{"id":"https://openalex.org/W4310723726","doi":"https://doi.org/10.1109/smartgridcomm52983.2022.9961016","title":"On Holistic Multi-Step Cyberattack Detection via a Graph-based Correlation Approach","display_name":"On Holistic Multi-Step Cyberattack Detection via a Graph-based Correlation Approach","publication_year":2022,"publication_date":"2022-10-25","ids":{"openalex":"https://openalex.org/W4310723726","doi":"https://doi.org/10.1109/smartgridcomm52983.2022.9961016"},"language":"en","primary_location":{"id":"doi:10.1109/smartgridcomm52983.2022.9961016","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm52983.2022.9961016","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5091120537","display_name":"\u00d6mer Sen","orcid":null},"institutions":[{"id":"https://openalex.org/I887968799","display_name":"RWTH Aachen University","ror":"https://ror.org/04xfq0f34","country_code":"DE","type":"education","lineage":["https://openalex.org/I887968799"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Omer Sen","raw_affiliation_strings":["IAEW, RWTH Aachen Univserity,Aachen,Germany","IAEW, RWTH Aachen Univserity, Aachen, Germany"],"affiliations":[{"raw_affiliation_string":"IAEW, RWTH Aachen Univserity,Aachen,Germany","institution_ids":["https://openalex.org/I887968799"]},{"raw_affiliation_string":"IAEW, RWTH Aachen Univserity, Aachen, Germany","institution_ids":["https://openalex.org/I887968799"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103025475","display_name":"Chijioke Eze","orcid":"https://orcid.org/0000-0002-8545-0160"},"institutions":[{"id":"https://openalex.org/I887968799","display_name":"RWTH Aachen University","ror":"https://ror.org/04xfq0f34","country_code":"DE","type":"education","lineage":["https://openalex.org/I887968799"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Chijioke Eze","raw_affiliation_strings":["ACS, RWTH Aachen University,Aachen,Germany","ACS, RWTH Aachen University, Aachen, Germany"],"affiliations":[{"raw_affiliation_string":"ACS, RWTH Aachen University,Aachen,Germany","institution_ids":["https://openalex.org/I887968799"]},{"raw_affiliation_string":"ACS, RWTH Aachen University, Aachen, Germany","institution_ids":["https://openalex.org/I887968799"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5074624526","display_name":"Andreas Ulbig","orcid":"https://orcid.org/0000-0001-5834-1842"},"institutions":[{"id":"https://openalex.org/I887968799","display_name":"RWTH Aachen University","ror":"https://ror.org/04xfq0f34","country_code":"DE","type":"education","lineage":["https://openalex.org/I887968799"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Andreas Ulbig","raw_affiliation_strings":["IAEW, RWTH Aachen Univserity,Aachen,Germany","IAEW, RWTH Aachen Univserity, Aachen, Germany"],"affiliations":[{"raw_affiliation_string":"IAEW, RWTH Aachen Univserity,Aachen,Germany","institution_ids":["https://openalex.org/I887968799"]},{"raw_affiliation_string":"IAEW, RWTH Aachen Univserity, Aachen, Germany","institution_ids":["https://openalex.org/I887968799"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5030410007","display_name":"Antonello Monti","orcid":"https://orcid.org/0000-0003-1914-9801"},"institutions":[{"id":"https://openalex.org/I887968799","display_name":"RWTH Aachen University","ror":"https://ror.org/04xfq0f34","country_code":"DE","type":"education","lineage":["https://openalex.org/I887968799"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Antonello Monti","raw_affiliation_strings":["ACS, RWTH Aachen University,Aachen,Germany","ACS, RWTH Aachen University, Aachen, Germany"],"affiliations":[{"raw_affiliation_string":"ACS, RWTH Aachen University,Aachen,Germany","institution_ids":["https://openalex.org/I887968799"]},{"raw_affiliation_string":"ACS, RWTH Aachen University, Aachen, Germany","institution_ids":["https://openalex.org/I887968799"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5091120537"],"corresponding_institution_ids":["https://openalex.org/I887968799"],"apc_list":null,"apc_paid":null,"fwci":0.9645,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.74467754,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"380","last_page":"386"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7616302967071533},{"id":"https://openalex.org/keywords/situation-awareness","display_name":"Situation awareness","score":0.7369846105575562},{"id":"https://openalex.org/keywords/cyber-attack","display_name":"Cyber-attack","score":0.49857020378112793},{"id":"https://openalex.org/keywords/smart-grid","display_name":"Smart grid","score":0.49142324924468994},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4908016622066498},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4785507321357727},{"id":"https://openalex.org/keywords/grid","display_name":"Grid","score":0.4638853669166565},{"id":"https://openalex.org/keywords/digitization","display_name":"Digitization","score":0.4233083426952362},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.14045202732086182}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7616302967071533},{"id":"https://openalex.org/C145804949","wikidata":"https://www.wikidata.org/wiki/Q478123","display_name":"Situation