{"id":"https://openalex.org/W1976179050","doi":"https://doi.org/10.1109/wifs.2012.6412633","title":"Detecting anomalous network hosts by means of PCA","display_name":"Detecting anomalous network hosts by means of PCA","publication_year":2012,"publication_date":"2012-12-01","ids":{"openalex":"https://openalex.org/W1976179050","doi":"https://doi.org/10.1109/wifs.2012.6412633","mag":"1976179050"},"language":"en","primary_location":{"id":"doi:10.1109/wifs.2012.6412633","is_oa":false,"landing_page_url":"https://doi.org/10.1109/wifs.2012.6412633","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2012 IEEE International Workshop on Information Forensics and Security (WIFS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5059337672","display_name":"Tom\u00e1\u0161 Pevn\u00fd","orcid":"https://orcid.org/0000-0002-5768-9713"},"institutions":[{"id":"https://openalex.org/I44504214","display_name":"Czech Technical University in Prague","ror":"https://ror.org/03kqpb082","country_code":"CZ","type":"education","lineage":["https://openalex.org/I44504214"]}],"countries":["CZ"],"is_corresponding":true,"raw_author_name":"Tomas Pevny","raw_affiliation_strings":["Department of Computers, Czech Technical University in Prague, Praha, Czech Republic","Department of Computers, Czech Technical University in Prague, Technick\u00e1 2, Praha 6,166 27, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Computers, Czech Technical University in Prague, Praha, Czech Republic","institution_ids":["https://openalex.org/I44504214"]},{"raw_affiliation_string":"Department of Computers, Czech Technical University in Prague, Technick\u00e1 2, Praha 6,166 27, Czech Republic","institution_ids":["https://openalex.org/I44504214"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063980194","display_name":"Martin \u0158eh\u00e1k","orcid":null},"institutions":[{"id":"https://openalex.org/I44504214","display_name":"Czech Technical University in Prague","ror":"https://ror.org/03kqpb082","country_code":"CZ","type":"education","lineage":["https://openalex.org/I44504214"]}],"countries":["CZ"],"is_corresponding":false,"raw_author_name":"Martin Rehak","raw_affiliation_strings":["Department of Computers, Czech Technical University in Prague, Praha, Czech Republic","Department of Computers, Czech Technical University in Prague, Technick\u00e1 2, Praha 6,166 27, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Computers, Czech Technical University in Prague, Praha, Czech Republic","institution_ids":["https://openalex.org/I44504214"]},{"raw_affiliation_string":"Department of Computers, Czech Technical University in Prague, Technick\u00e1 2, Praha 6,166 27, Czech Republic","institution_ids":["https://openalex.org/I44504214"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5021544115","display_name":"Martin Grill","orcid":"https://orcid.org/0000-0003-0824-1557"},"institutions":[{"id":"https://openalex.org/I44504214","display_name":"Czech Technical University in Prague","ror":"https://ror.org/03kqpb082","country_code":"CZ","type":"education","lineage":["https://openalex.org/I44504214"]}],"countries":["CZ"],"is_corresponding":false,"raw_author_name":"Martin Grill","raw_affiliation_strings":["Department of Computers, Czech Technical University in Prague, Praha, Czech Republic","Department of Computers, Czech Technical University in Prague, Technick\u00e1 2, Praha 6,166 27, Czech Republic"],"affiliations":[{"raw_affiliation_string":"Department of Computers, Czech Technical University in Prague, Praha, Czech Republic","institution_ids":["https://openalex.org/I44504214"]},{"raw_affiliation_string":"Department of Computers, Czech Technical University in Prague, Technick\u00e1 2, Praha 6,166 27, Czech Republic","institution_ids":["https://openalex.org/I44504214"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5059337672"],"corresponding_institution_ids":["https://openalex.org/I44504214"],"apc_list":null,"apc_paid":null,"fwci":1.0638,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.76991369,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"103","last_page":"108"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7883711457252502},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.6689520478248596},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.665257453918457},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6612269878387451},{"id":"https://openalex.org/keywords/principal-component-analysis","display_name":"Principal component analysis","score":0.6218878626823425},{"id":"https://openalex.org/keywords/detector","display_name":"Detector","score":0.5892024040222168},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5794743299484253},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.5257383584976196},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.4893783926963806},{"id":"https://openalex.org/keywords/deep-packet-inspection","display_name":"Deep packet inspection","score":0.4331130385398865},{"id":"https://openalex.org/keywords/anomaly","display_name":"Anomaly (physics)","score":0.42269521951675415},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3660670518875122},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.2564488649368286}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7883711457252502},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.6689520478248596},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.665257453918457},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6612269878387451},{"id":"https://openalex.org/C27438332","wikidata":"https://www.wikidata.org/wiki/Q2873","display_name":"Principal component analysis","level":2,"score":0.6218878626823425},{"id":"https://openalex.org/C94915269","wikidata":"https://www.wikidata.org/wiki/Q1834857","display_name":"Detector","level":2,"score":0.5892024040222168},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5794743299484253},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.5257383584976196},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.4893783926963806},{"id":"https://openalex.org/C204679922","wikidata":"https://www.wikidata.org/wiki/Q734252","display_name":"Deep packet inspection","level":3,"score":0.4331130385398865},{"id":"https://openalex.org/C12997251","wikidata":"https://www.wikidata.org/wiki/Q567560","display_name":"Anomaly (physics)","level":2,"score":0.42269521951675415},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3660670518875122},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.2564488649368286},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C26873012","wikidata":"https://www.wikidata.org/wiki/Q214781","display_name":"Condensed matter physics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/wifs.2012.6412633","is_oa":false,"landing_page_url":"https://doi.org/10.1109/wifs.2012.6412633","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2012 IEEE International Workshop on Information Forensics and Security (WIFS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320321006","display_name":"Grantov\u00e1 Agentura \u010cesk\u00e9 Republiky","ror":"https://ror.org/01pv73b02"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":14,"referenced_works":["https://openalex.org/W187043655","https://openalex.org/W1999935041","https://openalex.org/W2007562169","https://openalex.org/W2044285442","https://openalex.org/W2052111933","https://openalex.org/W2062013297","https://openalex.org/W2141864406","https://openalex.org/W2144936818","https://openalex.org/W2164210932","https://openalex.org/W2169623711","https://openalex.org/W3009746682","https://openalex.org/W4248484754","https://openalex.org/W6607543680","https://openalex.org/W6684172536"],"related_works":["https://openalex.org/W2806741695","https://openalex.org/W4290647774","https://openalex.org/W3189286258","https://openalex.org/W3207797160","https://openalex.org/W3210364259","https://openalex.org/W4300558037","https://openalex.org/W2912112202","https://openalex.org/W2667207928","https://openalex.org/W4377864969","https://openalex.org/W2972971679"],"abstract_inverted_index":{"This":[0],"paper":[1],"focuses":[2],"on":[3,42,83,111,118],"the":[4,14,37,46,139],"identification":[5],"of":[6,33,61,69,79,116,132,141],"anomalous":[7],"hosts":[8],"within":[9],"a":[10],"computer":[11],"network":[12],"with":[13,92],"motivation":[15],"to":[16,39,74,108],"detect":[17,129],"attacks":[18],"and/or":[19],"other":[20],"unwanted":[21],"and":[22,56,72,106,137],"suspicious":[23],"traffic.":[24],"The":[25,64,102,121],"proposed":[26,65],"detection":[27,55],"method":[28,38,47,66],"does":[29],"not":[30],"use":[31],"content":[32],"packets,":[34],"which":[35,97,134],"enables":[36],"be":[40],"used":[41],"encrypted":[43],"networks.":[44],"Moreover,":[45],"has":[48],"very":[49],"low":[50],"computational":[51],"complexity":[52],"allowing":[53],"fast":[54],"response":[57],"important":[58],"for":[59],"limitation":[60],"potential":[62],"damages.":[63],"uses":[67],"entropies":[68],"IP":[70],"addresses":[71],"ports":[73],"build":[75],"two":[76,88,93],"complementary":[77],"models":[78,89],"host's":[80],"traffic":[81,117],"based":[82],"principal":[84],"component":[85],"analysis.":[86],"These":[87],"are":[90,104],"coupled":[91],"orthogonal":[94],"anomaly":[95],"definitions,":[96],"gives":[98],"four":[99],"different":[100],"detectors.":[101],"methods":[103],"evaluated":[105],"compared":[107],"prior":[109],"art":[110],"one":[112],"week":[113],"long":[114],"capture":[115],"university":[119],"network.":[120],"experiments":[122],"reveals":[123],"that":[124],"no":[125],"single":[126],"detector":[127],"can":[128],"all":[130],"types":[131],"anomalies,":[133],"is":[135],"expected":[136],"stresses":[138],"importance":[140],"ensemble":[142],"approach":[143],"towards":[144],"intrusion":[145],"detection.":[146]},"counts_by_year":[{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":2},{"year":2015,"cited_by_count":2},{"year":2014,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}