{"id":"https://openalex.org/W4400908451","doi":"https://doi.org/10.1109/siu61531.2024.10600861","title":"Machine Learning and Event-Based User and Entity Behavior Analysis","display_name":"Machine Learning and Event-Based User and Entity Behavior Analysis","publication_year":2024,"publication_date":"2024-05-15","ids":{"openalex":"https://openalex.org/W4400908451","doi":"https://doi.org/10.1109/siu61531.2024.10600861"},"language":"en","primary_location":{"id":"doi:10.1109/siu61531.2024.10600861","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/siu61531.2024.10600861","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 32nd Signal Processing and Communications Applications Conference (SIU)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5104987159","display_name":"Vedat \u00d6nal","orcid":null},"institutions":[{"id":"https://openalex.org/I12700597","display_name":"Sivas Cumhuriyet \u00dcniversitesi","ror":"https://ror.org/04f81fm77","country_code":"TR","type":"education","lineage":["https://openalex.org/I12700597"]}],"countries":["TR"],"is_corresponding":false,"raw_author_name":"Vedat \u00d6nal","raw_affiliation_strings":["Sivas Cumhuriyet &#x00DC;niversitesi,Bilgisayar M&#x00FC;hendisli&#x011F;i,Sivas,T&#x00FC;rkiye"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Sivas Cumhuriyet &#x00DC;niversitesi,Bilgisayar M&#x00FC;hendisli&#x011F;i,Sivas,T&#x00FC;rkiye","institution_ids":["https://openalex.org/I12700597"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5083888755","display_name":"Halil Arslan","orcid":"https://orcid.org/0000-0003-3286-5159"},"institutions":[{"id":"https://openalex.org/I12700597","display_name":"Sivas Cumhuriyet \u00dcniversitesi","ror":"https://ror.org/04f81fm77","country_code":"TR","type":"education","lineage":["https://openalex.org/I12700597"]}],"countries":["TR"],"is_corresponding":false,"raw_author_name":"Halil Arslan","raw_affiliation_strings":["Sivas Cumhuriyet &#x00DC;niversitesi,Bilgisayar M&#x00FC;hendisli&#x011F;i,Sivas,T&#x00FC;rkiye"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Sivas Cumhuriyet &#x00DC;niversitesi,Bilgisayar M&#x00FC;hendisli&#x011F;i,Sivas,T&#x00FC;rkiye","institution_ids":["https://openalex.org/I12700597"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5076466902","display_name":"Yasin G\u00f6rmez","orcid":"https://orcid.org/0000-0001-8276-2030"},"institutions":[{"id":"https://openalex.org/I12700597","display_name":"Sivas Cumhuriyet \u00dcniversitesi","ror":"https://ror.org/04f81fm77","country_code":"TR","type":"education","lineage":["https://openalex.org/I12700597"]}],"countries":["TR"],"is_corresponding":false,"raw_author_name":"Yasin G\u00f6rmez","raw_affiliation_strings":["Sivas Cumhuriyet &#x00DC;niversitesi,Bilgisayar M&#x00FC;hendisli&#x011F;i,Sivas,T&#x00FC;rkiye"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Sivas Cumhuriyet &#x00DC;niversitesi,Bilgisayar M&#x00FC;hendisli&#x011F;i,Sivas,T&#x00FC;rkiye","institution_ids":["https://openalex.org/I12700597"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.2187,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.48067086,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"4"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10799","display_name":"Data Visualization and Analytics","score":0.866100013256073,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10799","display_name":"Data Visualization and Analytics","score":0.866100013256073,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14280","display_name":"Big Data Technologies and Applications","score":0.8355000019073486,"subfield":{"id":"https://openalex.org/subfields/1802","display_name":"Information Systems and Management"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10064","display_name":"Complex Network Analysis Techniques","score":0.8219000101089478,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.777625560760498},{"id":"https://openalex.org/keywords/event","display_name":"Event (particle