{"id":"https://openalex.org/W2066279840","doi":"https://doi.org/10.1145/2557547.2557562","title":"Situational awareness through reasoning on network incidents","display_name":"Situational awareness through reasoning on network incidents","publication_year":2014,"publication_date":"2014-02-25","ids":{"openalex":"https://openalex.org/W2066279840","doi":"https://doi.org/10.1145/2557547.2557562","mag":"2066279840"},"language":"en","primary_location":{"id":"doi:10.1145/2557547.2557562","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2557547.2557562","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th ACM conference on Data and application security and privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5062519505","display_name":"Anna Squicciarini","orcid":"https://orcid.org/0000-0002-7396-1895"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Anna Cinzia Squicciarini","raw_affiliation_strings":["Pennsylvania State University, University Park, PA, USA"],"affiliations":[{"raw_affiliation_string":"Pennsylvania State University, University Park, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5059881481","display_name":"Giuseppe Petracca","orcid":null},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Giuseppe Petracca","raw_affiliation_strings":["Pennsylvania State University, University Park, PA, USA"],"affiliations":[{"raw_affiliation_string":"Pennsylvania State University, University Park, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029183392","display_name":"William Horne","orcid":null},"institutions":[{"id":"https://openalex.org/I1324840837","display_name":"Hewlett-Packard (United States)","ror":"https://ror.org/059rn9488","country_code":"US","type":"company","lineage":["https://openalex.org/I1324840837"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"William G. Horne","raw_affiliation_strings":["Hewlett-Packard Laboratories, Princeton, NJ, USA","Hewlett-Packard Laboratories, Princeton , NJ, USA"],"affiliations":[{"raw_affiliation_string":"Hewlett-Packard Laboratories, Princeton, NJ, USA","institution_ids":["https://openalex.org/I1324840837"]},{"raw_affiliation_string":"Hewlett-Packard Laboratories, Princeton , NJ, USA","institution_ids":["https://openalex.org/I1324840837"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5048005721","display_name":"Aurnob Nath","orcid":null},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Aurnob Nath","raw_affiliation_strings":["Pennsylvania State University, University Park, PA, USA"],"affiliations":[{"raw_affiliation_string":"Pennsylvania State University, University Park, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5062519505"],"corresponding_institution_ids":["https://openalex.org/I130769515"],"apc_list":null,"apc_paid":null,"fwci":2.20605833,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.88880087,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"111","last_page":"122"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/situation-awareness","display_name":"Situation awareness","score":0.8448572754859924},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7889137268066406},{"id":"https://openalex.org/keywords/inference","display_name":"Inference","score":0.692798912525177},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.6673535108566284},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.572940468788147},{"id":"https://openalex.org/keywords/network-monitoring","display_name":"Network monitoring","score":0.5550099015235901},{"id":"https://openalex.org/keywords/situation-analysis","display_name":"Situation analysis","score":0.5116334557533264},{"id":"https://openalex.org/keywords/network-administrator","display_name":"Network administrator","score":0.49796509742736816},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.49142539501190186},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4597414433956146},{"id":"https://openalex.org/keywords/situational-ethics","display_name":"Situational ethics","score":0.44086509943008423},{"id":"https://openalex.org/keywords/case-based-reasoning","display_name":"Case-based reasoning","score":0.4287439286708832},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.34843337535858154},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.33953243494033813},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.12481683492660522},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.09483146667480469}],"concepts":[{"id":"https://openalex.org/C145804949","wikidata":"https://www.wikidata.org/wiki/Q478123","display_name":"Situation awareness","level":2,"score":0.8448572754859924},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7889137268066406},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.692798912525177},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.6673535108566284},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.572940468788147},{"id":"https://openalex.org/C81877898","wikidata":"https://www.wikidata.org/wiki/Q1965787","display_name":"Network