{"id":"https://openalex.org/W2342992012","doi":"https://doi.org/10.1109/tcyb.2015.2490802","title":"Data Randomization and Cluster-Based Partitioning for Botnet Intrusion Detection","display_name":"Data Randomization and Cluster-Based Partitioning for Botnet Intrusion Detection","publication_year":2015,"publication_date":"2015-10-30","ids":{"openalex":"https://openalex.org/W2342992012","doi":"https://doi.org/10.1109/tcyb.2015.2490802","mag":"2342992012","pmid":"https://pubmed.ncbi.nlm.nih.gov/26540724"},"language":"en","primary_location":{"id":"doi:10.1109/tcyb.2015.2490802","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tcyb.2015.2490802","pdf_url":null,"source":{"id":"https://openalex.org/S4210191041","display_name":"IEEE Transactions on Cybernetics","issn_l":"2168-2267","issn":["2168-2267","2168-2275"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Cybernetics","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","pubmed"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5047057664","display_name":"Omar Y. Al-Jarrah","orcid":"https://orcid.org/0000-0002-6212-9307"},"institutions":[{"id":"https://openalex.org/I176601375","display_name":"Khalifa University of Science and Technology","ror":"https://ror.org/05hffr360","country_code":"AE","type":"education","lineage":["https://openalex.org/I176601375"]}],"countries":["AE"],"is_corresponding":true,"raw_author_name":"Omar Y. Al-Jarrah","raw_affiliation_strings":["Electrical and Computer Engineering Department, Khalifa University of Science Technology and Research, Abu Dhabi, UAE"],"affiliations":[{"raw_affiliation_string":"Electrical and Computer Engineering Department, Khalifa University of Science Technology and Research, Abu Dhabi, UAE","institution_ids":["https://openalex.org/I176601375"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088743570","display_name":"Omar Alhussein","orcid":"https://orcid.org/0000-0002-1531-5916"},"institutions":[{"id":"https://openalex.org/I18014758","display_name":"Simon Fraser University","ror":"https://ror.org/0213rcc28","country_code":"CA","type":"education","lineage":["https://openalex.org/I18014758"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Omar Alhussein","raw_affiliation_strings":["School of Engineering Science, Simon Fraser University, Burnaby, BC, Canada"],"affiliations":[{"raw_affiliation_string":"School of Engineering Science, Simon Fraser University, Burnaby, BC, Canada","institution_ids":["https://openalex.org/I18014758"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5014443986","display_name":"Paul D. Yoo","orcid":"https://orcid.org/0000-0001-7665-8616"},"institutions":[{"id":"https://openalex.org/I9300472","display_name":"Bournemouth University","ror":"https://ror.org/05wwcw481","country_code":"GB","type":"education","lineage":["https://openalex.org/I9300472"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Paul D. Yoo","raw_affiliation_strings":["Department of Computing and Informatics, Bournemouth University, Poole, U.K"],"affiliations":[{"raw_affiliation_string":"Department of Computing and Informatics, Bournemouth University, Poole, U.K","institution_ids":["https://openalex.org/I9300472"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5004034156","display_name":"Sami Muhaidat","orcid":"https://orcid.org/0000-0003-4649-9399"},"institutions":[{"id":"https://openalex.org/I176601375","display_name":"Khalifa University of Science and Technology","ror":"https://ror.org/05hffr360","country_code":"AE","type":"education","lineage":["https://openalex.org/I176601375"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Sami Muhaidat","raw_affiliation_strings":["Electrical and Computer Engineering Department, Khalifa University of Science Technology and Research, Abu Dhabi, UAE","University of Surrey, Guldford, U.K"],"affiliations":[{"raw_affiliation_string":"Electrical and Computer Engineering Department, Khalifa University of Science Technology and Research, Abu Dhabi, UAE","institution_ids":["https://openalex.org/I176601375"]},{"raw_affiliation_string":"University of Surrey, Guldford, U.K","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5074032096","display_name":"Kamal Taha","orcid":"https://orcid.org/0000-0002-6674-4614"},"institutions":[{"id":"https://openalex.org/I176601375","display_name":"Khalifa University of Science and Technology","ror":"https://ror.org/05hffr360","country_code":"AE","type":"education","lineage":["https://openalex.org/I176601375"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Kamal Taha","raw_affiliation_strings":["Electrical and Computer Engineering Department, Khalifa University of Science Technology and Research, Abu Dhabi, UAE"],"affiliations":[{"raw_affiliation_string":"Electrical and Computer Engineering Department, Khalifa University of Science Technology and Research, Abu Dhabi, UAE","institution_ids":["https://openalex.org/I176601375"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5039785089","display_name":"Kwangjo Kim","orcid":"https://orcid.org/0000-0002-8922-6203"},"institutions":[{"id":"https://openalex.org/I58716616","display_name":"Korea Institute of Science and Technology","ror":"https://ror.org/05kzfa883","country_code":"KR","type":"facility","lineage":["https://openalex.org/I27494661","https://openalex.org/I2801339556","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098","https://openalex.org/I4387152098","https://openalex.org/I58716616"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Kwangjo