{"id":"https://openalex.org/W2109033797","doi":"https://doi.org/10.1145/1501434.1501455","title":"Detecting low-profile scans in TCP anomaly event data","display_name":"Detecting low-profile scans in TCP anomaly event data","publication_year":2006,"publication_date":"2006-10-30","ids":{"openalex":"https://openalex.org/W2109033797","doi":"https://doi.org/10.1145/1501434.1501455","mag":"2109033797"},"language":"en","primary_location":{"id":"doi:10.1145/1501434.1501455","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1501434.1501455","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5074507745","display_name":"J. Treurniet","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"J. Treurniet","raw_affiliation_strings":["Defence R&amp;D Canada -- Ottawa, Ottawa, Ontario, Canada"],"affiliations":[{"raw_affiliation_string":"Defence R&amp;D Canada -- Ottawa, Ottawa, Ontario, Canada","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5074507745"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.18039723,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.6895698308944702},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.635529100894928},{"id":"https://openalex.org/keywords/event","display_name":"Event (particle physics)","score":0.5915172696113586},{"id":"https://openalex.org/keywords/anomaly","display_name":"Anomaly (physics)","score":0.5183285474777222},{"id":"https://openalex.org/keywords/sorting","display_name":"Sorting","score":0.5039684176445007},{"id":"https://openalex.org/keywords/real-time-computing","display_name":"Real-time computing","score":0.44936054944992065},{"id":"https://openalex.org/keywords/sequence","display_name":"Sequence (biology)","score":0.43053707480430603},{"id":"https://openalex.org/keywords/state","display_name":"State (computer science)","score":0.4222549796104431},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.332785427570343},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.1791290044784546}],"concepts":[{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.6895698308944702},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.635529100894928},{"id":"https://openalex.org/C2779662365","wikidata":"https://www.wikidata.org/wiki/Q5416694","display_name":"Event (particle physics)","level":2,"score":0.5915172696113586},{"id":"https://openalex.org/C12997251","wikidata":"https://www.wikidata.org/wiki/Q567560","display_name":"Anomaly (physics)","level":2,"score":0.5183285474777222},{"id":"https://openalex.org/C111696304","wikidata":"https://www.wikidata.org/wiki/Q2303697","display_name":"Sorting","level":2,"score":0.5039684176445007},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.44936054944992065},{"id":"https://openalex.org/C2778112365","wikidata":"https://www.wikidata.org/wiki/Q3511065","display_name":"Sequence (biology)","level":2,"score":0.43053707480430603},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.4222549796104431},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.332785427570343},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.1791290044784546},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C54355233","wikidata":"https://www.wikidata.org/wiki/Q7162","display_name":"Genetics","level":1,"score":0.0},{"id":"https://openalex.org/C26873012","wikidata":"https://www.wikidata.org/wiki/Q214781","display_name":"Condensed matter physics","level":1,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1501434.1501455","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1501434.1501455","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W1495304983","https://openalex.org/W1542522493","https://openalex.org/W1576979152","https://openalex.org/W1591480890","https://openalex.org/W1649901946","https://openalex.org/W1988918299","https://openalex.org/W2101080231","https://openalex.org/W2109599309","https://openalex.org/W2117002131","https://openalex.org/W2122889548","https://openalex.org/W2128346726","https://openalex.org/W2186449981"],"related_works":["https://openalex.org/W2806741695","https://openalex.org/W4290647774","https://openalex.org/W3189286258","https://openalex.org/W3207797160","https://openalex.org/W3210364259","https://openalex.org/W4300558037","https://openalex.org/W2912112202","https://openalex.org/W2667207928","https://openalex.org/W4377864969","https://openalex.org/W2972971679"],"abstract_inverted_index":{"Anomalous":[0],"connections":[1],"in":[2],"TCP":[3,20],"traffic":[4],"can":[5,36,79],"be":[6,37,80],"detected":[7],"using":[8],"a":[9,19,23],"finite":[10],"state":[11],"machine":[12],"model":[13,35],"that":[14],"reflects":[15],"the":[16,53,60,90,107,124,130],"progression":[17],"of":[18,25,55,123,139],"connection":[21],"through":[22],"sequence":[24],"states":[26],"via":[27],"its":[28],"control":[29],"flags.":[30],"Anomalies":[31],"generated":[32],"by":[33,58],"this":[34],"associated":[38],"with":[39,62,92,100,116],"scanning":[40,56],"activity.":[41],"By":[42],"storing":[43],"these":[44],"anomalies":[45,104],"over":[46],"time,":[47],"it":[48],"is":[49],"possible":[50],"to":[51,64,88,105,132],"identify":[52],"presence":[54],"activity":[57],"sorting":[59],"data":[61,85,97],"respect":[63],"source":[65],"address,":[66],"destination":[67,70],"address":[68],"and":[69],"port.":[71],"In":[72],"particular,":[73],"low-profile":[74],"(slow":[75],"and/or":[76],"distributed)":[77],"scans":[78,134],"identified.":[81],"The":[82,120],"1999":[83],"DARPA":[84],"was":[86,98],"used":[87],"test":[89,106],"method,":[91],"no":[93],"false":[94,108],"negatives.":[95],"Operational":[96],"injected":[99],"crafted":[101],"slow":[102],"scan":[103],"negative":[109],"rate;":[110],"all":[111],"were":[112],"successfully":[113],"detected,":[114],"along":[115],"numerous":[117],"real":[118],"scans.":[119],"storage":[121],"requirements":[122],"system":[125],"are":[126],"quite":[127],"small,":[128],"giving":[129],"ability":[131],"store":[133],"for":[135],"extremely":[136],"long":[137],"periods":[138],"time.":[140]},"counts_by_year":[{"year":2013,"cited_by_count":2},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}