[64],"once":[66],"set":[68,97],"similar":[70,84],"has":[72],"been":[73],"collected":[74],"diagnosed,":[76],"filter":[78],"redirects":[82],"forthcoming":[83],"other":[87],"analysts":[89],"are":[91],"specifically":[92],"charge":[94],"alerts,":[99],"effect":[101],"reducing":[102],"the":[103],"flow":[104],"raw":[106],"undiagnosed":[107],"alerts.":[108]},"counts_by_year":[{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}