Kim","raw_affiliation_strings":["School of Computing, Korea Institute of Science and Technology, Daejeon, Korea"],"affiliations":[{"raw_affiliation_string":"School of Computing, Korea Institute of Science and Technology, Daejeon, Korea","institution_ids":["https://openalex.org/I58716616"]}]}],"institutions":[],"countries_distinct_count":4,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5047057664"],"corresponding_institution_ids":["https://openalex.org/I176601375"],"apc_list":null,"apc_paid":null,"fwci":12.594,"has_fulltext":false,"cited_by_count":139,"citation_normalized_percentile":{"value":0.98793745,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":"46","issue":"8","first_page":"1796","last_page":"1806"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7968222498893738},{"id":"https://openalex.org/keywords/payload","display_name":"Payload (computing)","score":0.7313317060470581},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.7018432021141052},{"id":"https://openalex.org/keywords/header","display_name":"Header","score":0.6252354383468628},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.617974042892456},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5294881463050842},{"id":"https://openalex.org/keywords/deep-packet-inspection","display_name":"Deep packet inspection","score":0.5001182556152344},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.48614808917045593},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.37998688220977783},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.2506343722343445},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.08722928166389465}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7968222498893738},{"id":"https://openalex.org/C134066672","wikidata":"https://www.wikidata.org/wiki/Q1424639","display_name":"Payload (computing)","level":3,"score":0.7313317060470581},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.7018432021141052},{"id":"https://openalex.org/C48105269","wikidata":"https://www.wikidata.org/wiki/Q1141160","display_name":"Header","level":2,"score":0.6252354383468628},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.617974042892456},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5294881463050842},{"id":"https://openalex.org/C204679922","wikidata":"https://www.wikidata.org/wiki/Q734252","display_name":"Deep packet inspection","level":3,"score":0.5001182556152344},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.48614808917045593},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.37998688220977783},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.2506343722343445},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.08722928166389465}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1109/tcyb.2015.2490802","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tcyb.2015.2490802","pdf_url":null,"source":{"id":"https://openalex.org/S4210191041","display_name":"IEEE Transactions on Cybernetics","issn_l":"2168-2267","issn":["2168-2267","2168-2275"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Cybernetics","raw_type":"journal-article"},{"id":"pmid:26540724","is_oa":false,"landing_page_url":"https://pubmed.ncbi.nlm.nih.gov/26540724","pdf_url":null,"source":{"id":"https://openalex.org/S4306525036","display_name":"PubMed","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE transactions on cybernetics","raw_type":null},{"id":"pmh:oai:eprints.bbk.ac.uk.oai2:24451","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306400466","display_name":"BIROn (Birkbeck, University of London)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I98259816","host_organization_name":"Birkbeck, University of London","host_organization_lineage":["https://openalex.org/I98259816"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"PeerReviewed"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.41999998688697815}],"awards":[{"id":"https://openalex.org/G1163351894","display_name":null,"funder_award_id":"NRF-2015R1A2A2A01006812","funder_id":"https://openalex.org/F4320322120","funder_display_name":"National Research Foundation of Korea"}],"funders":[{"id":"https://openalex.org/F4320322120","display_name":"National Research Foundation of Korea","ror":"https://ror.org/013aysd81"},{"id":"https://openalex.org/F4320322334","display_name":"Khalifa University of Science, Technology and Research","ror":"https://ror.org/05hffr360"},{"id":"https://openalex.org/F4320324161","display_name":"Korea Advanced Institute of Science and