{"id":"https://openalex.org/W2016491781","doi":"https://doi.org/10.1145/1501434.1501474","title":"Using self-organizing maps to build an attack map for forensic analysis","display_name":"Using self-organizing maps to build an attack map for forensic analysis","publication_year":2006,"publication_date":"2006-10-30","ids":{"openalex":"https://openalex.org/W2016491781","doi":"https://doi.org/10.1145/1501434.1501474","mag":"2016491781"},"language":"en","primary_location":{"id":"doi:10.1145/1501434.1501474","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1501434.1501474","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5014127435","display_name":"H. G\u00fcne\u015f Kayac\u0131k","orcid":null},"institutions":[{"id":"https://openalex.org/I129902397","display_name":"Dalhousie University","ror":"https://ror.org/01e6qks80","country_code":"CA","type":"education","lineage":["https://openalex.org/I129902397"]}],"countries":["CA"],"is_corresponding":true,"raw_author_name":"H. G\u00fcne\u015f Kayacik","raw_affiliation_strings":["Dalhousie University, Halifax, Nova Scotia","Dalhousie University, Halifax, Nova Scotia,"],"affiliations":[{"raw_affiliation_string":"Dalhousie University, Halifax, Nova Scotia","institution_ids":["https://openalex.org/I129902397"]},{"raw_affiliation_string":"Dalhousie University, Halifax, Nova Scotia,","institution_ids":["https://openalex.org/I129902397"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5008462534","display_name":"A. Nur Zincir\u2010Heywood","orcid":"https://orcid.org/0000-0003-2796-7265"},"institutions":[{"id":"https://openalex.org/I129902397","display_name":"Dalhousie University","ror":"https://ror.org/01e6qks80","country_code":"CA","type":"education","lineage":["https://openalex.org/I129902397"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"A. Nur Zincir-Heywood","raw_affiliation_strings":["Dalhousie University, Halifax, Nova Scotia","Dalhousie University, Halifax, Nova Scotia,"],"affiliations":[{"raw_affiliation_string":"Dalhousie University, Halifax, Nova Scotia","institution_ids":["https://openalex.org/I129902397"]},{"raw_affiliation_string":"Dalhousie University, Halifax, Nova Scotia,","institution_ids":["https://openalex.org/I129902397"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5014127435"],"corresponding_institution_ids":["https://openalex.org/I129902397"],"apc_list":null,"apc_paid":null,"fwci":0.6036,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.71049917,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9891999959945679,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9797000288963318,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7724560499191284},{"id":"https://openalex.org/keywords/self-organizing-map","display_name":"Self-organizing map","score":0.6759002208709717},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.5544136762619019},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.543856143951416},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.5269699096679688},{"id":"https://openalex.org/keywords/representation","display_name":"Representation (politics)","score":0.5169005393981934},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4436955153942108},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.35408008098602295},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.30467647314071655},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.22137439250946045}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7724560499191284},{"id":"https://openalex.org/C111168008","wikidata":"https://www.wikidata.org/wiki/Q1136838","display_name":"Self-organizing map","level":3,"score":0.6759002208709717},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.5544136762619019},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.543856143951416},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.5269699096679688},{"id":"https://openalex.org/C2776359362","wikidata":"https://www.wikidata.org/wiki/Q2145286","display_name":"Representation (politics)","level":3,"score":0.5169005393981934},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4436955153942108},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.35408008098602295},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.30467647314071655},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.22137439250946045},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C94625758","wikidata":"https://www.wikidata.org/wiki/Q7163","display_name":"Politics","level":2,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1501434.1501474","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1501434.1501474","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.6800000071525574}],"awards":[],"funders":[{"id":"https://openalex.org/F4320322337","display_name":"Killam Trusts","ror":"https://ror.org/021cbtn85"},{"id":"https://openalex.org/F4320334904","display_name":"National Institute for Materials Science","ror":"https://ror.org/026v1ze26"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W76202575","https://openalex.org/W259338706","https://openalex.org/W1516506771","https://openalex.org/W1519168681","https://openalex.org/W1610560206","https://openalex.org/W1679913846","https://openalex.org/W1988918299","https://openalex.org/W2059942088","https://openalex.org/W2132915272","https://openalex.org/W2140190241","https://openalex.org/W2147767253","https://openalex.org/W2166657964","https://openalex.org/W2262045390","https://openalex.org/W3036846224","https://openalex.org/W6680704940"],"related_works":["https://openalex.org/W2034551444","https://openalex.org/W2023416609","https://openalex.org/W2051216975","https://openalex.org/W2982550593","https://openalex.org/W1844640764","https://openalex.org/W2144077772","https://openalex.org/W2978573861","https://openalex.org/W926742521","https://openalex.org/W2013265235","https://openalex.org/W2002057163"],"abstract_inverted_index":{"In":[0],"this":[1,42],"work,":[2],"we":[3],"focus":[4],"on":[5,78,93],"developing":[6],"behavioral":[7],"models":[8,26],"of":[9,71,113],"known":[10,57,72,115],"attacks":[11,58,85,99,108],"to":[12,16,30,52,64,106],"help":[13],"security":[14,35],"experts":[15,36],"identify":[17],"the":[18,54,94,107,114],"similarities":[19],"between":[20,56],"attacks.":[21,73,116],"Furthermore,":[22],"these":[23],"attack":[24],"behavior":[25,88],"can":[27],"be":[28],"used":[29,63],"analyze":[31],"zero-day":[32],"attacks,":[33],"which":[34],"have":[37],"limited":[38],"knowledge":[39],"of.":[40],"To":[41],"end,":[43],"a":[44,66],"Self":[45],"Organizing":[46],"Feature":[47],"Map":[48],"(SOM)":[49],"is":[50,62,76],"employed":[51],"model":[53],"relationship":[55],"and":[59],"U-Matrix":[60],"representation":[61],"create":[65],"two":[67],"dimensional":[68],"topological":[69],"map":[70],"The":[74],"approach":[75],"evaluated":[77],"KDD'99":[79],"data":[80],"set.":[81],"Results":[82],"show":[83],"that":[84,109],"with":[86],"similar":[87,104],"patterns":[89],"are":[90,100,110],"placed":[91],"together":[92],"map.":[95],"Moreover,":[96],"when":[97],"new":[98],"presented,":[101],"SOM":[102],"assigned":[103],"labels":[105],"newer":[111],"versions":[112]},"counts_by_year":[{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":2},{"year":2015,"cited_by_count":2},{"year":2013,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}