{"id":"https://openalex.org/W4385246573","doi":"https://doi.org/10.1109/tnsm.2023.3298533","title":"Unknown, Atypical and Polymorphic Network Intrusion Detection: A Systematic Survey","display_name":"Unknown, Atypical and Polymorphic Network Intrusion Detection: A Systematic Survey","publication_year":2023,"publication_date":"2023-07-25","ids":{"openalex":"https://openalex.org/W4385246573","doi":"https://doi.org/10.1109/tnsm.2023.3298533"},"language":"en","primary_location":{"id":"doi:10.1109/tnsm.2023.3298533","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2023.3298533","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5033918187","display_name":"Ulya Sabeel","orcid":"https://orcid.org/0000-0001-7651-1024"},"institutions":[{"id":"https://openalex.org/I39470171","display_name":"Ontario Tech University","ror":"https://ror.org/016zre027","country_code":"CA","type":"education","lineage":["https://openalex.org/I39470171"]}],"countries":["CA"],"is_corresponding":true,"raw_author_name":"Ulya Sabeel","raw_affiliation_strings":["Faculty of Business and IT, University of Ontario Institute of Technology, Oshawa, Canada"],"raw_orcid":"https://orcid.org/0000-0001-7651-1024","affiliations":[{"raw_affiliation_string":"Faculty of Business and IT, University of Ontario Institute of Technology, Oshawa, Canada","institution_ids":["https://openalex.org/I39470171"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001883078","display_name":"Shahram Shah Heydari","orcid":"https://orcid.org/0000-0002-6107-7728"},"institutions":[{"id":"https://openalex.org/I39470171","display_name":"Ontario Tech University","ror":"https://ror.org/016zre027","country_code":"CA","type":"education","lineage":["https://openalex.org/I39470171"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Shahram Shah Heydari","raw_affiliation_strings":["Faculty of Business and IT, University of Ontario Institute of Technology, Oshawa, Canada"],"raw_orcid":"https://orcid.org/0000-0002-6107-7728","affiliations":[{"raw_affiliation_string":"Faculty of Business and IT, University of Ontario Institute of Technology, Oshawa, Canada","institution_ids":["https://openalex.org/I39470171"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088109450","display_name":"Khalil El\u2010Khatib","orcid":"https://orcid.org/0000-0002-5960-6942"},"institutions":[{"id":"https://openalex.org/I39470171","display_name":"Ontario Tech University","ror":"https://ror.org/016zre027","country_code":"CA","type":"education","lineage":["https://openalex.org/I39470171"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Khalil El-Khatib","raw_affiliation_strings":["Faculty of Business and IT, University of Ontario Institute of Technology, Oshawa, Canada"],"raw_orcid":"https://orcid.org/0000-0002-5960-6942","affiliations":[{"raw_affiliation_string":"Faculty of Business and IT, University of Ontario Institute of Technology, Oshawa, Canada","institution_ids":["https://openalex.org/I39470171"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5026935022","display_name":"Khalid Elgazzar","orcid":"https://orcid.org/0000-0002-5892-632X"},"institutions":[{"id":"https://openalex.org/I39470171","display_name":"Ontario Tech University","ror":"https://ror.org/016zre027","country_code":"CA","type":"education","lineage":["https://openalex.org/I39470171"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Khalid Elgazzar","raw_affiliation_strings":["Faculty of Engineering and Applied Science, University of Ontario Institute of Technology, Oshawa, Canada"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Faculty of Engineering and Applied Science, University of Ontario Institute of Technology, Oshawa, Canada","institution_ids":["https://openalex.org/I39470171"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5033918187"],"corresponding_institution_ids":["https://openalex.org/I39470171"],"apc_list":null,"apc_paid":null,"fwci":3.7383,"has_fulltext":false,"cited_by_count":19,"citation_normalized_percentile":{"value":0.93662961,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":"21","issue":"1","first_page":"1190","last_page":"1212"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.44466933608055115},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.36407071352005005},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.29160380363464355}],"concepts":[{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.44466933608055115},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.36407071352005005},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.29160380363464355}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tnsm.2023.3298533","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2023.3298533","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":131,"referenced_works":["https://openalex.org/W42722137","https://openalex.org/W433644524","https://openalex.org/W1483650506","https://openalex.org/W1984670829","https://openalex.org/W2026621111","https://openalex.org/W2031163547","https://openalex.org/W2034065435","https://openalex.org/W2038974217","https://openalex.org/W2043314203","https://openalex.org/W2093331366","https://openalex.org/W2099940443","https://openalex.org/W2128880732","https://openalex.org/W2158569874","https://openalex.org/W2163345210","https://openalex.org/W2189456526","https://openalex.org/W2213612645","https://openalex.org/W2282821441","https://openalex.org/W2296509296","https://openalex.org/W2335999708","https://openalex.org/W2342408547","https://openalex.org/W2555437177","https://openalex.org/W2576897537","https://openalex.org/W2597472767","https://openalex.org/W2617118748","https://openalex.org/W2626009498","https://openalex.org/W2743475759","https://openalex.org/W2749908420","https://openalex.org/W2762776925","https://openalex.org/W2767863364","https://openalex.org/W2782735691","https://openalex.org/W2783284780","https://openalex.org/W2789828921","https://openalex.org/W2803881474","https://openalex.org/W2861867928","https://openalex.org/W2886020981","https://openalex.org/W2891833507","https://openalex.org/W2901461022","https://openalex.org/W2904969546","https://openalex.org/W2908261578","https://openalex.org/W2911278693","https://openalex.org/W2913771179","https://openalex.org/W2914502888","https://openalex.org/W2915839841","https://openalex.org/W2919021187","https://openalex.org/W2921708219","https://openalex.org/W2921871306","https://openalex.org/W2924211215","https://openalex.org/W2947802941","https://openalex.org/W2952298682","https://openalex.org/W2963391384","https://openalex.org/W2963426391","https://openalex.org/W2969495950","https://openalex.org/W2969863169","https://openalex.org/W2972462063","https://openalex.org/W2978475941","https://openalex.org/W2982682021","https://openalex.org/W2997990748","https://openalex.org/W3012965704","https://openalex.org/W3015177549","https://openalex.org/W3015566618","https://openalex.org/W3017158853","https://openalex.org/W3018321377","https://openalex.org/W3018495625","https://openalex.org/W3021740526","https://openalex.org/W3024905798","https://openalex.org/W3034995119","https://openalex.org/W3035037193","https://openalex.org/W3035311645","https://openalex.org/W3036013726","https://openalex.org/W3037824821","https://openalex.org/W3041133507","https://openalex.org/W3047132966","https://openalex.org/W3090643576","https://openalex.org/W3096913503","https://openalex.org/W3100366369","https://openalex.org/W3101378920","https://openalex.org/W3105087971","https://openalex.org/W3105952379","https://openalex.org/W3109037541","https://openalex.org/W3112910139","https://openalex.org/W3115696055","https://openalex.org/W3117043094","https://openalex.org/W3119207006","https://openalex.org/W3122623847","https://openalex.org/W3125062534","https://openalex.org/W3132977238","https://openalex.org/W3153872861","https://openalex.org/W3156522613","https://openalex.org/W3160392467","https://openalex.org/W3165871547","https://openalex.org/W3168193358","https://openalex.org/W3172076356","https://openalex.org/W3172891972","https://openalex.org/W3176455725","https://openalex.org/W3181232393","https://openalex.org/W3184395191","https://openalex.org/W3197004086","https://openalex.org/W3201617817","https://openalex.org/W3202719912","https://openalex.org/W3203072121","https://openalex.org/W3206674745","https://openalex.org/W3208376151","https://openalex.org/W3212046143","https://openalex.org/W3216965265","https://openalex.org/W4200228415","https://openalex.org/W4206101301","https://openalex.org/W4210795523","https://openalex.org/W4220719329","https://openalex.org/W4220916459","https://openalex.org/W4220943895","https://openalex.org/W4226247258","https://openalex.org/W4229012250","https://openalex.org/W4280643326","https://openalex.org/W4286005659","https://openalex.org/W4287643567","https://openalex.org/W4288056629","https://openalex.org/W4293093536","https://openalex.org/W4293568373","https://openalex.org/W4312234998","https://openalex.org/W4313327409","https://openalex.org/W4322493038","https://openalex.org/W6602002561","https://openalex.org/W6681652963","https://openalex.org/W6730523353","https://openalex.org/W6732343696","https://openalex.org/W6737947904","https://openalex.org/W6759438597","https://openalex.org/W6774950239","https://openalex.org/W6780248173","https://openalex.org/W6811004965","https://openalex.org/W7016021835"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W2382290278","https://openalex.org/W4395014643","https://openalex.org/W4391913857","https://openalex.org/W2350741829"],"abstract_inverted_index":{"Agile":[0],"network":[1,73,114],"security":[2],"is":[3,10,92],"paramount":[4],"in":[5,127],"our":[6],"modern":[7],"world":[8],"which":[9],"currently":[11],"dominated":[12],"by":[13],"Internet":[14],"systems":[15,44],"and":[16,34,37,55,62,89,112,122,130],"expanding":[17],"digital":[18,22],"spaces.":[19],"This":[20],"rapid":[21],"transformation":[23],"has":[24],"created":[25],"more":[26],"opportunities":[27],"for":[28,108],"cyberattackers":[29],"to":[30,60,84,94],"exploit":[31],"different":[32],"vulnerabilities":[33],"launch":[35],"sophisticated":[36],"continuously":[38],"evolving":[39],"cyberattacks.":[40,65],"Increasingly,":[41],"intrusion":[42],"detection":[43],"are":[45],"relying":[46],"on":[47,51],"new":[48],"methods":[49],"based":[50],"Machine":[52],"Learning":[53,57],"(ML)":[54],"Deep":[56],"(DL)":[58],"techniques":[59,68],"detect":[61],"mitigate":[63],"such":[64,67],"While":[66],"normally":[69],"can":[70],"identify":[71,85,131],"known":[72],"attack":[74],"patterns":[75],"with":[76],"a":[77,102],"reasonable":[78],"degree":[79],"of":[80,105],"success,":[81],"their":[82],"ability":[83],"complicated":[86],"atypical,":[87,111],"polymorphic,":[88],"unknown":[90],"attacks":[91,115],"shown":[93],"be":[95],"limited.":[96],"In":[97],"this":[98,128],"paper,":[99],"we":[100],"present":[101],"comprehensive":[103],"survey":[104],"recent":[106],"research":[107,134],"detecting":[109],"unknown,":[110],"polymorphic":[113],"using":[116],"DL":[117],"techniques.":[118],"We":[119],"further":[120],"highlight":[121],"discuss":[123],"the":[124,132],"main":[125],"challenges":[126],"area":[129],"future":[133],"directions.":[135]},"counts_by_year":[{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":9},{"year":2023,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}