physics)","score":0.5357246994972229},{"id":"https://openalex.org/keywords/natural-language-processing","display_name":"Natural language processing","score":0.49230945110321045},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.46781325340270996},{"id":"https://openalex.org/keywords/information-retrieval","display_name":"Information retrieval","score":0.33322134613990784},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.3267137408256531}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.777625560760498},{"id":"https://openalex.org/C2779662365","wikidata":"https://www.wikidata.org/wiki/Q5416694","display_name":"Event (particle physics)","level":2,"score":0.5357246994972229},{"id":"https://openalex.org/C204321447","wikidata":"https://www.wikidata.org/wiki/Q30642","display_name":"Natural language processing","level":1,"score":0.49230945110321045},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.46781325340270996},{"id":"https://openalex.org/C23123220","wikidata":"https://www.wikidata.org/wiki/Q816826","display_name":"Information retrieval","level":1,"score":0.33322134613990784},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.3267137408256531},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/siu61531.2024.10600861","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/siu61531.2024.10600861","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 32nd Signal Processing and Communications Applications Conference (SIU)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W3188962172","https://openalex.org/W2772917594","https://openalex.org/W4306742369","https://openalex.org/W4303457083","https://openalex.org/W2131146434","https://openalex.org/W2951359407","https://openalex.org/W4376623224","https://openalex.org/W2043727559","https://openalex.org/W3136979370","https://openalex.org/W3204019825"],"abstract_inverted_index":{"With":[0],"the":[1,6,12,38,55,75,109,113,123,130,142,151,159,165],"widespread":[2],"use":[3],"of":[4,8,14,18,27,40,78,150,158],"technology,":[5],"concept":[7],"cybersecurity":[9],"frequently":[10],"occupies":[11],"agenda":[13],"companies.":[15],"The":[16,126],"resistance":[17],"institutions":[19,41],"against":[20,42],"external":[21],"attacks":[22],"such":[23],"as":[24],"malware,":[25],"denial":[26],"service,":[28],"and":[29,59,85,99,141,146,176],"zero-day":[30],"vulnerabilities":[31],"is":[32,103],"increasing":[33],"day":[34],"by":[35,47,73,112],"day,":[36],"but":[37],"defense":[39],"internal":[43],"threats":[44],"carried":[45],"out":[46],"malicious":[48],"or":[49],"unconscious":[50],"employees":[51,114],"has":[52],"not":[53],"reached":[54],"desired":[56],"levels.":[57],"User":[58],"entity":[60,86],"behavior":[61,72,77,87],"analysis,":[62,160],"proposed":[63],"to":[64,69],"solve":[65],"this":[66,81,106],"problem,":[67],"aims":[68],"find":[70],"abnormal":[71],"analyzing":[74],"daily":[76],"employees.":[79],"In":[80,105],"study,":[82],"a":[83,156],"user":[84],"analysis":[88],"model":[89],"that":[90,164],"can":[91],"work":[92],"in":[93],"harmony":[94],"with":[95,129,136,171],"companies\u2019":[96],"security":[97],"information":[98],"event":[100],"management":[101],"systems":[102,119],"proposed.":[104],"context,":[107],"firstly,":[108],"activities":[110],"performed":[111],"while":[115],"using":[116,122],"Windows":[117],"operating":[118],"were":[120,153,169],"collected":[121],"Wazuh":[124],"application.":[125],"dataset":[127],"created":[128],"sliding":[131],"window":[132],"method":[133],"was":[134,162],"trained":[135],"nine":[137],"different":[138],"classification":[139],"algorithms,":[140],"accuracy,":[143],"F1-score,":[144],"sensitivity,":[145],"false-negative":[147],"rate":[148],"values":[149],"models":[152],"calculated.":[154],"As":[155],"result":[157],"it":[161],"observed":[163],"most":[166],"successful":[167],"results":[168],"obtained":[170],"Random":[172],"Forest,":[173],"k-nearest":[174],"neighbor,":[175],"Bagging":[177],"Methods":[178]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}