monitoring","level":2,"score":0.5550099015235901},{"id":"https://openalex.org/C14911803","wikidata":"https://www.wikidata.org/wiki/Q7532148","display_name":"Situation analysis","level":2,"score":0.5116334557533264},{"id":"https://openalex.org/C2779173999","wikidata":"https://www.wikidata.org/wiki/Q680296","display_name":"Network administrator","level":2,"score":0.49796509742736816},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.49142539501190186},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4597414433956146},{"id":"https://openalex.org/C9114305","wikidata":"https://www.wikidata.org/wiki/Q1428317","display_name":"Situational ethics","level":2,"score":0.44086509943008423},{"id":"https://openalex.org/C20162079","wikidata":"https://www.wikidata.org/wiki/Q1151406","display_name":"Case-based reasoning","level":2,"score":0.4287439286708832},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.34843337535858154},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.33953243494033813},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.12481683492660522},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.09483146667480469},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.0},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2557547.2557562","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2557547.2557562","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th ACM conference on Data and application security and privacy","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.7400000095367432,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W1543388142","https://openalex.org/W1554891714","https://openalex.org/W1562890122","https://openalex.org/W1827212170","https://openalex.org/W1884606608","https://openalex.org/W1906479473","https://openalex.org/W1941427975","https://openalex.org/W1954903228","https://openalex.org/W1977519794","https://openalex.org/W2093488494","https://openalex.org/W2101765290","https://openalex.org/W2108389203","https://openalex.org/W2114996745","https://openalex.org/W2129860818","https://openalex.org/W2134111523","https://openalex.org/W2142889610","https://openalex.org/W2156204309","https://openalex.org/W2165698818","https://openalex.org/W2570617298","https://openalex.org/W4240520298","https://openalex.org/W4256531287","https://openalex.org/W4295678738","https://openalex.org/W4300388644"],"related_works":["https://openalex.org/W95064529","https://openalex.org/W2031258546","https://openalex.org/W2770733137","https://openalex.org/W2143767096","https://openalex.org/W2360330114","https://openalex.org/W2371032752","https://openalex.org/W2160951215","https://openalex.org/W3139002588","https://openalex.org/W3193592231","https://openalex.org/W3112536095"],"abstract_inverted_index":{"Corporations":[0],"worldwide":[1],"work":[2],"with":[3,104,175],"teams":[4],"of":[5,29,37,39,65,95,101,130,136,157,164,172,181],"often":[6],"dedicated":[7],"system":[8,79,167],"administrators":[9],"to":[10,50,109,132,184],"maintain,":[11],"detect":[12],"and":[13,48,76,122,142,151,170],"prevent":[14],"network":[15,96,146,152,173,186],"infringements.":[16],"This":[17],"is":[18,161],"a":[19,86,116,126],"highly":[20],"user-driven":[21],"process":[22],"that":[23],"consumes":[24],"hundreds":[25],"(if":[26],"not":[27],"thousands)":[28],"man":[30],"hours":[31],"yearly.":[32],"User":[33],"reporting,":[34],"the":[35,55,134,137,145,155,162],"basis":[36],"most":[38],"these":[40],"incident":[41],"detection":[42,103,169],"systems":[43],"suffers":[44],"from":[45],"various":[46],"biases":[47],"leads":[49],"below-par":[51],"security":[52,113],"measures.":[53],"In":[54],"paper,":[56],"we":[57],"provide":[58],"an":[59],"approach":[60],"for":[61],"near":[62],"real-time":[63],"analysis":[64],"ongoing":[66,112],"events":[67,114,150,174],"on":[68,78,144],"controlled":[69],"networks,":[70],"while":[71,178],"requiring":[72],"no":[73],"end-user":[74],"interaction":[75],"saving":[77],"administrator's":[80],"effort.":[81],"Our":[82],"proposed":[83],"solution,":[84],"ReasONets,":[85,131],"lightweight,":[87],"distributed":[88],"system,":[89,138],"provides":[90],"situational":[91],"awareness":[92],"in":[93,115,139],"case":[94],"incidents.":[97],"ReasONets":[98,160],"combines":[99],"aspects":[100],"anomaly":[102],"Case-Based":[105],"Reasoning":[106],"(CBR)":[107],"methodologies":[108],"reason":[110],"about":[111],"network,":[117],"including":[118],"their":[119],"nature,":[120],"severity":[121],"sources.":[123],"We":[124],"build":[125],"fully":[127],"running":[128],"prototype":[129],"demonstrate":[133],"accuracy":[135],"doing":[140],"reasoning":[141,177],"inference":[143],"status":[147],"by":[148],"exploiting":[149],"features.":[153],"To":[154],"best":[156],"our":[158],"knowledge,":[159],"first":[163],"its":[165],"kind":[166],"combining":[168],"classification":[171],"realtime":[176],"being":[179],"capable":[180],"scaling":[182],"up":[183],"large":[185],"sizes.":[187]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":3},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}