{"id":"https://openalex.org/W2625891264","doi":"https://doi.org/10.1109/tbdata.2017.2715335","title":"Big Data Based Security Analytics for Protecting Virtualized Infrastructures in Cloud Computing","display_name":"Big Data Based Security Analytics for Protecting Virtualized Infrastructures in Cloud Computing","publication_year":2017,"publication_date":"2017-06-15","ids":{"openalex":"https://openalex.org/W2625891264","doi":"https://doi.org/10.1109/tbdata.2017.2715335","mag":"2625891264"},"language":"en","primary_location":{"id":"doi:10.1109/tbdata.2017.2715335","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tbdata.2017.2715335","pdf_url":null,"source":{"id":"https://openalex.org/S2491400915","display_name":"IEEE Transactions on Big Data","issn_l":"2332-7790","issn":["2332-7790","2372-2096"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Big Data","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5039260769","display_name":"Thu Yein Win","orcid":"https://orcid.org/0000-0002-4977-0511"},"institutions":[{"id":"https://openalex.org/I114203471","display_name":"University of Gloucestershire","ror":"https://ror.org/00wygct11","country_code":"GB","type":"education","lineage":["https://openalex.org/I114203471"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Thu Yein Win","raw_affiliation_strings":["Faculty of Business, Computing & Applied Sciences, University of Gloucestershire, Cheltenham, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Faculty of Business, Computing & Applied Sciences, University of Gloucestershire, Cheltenham, United Kingdom","institution_ids":["https://openalex.org/I114203471"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005957052","display_name":"Huaglory Tianfield","orcid":"https://orcid.org/0000-0002-0605-6238"},"institutions":[{"id":"https://openalex.org/I195939026","display_name":"Glasgow Caledonian University","ror":"https://ror.org/03dvm1235","country_code":"GB","type":"education","lineage":["https://openalex.org/I195939026"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Huaglory Tianfield","raw_affiliation_strings":["Department of Computer, Communications and Interactive Systems, Glasgow Caledonian University, Glasgow, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Department of Computer, Communications and Interactive Systems, Glasgow Caledonian University, Glasgow, United Kingdom","institution_ids":["https://openalex.org/I195939026"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5044243475","display_name":"Quentin Mair","orcid":null},"institutions":[{"id":"https://openalex.org/I195939026","display_name":"Glasgow Caledonian University","ror":"https://ror.org/03dvm1235","country_code":"GB","type":"education","lineage":["https://openalex.org/I195939026"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Quentin Mair","raw_affiliation_strings":["Department of Computer, Communications and Interactive Systems, Glasgow Caledonian University, Glasgow, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Department of Computer, Communications and Interactive Systems, Glasgow Caledonian University, Glasgow, United Kingdom","institution_ids":["https://openalex.org/I195939026"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5039260769"],"corresponding_institution_ids":["https://openalex.org/I114203471"],"apc_list":null,"apc_paid":null,"fwci":5.6927,"has_fulltext":false,"cited_by_count":66,"citation_normalized_percentile":{"value":0.9644658,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":"4","issue":"1","first_page":"11","last_page":"25"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8899363279342651},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.7729997038841248},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.670179009437561},{"id":"https://openalex.org/keywords/big-data","display_name":"Big data","score":0.5899378657341003},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.5588551163673401},{"id":"https://openalex.org/keywords/virtual-machine","display_name":"Virtual machine","score":0.5195177793502808},{"id":"https://openalex.org/keywords/analytics","display_name":"Analytics","score":0.49753549695014954},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4086991548538208},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.25328952074050903},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.23606914281845093}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8899363279342651},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.7729997038841248},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.670179009437561},{"id":"https://openalex.org/C75684735","wikidata":"https://www.wikidata.org/wiki/Q858810","display_name":"Big data","level":2,"score":0.5899378657341003},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.5588551163673401},{"id":"https://openalex.org/C25344961","wikidata":"https://www.wikidata.org/wiki/Q192726","display_name":"Virtual machine","level":2,"score":0.5195177793502808},{"id":"https://openalex.org/C79158427","wikidata":"https://www.wikidata.org/wiki/Q485396","display_name":"Analytics","level":2,"score":0.49753549695014954},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4086991548538208},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.25328952074050903},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.23606914281845093}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1109/tbdata.2017.2715335","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tbdata.2017.2715335","pdf_url":null,"source":{"id":"https://openalex.org/S2491400915","display_name":"IEEE