{"id":"https://openalex.org/W2991361875","doi":"https://doi.org/10.1109/smartgridcomm.2019.8909766","title":"CAPTAR: Causal-Polytree-based Anomaly Reasoning for SCADA Networks","display_name":"CAPTAR: Causal-Polytree-based Anomaly Reasoning for SCADA Networks","publication_year":2019,"publication_date":"2019-10-01","ids":{"openalex":"https://openalex.org/W2991361875","doi":"https://doi.org/10.1109/smartgridcomm.2019.8909766","mag":"2991361875"},"language":"en","primary_location":{"id":"doi:10.1109/smartgridcomm.2019.8909766","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm.2019.8909766","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5004715823","display_name":"Wenyu Ren","orcid":null},"institutions":[{"id":"https://openalex.org/I183874917","display_name":"Urbana University","ror":"https://ror.org/04kp3hw27","country_code":"US","type":"education","lineage":["https://openalex.org/I183874917"]},{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Wenyu Ren","raw_affiliation_strings":["Urbana, University of Illinois Urbana-Champaign, Illinois, USA"],"affiliations":[{"raw_affiliation_string":"Urbana, University of Illinois Urbana-Champaign, Illinois, USA","institution_ids":["https://openalex.org/I157725225","https://openalex.org/I183874917"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5011019758","display_name":"Tuo Yu","orcid":"https://orcid.org/0000-0002-5209-6265"},"institutions":[{"id":"https://openalex.org/I183874917","display_name":"Urbana University","ror":"https://ror.org/04kp3hw27","country_code":"US","type":"education","lineage":["https://openalex.org/I183874917"]},{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tuo Yu","raw_affiliation_strings":["Urbana, University of Illinois Urbana-Champaign, Illinois, USA"],"affiliations":[{"raw_affiliation_string":"Urbana, University of Illinois Urbana-Champaign, Illinois, USA","institution_ids":["https://openalex.org/I157725225","https://openalex.org/I183874917"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017220441","display_name":"Timothy Yardley","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]},{"id":"https://openalex.org/I183874917","display_name":"Urbana University","ror":"https://ror.org/04kp3hw27","country_code":"US","type":"education","lineage":["https://openalex.org/I183874917"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Timothy Yardley","raw_affiliation_strings":["Urbana, University of Illinois Urbana-Champaign, Illinois, USA"],"affiliations":[{"raw_affiliation_string":"Urbana, University of Illinois Urbana-Champaign, Illinois, USA","institution_ids":["https://openalex.org/I157725225","https://openalex.org/I183874917"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074224097","display_name":"Klara Nahrstedt","orcid":"https://orcid.org/0000-0001-6813-3043"},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]},{"id":"https://openalex.org/I183874917","display_name":"Urbana University","ror":"https://ror.org/04kp3hw27","country_code":"US","type":"education","lineage":["https://openalex.org/I183874917"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Klara Nahrstedt","raw_affiliation_strings":["Urbana, University of Illinois Urbana-Champaign, Illinois, USA"],"affiliations":[{"raw_affiliation_string":"Urbana, University of Illinois Urbana-Champaign, Illinois, USA","institution_ids":["https://openalex.org/I157725225","https://openalex.org/I183874917"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5004715823"],"corresponding_institution_ids":["https://openalex.org/I157725225","https://openalex.org/I183874917"],"apc_list":null,"apc_paid":null,"fwci":1.4147,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.83992347,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/scada","display_name":"SCADA","score":0.9177783727645874},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7130903005599976},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.619861900806427},{"id":"https://openalex.org/keywords/situation-awareness","display_name":"Situation awareness","score":0.5923992395401001},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5917419195175171},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4949931502342224},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3899257779121399},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.11779621243476868}],"concepts":[{"id":"https://openalex.org/C113863187","wikidata":"https://www.wikidata.org/wiki/Q17498","display_name":"SCADA","level":2,"score":0.9177783727645874},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7130903005599976},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.619861900806427},{"id":"https://openalex.org/C145804949","wikidata":"https://www.wikidata.org/wiki/Q478123","display_name":"Situation awareness","level":2,"score":0.5923992395401001},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5917419195175171},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4949931502342224},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3899257779121399},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.11779621243476868},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/smartgridcomm.2019.8909766","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm.2019.8909766","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W1488676795","https://openalex.org/W1582506709","https://openalex.org/W1649901946","https://openalex.org/W1987553702","https://openalex.org/W2049934050","https://openalex.org/W2063189201","https://openalex.org/W2086787243","https://openalex.org/W2094079645","https://openalex.org/W2095979141","https://openalex.org/W2108867737","https://openalex.org/W2114199309","https://openalex.org/W2137928260","https://openalex.org/W2159080219","https://openalex.org/W2164106480","https://openalex.org/W2798149936","https://openalex.org/W2908174900","https://openalex.org/W2944431311"],"related_works":["https://openalex.org/W2615977515","https://openalex.org/W2115760278","https://openalex.org/W2146396794","https://openalex.org/W2809162650","https://openalex.org/W2807864071","https://openalex.org/W2621674343","https://openalex.org/W2364419519","https://openalex.org/W2360767377","https://openalex.org/W2017948608","https://openalex.org/W2360951146"],"abstract_inverted_index":{"The":[0],"Supervisory":[1],"Control":[2],"and":[3,61,107,147],"Data":[4],"Acquisition":[5],"(SCADA)":[6],"system":[7,15,57],"is":[8,17,51],"the":[9,33,90,100,118,128,132,152],"most":[10],"commonly":[11],"used":[12],"industrial":[13],"control":[14],"but":[16,38],"subject":[18],"to":[19,31,58,65,70,110],"a":[20,52,78,103,124,138],"wide":[21],"range":[22],"of":[23,35,44,127,131,140,150],"serious":[24],"threats.":[25],"Intrusion":[26],"detection":[27,96],"systems":[28],"are":[29],"deployed":[30],"promote":[32],"security":[34,129],"SCADA":[36,71,84,134],"systems,":[37],"they":[39],"continuously":[40],"generate":[41],"tremendous":[42],"number":[43],"alerts":[45,60],"without":[46],"further":[47],"comprehending":[48],"them.":[49],"There":[50],"need":[53],"for":[54,83],"an":[55],"efficient":[56],"correlate":[59],"discover":[62],"attack":[63],"strategies":[64],"provide":[66],"explainable":[67],"situational":[68],"awareness":[69],"operators.":[72],"In":[73],"this":[74],"paper,":[75],"we":[76],"present":[77],"causal-polytree-based":[79],"anomaly":[80,95,144],"reasoning":[81,145,154],"framework":[82,97],"networks,":[85],"named":[86],"CAPTAR.":[87],"CAPTAR":[88,121,141],"takes":[89],"meta-alerts":[91],"from":[92],"our":[93],"previous":[94],"EDMAND,":[98],"correlates":[99],"them":[101,109],"using":[102],"naive":[104],"Bayes":[105],"classifier,":[106],"matches":[108],"predefined":[111],"causal":[112,119],"polytrees.":[113],"Utilizing":[114],"Bayesian":[115],"inference":[116],"on":[117,137],"polytrees,":[120],"can":[122],"produces":[123],"high-level":[125],"view":[126],"state":[130],"protected":[133],"network.":[135],"Experiments":[136],"prototype":[139],"proves":[142],"its":[143,148],"ability":[146],"capabilities":[149],"satisfying":[151],"real-time":[153],"requirement.":[155]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}