{"id":"https://openalex.org/W2006946731","doi":"https://doi.org/10.1145/2448556.2448559","title":"Applying Hadoop for log analysis toward distributed IDS","display_name":"Applying Hadoop for log analysis toward distributed IDS","publication_year":2013,"publication_date":"2013-01-17","ids":{"openalex":"https://openalex.org/W2006946731","doi":"https://doi.org/10.1145/2448556.2448559","mag":"2006946731"},"language":"en","primary_location":{"id":"doi:10.1145/2448556.2448559","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2448556.2448559","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054706141","display_name":"Jakrarin Therdphapiyanak","orcid":null},"institutions":[{"id":"https://openalex.org/I158708052","display_name":"Chulalongkorn University","ror":"https://ror.org/028wp3y58","country_code":"TH","type":"education","lineage":["https://openalex.org/I158708052"]}],"countries":["TH"],"is_corresponding":true,"raw_author_name":"Jakrarin Therdphapiyanak","raw_affiliation_strings":["Chulalongkorn University, Bangkok, Thailand","(Chulalongkorn University, Bangkok, Thailand)"],"affiliations":[{"raw_affiliation_string":"Chulalongkorn University, Bangkok, Thailand","institution_ids":["https://openalex.org/I158708052"]},{"raw_affiliation_string":"(Chulalongkorn University, Bangkok, Thailand)","institution_ids":["https://openalex.org/I158708052"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5087418875","display_name":"Krerk Piromsopa","orcid":"https://orcid.org/0000-0002-8190-4444"},"institutions":[{"id":"https://openalex.org/I158708052","display_name":"Chulalongkorn University","ror":"https://ror.org/028wp3y58","country_code":"TH","type":"education","lineage":["https://openalex.org/I158708052"]}],"countries":["TH"],"is_corresponding":false,"raw_author_name":"Krerk Piromsopa","raw_affiliation_strings":["Chulalongkorn University, Bangkok, Thailand","(Chulalongkorn University, Bangkok, Thailand)"],"affiliations":[{"raw_affiliation_string":"Chulalongkorn University, Bangkok, Thailand","institution_ids":["https://openalex.org/I158708052"]},{"raw_affiliation_string":"(Chulalongkorn University, Bangkok, Thailand)","institution_ids":["https://openalex.org/I158708052"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5054706141"],"corresponding_institution_ids":["https://openalex.org/I158708052"],"apc_list":null,"apc_paid":null,"fwci":3.2621,"has_fulltext":false,"cited_by_count":26,"citation_normalized_percentile":{"value":0.92483343,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7818938493728638},{"id":"https://openalex.org/keywords/volume","display_name":"Volume (thermodynamics)","score":0.7726998329162598},{"id":"https://openalex.org/keywords/digital-forensics","display_name":"Digital forensics","score":0.6545006036758423},{"id":"https://openalex.org/keywords/traffic-analysis","display_name":"Traffic analysis","score":0.6231715083122253},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.521141767501831},{"id":"https://openalex.org/keywords/traffic-volume","display_name":"Traffic volume","score":0.5054409503936768},{"id":"https://openalex.org/keywords/big-data","display_name":"Big data","score":0.4688143730163574},{"id":"https://openalex.org/keywords/network-forensics","display_name":"Network forensics","score":0.4592452347278595},{"id":"https://openalex.org/keywords/scale","display_name":"Scale (ratio)","score":0.4435848891735077},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.20416873693466187},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.13305097818374634},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.07918715476989746}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7818938493728638},{"id":"https://openalex.org/C20556612","wikidata":"https://www.wikidata.org/wiki/Q4469374","display_name":"Volume (thermodynamics)","level":2,"score":0.7726998329162598},{"id":"https://openalex.org/C84418412","wikidata":"https://www.wikidata.org/wiki/Q3246940","display_name":"Digital forensics","level":2,"score":0.6545006036758423},{"id":"https://openalex.org/C2781317605","wikidata":"https://www.wikidata.org/wiki/Q7832483","display_name":"Traffic analysis","level":2,"score":0.6231715083122253},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.521141767501831},{"id":"https://openalex.org/C168443057","wikidata":"https://www.wikidata.org/wiki/Q7001223","display_name":"Traffic volume","level":2,"score":0.5054409503936768},{"id":"https://openalex.org/C75684735","wikidata":"https://www.wikidata.org/wiki/Q858810","display_name":"Big data","level":2,"score":0.4688143730163574},{"id":"https://openalex.org/C50747538","wikidata":"https://www.wikidata.org/wiki/Q7001032","display_name":"Network forensics","level":3,"score":0.4592452347278595},{"id":"https://openalex.org/C2778755073","wikidata":"https://www.wikidata.org/wiki/Q10858537","display_name":"Scale (ratio)","level":2,"score":0.4435848891735077},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.20416873693466187},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.13305097818374634},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.07918715476989746},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C22212356","wikidata":"https://www.wikidata.org/wiki/Q775325","display_name":"Transport engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2448556.2448559","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2448556.2448559","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":5,"referenced_works":["https://openalex.org/W1991520194","https://openalex.org/W2142030478","https://openalex.org/W2146363693","https://openalex.org/W2146762855","https://openalex.org/W3105682467"],"related_works":["https://openalex.org/W2972427363","https://openalex.org/W2121070677","https://openalex.org/W2161391695","https://openalex.org/W4238452393","https://openalex.org/W1500698787","https://openalex.org/W188028618","https://openalex.org/W2489557937","https://openalex.org/W1970399788","https://openalex.org/W4385257722","https://openalex.org/W2111038567"],"abstract_inverted_index":{"In":[0,58],"this":[1],"paper,":[2],"we":[3],"apply":[4],"Hadoop":[5],"for":[6,70],"large-scale":[7],"log":[8],"analysis.":[9],"Our":[10],"main":[11],"objective":[12],"is":[13,37,48,63],"to":[14,25,51],"efficiently":[15],"detect":[16],"an":[17,61,67],"abnormal":[18],"traffic":[19,35],"from":[20],"high":[21,27],"volume":[22,28],"data.":[23,57],"Due":[24],"the":[26,32,40],"of":[29,34,42],"data":[30],"traffics,":[31],"size":[33],"logs":[36],"usually":[38,64],"exceed":[39],"capacity":[41],"a":[43],"standalone":[44],"IDS.":[45],"Thus,":[46],"it":[47],"practically":[49],"impossible":[50],"perform":[52],"useful":[53],"analysis":[54,62],"with":[55],"these":[56],"most":[59],"cases,":[60],"done":[65],"when":[66],"attack":[68],"occurred":[69],"digital":[71],"forensics.":[72]},"counts_by_year":[{"year":2022,"cited_by_count":5},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":5},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":2},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":4},{"year":2014,"cited_by_count":3},{"year":2013,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}