Transactions on Big Data","issn_l":"2332-7790","issn":["2332-7790","2372-2096"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Big Data","raw_type":"journal-article"},{"id":"pmh:oai::4823","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306400522","display_name":"Research Repository (University of Gloucestershire)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I114203471","host_organization_name":"University of Gloucestershire","host_organization_lineage":["https://openalex.org/I114203471"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":"Article"},{"id":"pmh:oai:eprints.glos.ac.uk:4823","is_oa":false,"landing_page_url":"https://orcid.org/0000-0002-4977-0511","pdf_url":null,"source":{"id":"https://openalex.org/S4306400522","display_name":"Research Repository (University of Gloucestershire)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I114203471","host_organization_name":"University of Gloucestershire","host_organization_lineage":["https://openalex.org/I114203471"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"PeerReviewed"},{"id":"pmh:oai:researchonline.gcu.ac.uk:publications/205b7594-6c0c-44d0-a3c0-d22ac4757596","is_oa":false,"landing_page_url":"https://researchonline.gcu.ac.uk/en/publications/205b7594-6c0c-44d0-a3c0-d22ac4757596","pdf_url":null,"source":{"id":"https://openalex.org/S4306402566","display_name":"ResearchOnline (Glasgow Caledonian University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I195939026","host_organization_name":"Glasgow Caledonian University","host_organization_lineage":["https://openalex.org/I195939026"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":""}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.6299999952316284}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":33,"referenced_works":["https://openalex.org/W97539848","https://openalex.org/W397981932","https://openalex.org/W839570215","https://openalex.org/W1543794003","https://openalex.org/W1641762327","https://openalex.org/W1990089904","https://openalex.org/W2021660846","https://openalex.org/W2040424958","https://openalex.org/W2044439547","https://openalex.org/W2056729444","https://openalex.org/W2097360283","https://openalex.org/W2106292136","https://openalex.org/W2112736324","https://openalex.org/W2120713742","https://openalex.org/W2137813581","https://openalex.org/W2150400584","https://openalex.org/W2153381881","https://openalex.org/W2159080219","https://openalex.org/W2170197386","https://openalex.org/W2173213060","https://openalex.org/W2176830056","https://openalex.org/W2293923001","https://openalex.org/W2318485605","https://openalex.org/W2541511557","https://openalex.org/W2545374358","https://openalex.org/W3169065846","https://openalex.org/W4294541781","https://openalex.org/W6603957951","https://openalex.org/W6632613302","https://openalex.org/W6637110787","https://openalex.org/W6676120992","https://openalex.org/W6677903450","https://openalex.org/W6685576885"],"related_works":["https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W1764168690","https://openalex.org/W2537959205","https://openalex.org/W2740895074","https://openalex.org/W4390608645","https://openalex.org/W2772446090","https://openalex.org/W3152891574","https://openalex.org/W2249809453","https://openalex.org/W4284893819"],"abstract_inverted_index":{"Virtualized":[0],"infrastructure":[1],"in":[2,31,52,114,136,154],"cloud":[3],"computing":[4],"has":[5],"become":[6],"an":[7,117],"attractive":[8],"target":[9],"for":[10,142],"cyberattackers":[11],"to":[12,27,95,102,110,125],"launch":[13],"advanced":[14,29],"attacks.":[15],"This":[16],"paper":[17],"proposes":[18],"a":[19],"novel":[20],"big":[21],"data":[22],"based":[23,73,119],"security":[24,140],"analytics":[25],"approach":[26,129,151],"detecting":[28,155],"attacks":[30,156],"virtualized":[32,143],"infrastructures.":[33],"Network":[34],"logs":[35,41],"as":[36,38,133,135],"well":[37,134],"user":[39],"application":[40],"collected":[42],"periodically":[43],"from":[44],"the":[45,53,103,112,127],"guest":[46],"virtual":[47],"machines":[48],"(VMs)":[49],"are":[50,123],"stored":[51],"Hadoop":[54],"Distributed":[55],"File":[56],"System":[57],"(HDFS).":[58],"Then,":[59],"extraction":[60],"of":[61,75,81,116],"attack":[62,77,82,118],"features":[63],"is":[64,84,93,108,152],"performed":[65,85],"through":[66,86],"graph-based":[67],"event":[68],"correlation":[69],"and":[70,105],"MapReduce":[71],"parser":[72],"identification":[74],"potential":[76],"paths.":[78],"Next,":[79],"determination":[80],"presence":[83],"two-step":[87],"machine":[88],"learning,":[89],"namely":[90],"logistic":[91],"regression":[92],"applied":[94,109],"calculate":[96,111],"attack's":[97],"conditional":[98],"probabilities":[99],"with":[100,138,157],"respect":[101],"attributes,":[104],"belief":[106,113],"propagation":[107],"existence":[115],"on":[120],"them.":[121],"Experiments":[122],"conducted":[124],"evaluate":[126],"proposed":[128,150],"using":[130],"well-known":[131],"malware":[132],"comparison":[137],"existing":[139],"techniques":[141],"infrastructure.":[144],"The":[145],"results":[146],"show":[147],"that":[148],"our":[149],"effective":[153],"minimal":[158],"performance":[159],"overhead.":[160]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":13},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":10},{"year":2020,"cited_by_count":11},{"year":2019,"cited_by_count":8},{"year":2018,"cited_by_count":7}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}