Technology","ror":"https://ror.org/05apxxy63"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":64,"referenced_works":["https://openalex.org/W48170608","https://openalex.org/W191098608","https://openalex.org/W1495061682","https://openalex.org/W1551705282","https://openalex.org/W1570448133","https://openalex.org/W1583098994","https://openalex.org/W1586284606","https://openalex.org/W1619532909","https://openalex.org/W1674877186","https://openalex.org/W1676351273","https://openalex.org/W1736726159","https://openalex.org/W1742813727","https://openalex.org/W1909494783","https://openalex.org/W1966809779","https://openalex.org/W1974508768","https://openalex.org/W1987004515","https://openalex.org/W1988225273","https://openalex.org/W2010351326","https://openalex.org/W2026621111","https://openalex.org/W2052745072","https://openalex.org/W2056168656","https://openalex.org/W2068874079","https://openalex.org/W2073119119","https://openalex.org/W2095195675","https://openalex.org/W2099452399","https://openalex.org/W2101109743","https://openalex.org/W2102671922","https://openalex.org/W2104893874","https://openalex.org/W2110720155","https://openalex.org/W2112086364","https://openalex.org/W2114996745","https://openalex.org/W2128785082","https://openalex.org/W2134195715","https://openalex.org/W2138798794","https://openalex.org/W2142149251","https://openalex.org/W2148323889","https://openalex.org/W2149706766","https://openalex.org/W2150800840","https://openalex.org/W2150847526","https://openalex.org/W2154874878","https://openalex.org/W2162718061","https://openalex.org/W2165409713","https://openalex.org/W2166015814","https://openalex.org/W2168248885","https://openalex.org/W2171331105","https://openalex.org/W2327660097","https://openalex.org/W2330820318","https://openalex.org/W2493051178","https://openalex.org/W2533050350","https://openalex.org/W2541577949","https://openalex.org/W2912934387","https://openalex.org/W2998216295","https://openalex.org/W3085162807","https://openalex.org/W3124529293","https://openalex.org/W4212883601","https://openalex.org/W4236137412","https://openalex.org/W4285719527","https://openalex.org/W6601964875","https://openalex.org/W6607784307","https://openalex.org/W6629652716","https://openalex.org/W6632924670","https://openalex.org/W6634779276","https://openalex.org/W6637214718","https://openalex.org/W7066667914"],"related_works":["https://openalex.org/W3044308011","https://openalex.org/W3175867593","https://openalex.org/W1971040605","https://openalex.org/W1523103140","https://openalex.org/W3160314615","https://openalex.org/W4293863310","https://openalex.org/W2171331105","https://openalex.org/W2398634398","https://openalex.org/W2082456656","https://openalex.org/W4212842074"],"abstract_inverted_index":{"Botnets,":[0],"which":[1],"consist":[2],"of":[3,46,95,131],"remotely":[4],"controlled":[5],"compromised":[6],"machines":[7],"called":[8],"bots,":[9],"provide":[10],"a":[11,141,146,156,168,186],"distributed":[12],"platform":[13],"for":[14,40],"several":[15],"threats":[16],"against":[17,31],"cyber":[18],"world":[19],"entities":[20],"and":[21,36,43,62,68,128,161,167,180,221],"enterprises.":[22],"Intrusion":[23],"detection":[24,207],"system":[25],"(IDS)":[26],"provides":[27],"an":[28],"efficient":[29],"countermeasure":[30],"botnets.":[32],"It":[33],"continually":[34],"monitors":[35],"analyzes":[37,106],"network":[38,158],"traffic":[39,115],"potential":[41],"vulnerabilities":[42],"possible":[44],"existence":[45],"active":[47,54],"attacks.":[48],"A":[49],"payload-inspection-based":[50],"IDS":[51,90,132],"(PI-IDS)":[52],"identifies":[53],"intrusion":[55],"attempts":[56],"by":[57,86],"inspecting":[58],"transmission":[59],"control":[60],"protocol":[61,65],"user":[63],"datagram":[64],"packet's":[66],"payload":[67],"comparing":[69],"it":[70,98,105],"with":[71],"previously":[72],"seen":[73],"attacks":[74],"signatures.":[75],"However,":[76],"the":[77,93,113,120,126,129,195,205],"PI-IDS":[78],"abilities":[79],"to":[80,109],"detect":[81],"intrusions":[82],"might":[83],"be":[84],"incapacitated":[85],"packet":[87,102,107],"encryption.":[88],"Traffic-based":[89],"(T-IDS)":[91],"alleviates":[92],"shortcomings":[94],"PI-IDS,":[96],"as":[97],"does":[99],"not":[100,118],"inspect":[101],"payload;":[103],"however,":[104],"header":[108],"identify":[110],"intrusions.":[111],"As":[112],"network's":[114],"grows":[116],"rapidly,":[117],"only":[119],"detection-rate":[121],"is":[122],"critical,":[123],"but":[124],"also":[125],"efficiency":[127],"scalability":[130],"become":[133],"more":[134],"significant.":[135],"In":[136],"this":[137],"paper,":[138],"we":[139],"propose":[140],"state-of-the-art":[142],"T-IDS":[143],"built":[144],"on":[145,155,185],"novel":[147],"randomized":[148,170],"data":[149],"partitioned":[150],"learning":[151],"model":[152,175],"(RDPLM),":[153],"relying":[154],"compact":[157],"feature":[159,162],"set":[160],"selection":[163],"techniques,":[164],"simplified":[165],"subspacing":[166],"multiple":[169],"meta-learning":[171],"technique.":[172],"The":[173],"proposed":[174,196],"has":[176],"achieved":[177],"99.984%":[178],"accuracy":[179],"21.38":[181],"s":[182],"training":[183],"time":[184],"well-known":[187,200],"benchmark":[188],"botnet":[189],"dataset.":[190],"Experiment":[191],"results":[192],"demonstrate":[193],"that":[194],"methodology":[197],"outperforms":[198],"other":[199],"machine-learning":[201],"models":[202],"used":[203],"in":[204],"same":[206],"task,":[208],"namely,":[209],"sequential":[210],"minimal":[211],"optimization,":[212],"deep":[213],"neural":[214],"network,":[215],"C4.5,":[216],"reduced":[217],"error":[218],"pruning":[219],"tree,":[220],"randomTree.":[222]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":19},{"year":2022,"cited_by_count":22},{"year":2021,"cited_by_count":15},{"year":2020,"cited_by_count":20},{"year":2019,"cited_by_count":12},{"year":2018,"cited_by_count":18},{"year":2017,"cited_by_count":13},{"year":2016,"cited_by_count":4},{"year":2015,"cited_by_count":1}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}