{"id":"https://openalex.org/W2311416662","doi":"https://doi.org/10.1145/2885990.2885995","title":"From student research to intrusion detection","display_name":"From student research to intrusion detection","publication_year":2015,"publication_date":"2015-10-10","ids":{"openalex":"https://openalex.org/W2311416662","doi":"https://doi.org/10.1145/2885990.2885995","mag":"2311416662"},"language":"en","primary_location":{"id":"doi:10.1145/2885990.2885995","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2885990.2885995","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 Information Security Curriculum Development Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5008609166","display_name":"N. Paul Schembari","orcid":null},"institutions":[{"id":"https://openalex.org/I79060951","display_name":"East Stroudsburg University","ror":"https://ror.org/05atz9219","country_code":"US","type":"education","lineage":["https://openalex.org/I79060951"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"N. Paul Schembari","raw_affiliation_strings":["East Stroudsburg University of Pennsylvania, East Stroudsburg, PA"],"affiliations":[{"raw_affiliation_string":"East Stroudsburg University of Pennsylvania, East Stroudsburg, PA","institution_ids":["https://openalex.org/I79060951"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5008609166"],"corresponding_institution_ids":["https://openalex.org/I79060951"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.19012562,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"1"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9686999917030334,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9686999917030334,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9556000232696533,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9142000079154968,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.758992075920105},{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.7111294865608215},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7012966871261597},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5730648636817932},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5282891392707825},{"id":"https://openalex.org/keywords/data-set","display_name":"Data set","score":0.47870969772338867},{"id":"https://openalex.org/keywords/non-negative-matrix-factorization","display_name":"Non-negative matrix factorization","score":0.4773174226284027},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.4635533392429352},{"id":"https://openalex.org/keywords/cluster","display_name":"Cluster (spacecraft)","score":0.41620171070098877},{"id":"https://openalex.org/keywords/sparse-matrix","display_name":"Sparse matrix","score":0.41165101528167725},{"id":"https://openalex.org/keywords/matrix-decomposition","display_name":"Matrix decomposition","score":0.39733651280403137},{"id":"https://openalex.org/keywords/information-retrieval","display_name":"Information retrieval","score":0.33614760637283325},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.29971611499786377},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.25597888231277466},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.16189277172088623},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.09886085987091064}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.758992075920105},{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.7111294865608215},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7012966871261597},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5730648636817932},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5282891392707825},{"id":"https://openalex.org/C58489278","wikidata":"https://www.wikidata.org/wiki/Q1172284","display_name":"Data set","level":2,"score":0.47870969772338867},{"id":"https://openalex.org/C152671427","wikidata":"https://www.wikidata.org/wiki/Q10843505","display_name":"Non-negative matrix factorization","level":4,"score":0.4773174226284027},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.4635533392429352},{"id":"https://openalex.org/C164866538","wikidata":"https://www.wikidata.org/wiki/Q367351","display_name":"Cluster (spacecraft)","level":2,"score":0.41620171070098877},{"id":"https://openalex.org/C56372850","wikidata":"https://www.wikidata.org/wiki/Q1050404","display_name":"Sparse matrix","level":3,"score":0.41165101528167725},{"id":"https://openalex.org/C42355184","wikidata":"https://www.wikidata.org/wiki/Q1361088","display_name":"Matrix decomposition","level":3,"score":0.39733651280403137},{"id":"https://openalex.org/C23123220","wikidata":"https://www.wikidata.org/wiki/Q816826","display_name":"Information retrieval","level":1,"score":0.33614760637283325},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.29971611499786377},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.25597888231277466},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.16189277172088623},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.09886085987091064},{"id":"https://openalex.org/C163716315","wikidata":"https://www.wikidata.org/wiki/Q901177","display_name":"Gaussian","level":2,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C158693339","wikidata":"https://www.wikidata.org/wiki/Q190524","display_name":"Eigenvalues and eigenvectors","level":2,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2885990.2885995","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2885990.2885995","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 Information Security Curriculum Development Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Partnerships for the goals","score":0.5600000023841858,"id":"https://metadata.un.org/sdg/17"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4390394189","https://openalex.org/W2037504162","https://openalex.org/W2539013788","https://openalex.org/W2792706544","https://openalex.org/W1568451138","https://openalex.org/W2156699640","https://openalex.org/W2045265907","https://openalex.org/W2972997031","https://openalex.org/W34555840","https://openalex.org/W2146544734"],"abstract_inverted_index":{"We":[0,120],"describe":[1],"a":[2,24,64,115,137],"multi-year":[3],"project":[4],"that":[5,38,110],"began":[6],"as":[7,45],"mostly":[8],"undergraduate":[9],"student":[10,129,143],"research":[11],"in":[12],"data":[13,37,52],"mining":[14,53],"applied":[15],"to":[16,90,108,124,135],"computer":[17],"forensics":[18],"and":[19,70,78,142],"has":[20,104],"now":[21],"grown":[22],"into":[23,42],"prototype":[25,102],"for":[26],"an":[27],"intrusion":[28],"detection":[29],"system.":[30],"The":[31,51],"IDS":[32],"assumes":[33],"we":[34,62,132],"have":[35],"delimited":[36],"can":[39],"be":[40,136],"separated":[41],"records":[43,74],"such":[44],"IP":[46],"packets,":[47],"system":[48,96,103],"calls,":[49],"etc.":[50],"approach":[54],"uses":[55],"the":[56,68,73],"Bag":[57],"of":[58,67,118],"Words":[59],"methodology":[60],"where":[61],"form":[63],"matrix":[65,81],"model":[66],"data,":[69],"then":[71],"cluster":[72],"using":[75],"k-means":[76],"clustering":[77],"sparse":[79],"nonnegative":[80],"factorization.":[82],"With":[83],"no":[84],"training,":[85],"these":[86],"clusters":[87],"are":[88],"evaluated":[89],"determine":[91],"if":[92],"they":[93],"represent":[94],"normal":[95],"actions":[97],"or":[98],"attack":[99],"vectors.":[100],"This":[101],"accuracy":[105],"levels":[106],"similar":[107],"systems":[109],"use":[111],"supervised":[112],"learning":[113],"on":[114],"specific":[116],"set":[117],"data.":[119],"discuss":[121],"future":[122],"plans":[123],"make":[125],"improvements":[126],"with":[127],"continued":[128],"investigation.":[130],"Overall,":[131],"found":[133],"this":[134],"great":[138],"partnership":[139],"between":[140],"faculty":[141],"research.":[144]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}