awareness","level":2,"score":0.7369846105575562},{"id":"https://openalex.org/C201307755","wikidata":"https://www.wikidata.org/wiki/Q4071928","display_name":"Cyber-attack","level":2,"score":0.49857020378112793},{"id":"https://openalex.org/C10558101","wikidata":"https://www.wikidata.org/wiki/Q689855","display_name":"Smart grid","level":2,"score":0.49142324924468994},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4908016622066498},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4785507321357727},{"id":"https://openalex.org/C187691185","wikidata":"https://www.wikidata.org/wiki/Q2020720","display_name":"Grid","level":2,"score":0.4638853669166565},{"id":"https://openalex.org/C2779308522","wikidata":"https://www.wikidata.org/wiki/Q843958","display_name":"Digitization","level":2,"score":0.4233083426952362},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.14045202732086182},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C31972630","wikidata":"https://www.wikidata.org/wiki/Q844240","display_name":"Computer vision","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/smartgridcomm52983.2022.9961016","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm52983.2022.9961016","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":37,"referenced_works":["https://openalex.org/W776871969","https://openalex.org/W1590752147","https://openalex.org/W1971598836","https://openalex.org/W2098671104","https://openalex.org/W2099103357","https://openalex.org/W2109766389","https://openalex.org/W2114776772","https://openalex.org/W2295288655","https://openalex.org/W2588275707","https://openalex.org/W2592627133","https://openalex.org/W2783968983","https://openalex.org/W2783988830","https://openalex.org/W2887561884","https://openalex.org/W2894344402","https://openalex.org/W2907138293","https://openalex.org/W2950522691","https://openalex.org/W2982375055","https://openalex.org/W3002252600","https://openalex.org/W3011880158","https://openalex.org/W3011937898","https://openalex.org/W3097236292","https://openalex.org/W3105451600","https://openalex.org/W3129459213","https://openalex.org/W3147914029","https://openalex.org/W3176367300","https://openalex.org/W3197057157","https://openalex.org/W3197389079","https://openalex.org/W3201629921","https://openalex.org/W3203867453","https://openalex.org/W3211988487","https://openalex.org/W4206779170","https://openalex.org/W4247792971","https://openalex.org/W6622621606","https://openalex.org/W6635235395","https://openalex.org/W6677170769","https://openalex.org/W6772064552","https://openalex.org/W6800810309"],"related_works":["https://openalex.org/W1539704186","https://openalex.org/W4254109238","https://openalex.org/W2399890175","https://openalex.org/W4288049909","https://openalex.org/W2491808042","https://openalex.org/W2563739196","https://openalex.org/W3204945059","https://openalex.org/W2032188264","https://openalex.org/W4205294552","https://openalex.org/W2726834272"],"abstract_inverted_index":{"While":[0],"digitization":[1],"of":[2,67,80,88,95,149,158],"distribution":[3],"grids":[4,35],"through":[5],"information":[6],"and":[7,78,101,123],"communications":[8],"technology":[9],"brings":[10],"numerous":[11],"benefits,":[12],"it":[13],"also":[14],"increases":[15],"the":[16,42,86,93,130,142,146,150],"grid's":[17],"vulnerability":[18],"to":[19,49,60,110,118,133],"serious":[20],"cyber":[21,90,98,136,161],"attacks.":[22],"Unlike":[23],"conventional":[24],"systems,":[25],"attacks":[26,91,113],"on":[27,129],"many":[28],"industrial":[29],"control":[30],"systems":[31],"such":[32,81],"as":[33,65],"power":[34,167],"often":[36],"occur":[37],"in":[38,141,164],"multiple":[39],"stages,":[40],"with":[41,55,92],"attacker":[43],"taking":[44,139],"several":[45],"steps":[46,64],"at":[47],"once":[48],"achieve":[50],"its":[51],"goal.":[52],"Detection":[53],"mechanisms":[54],"situational":[56],"awareness":[57],"are":[58],"needed":[59],"detect":[61,111],"orchestrated":[62],"attack":[63,70,137,162],"part":[66],"a":[68,74,96,120,125,155,159,165],"coherent":[69],"campaign.":[71],"To":[72],"provide":[73],"foundation":[75],"for":[76],"detection":[77,87,147],"prevention":[79],"attacks,":[82],"this":[83],"paper":[84],"addresses":[85],"multi-stage":[89,112,135,160],"aid":[94],"graph-based":[97],"intelligence":[99],"database":[100],"alert":[102],"correlation":[103,127],"approach.":[104],"Specifically,":[105],"we":[106],"propose":[107],"an":[108],"approach":[109,128,152],"by":[114,153],"lever-aging":[115],"heterogeneous":[116],"data":[117],"form":[119],"knowledge":[121],"base":[122],"employ":[124],"model-based":[126],"generated":[131],"alerts":[132],"identify":[134],"sequences":[138],"place":[140],"network.":[143],"We":[144],"investigate":[145],"quality":[148],"proposed":[151],"using":[154],"case":[156],"study":[157],"campaign":[163],"future-orientated":[166],"grid":[168],"pilot.":[169]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}