{"id":"https://openalex.org/W2994979990","doi":"https://doi.org/10.1145/3368756.3369061","title":"Newest collaborative and hybrid network intrusion detection framework based on suricata and isolation forest algorithm","display_name":"Newest collaborative and hybrid network intrusion detection framework based on suricata and isolation forest algorithm","publication_year":2019,"publication_date":"2019-10-02","ids":{"openalex":"https://openalex.org/W2994979990","doi":"https://doi.org/10.1145/3368756.3369061","mag":"2994979990"},"language":"en","primary_location":{"id":"doi:10.1145/3368756.3369061","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3368756.3369061","pdf_url":null,"source":{"id":"https://openalex.org/S4306523848","display_name":"Proceedings of the 4th International Conference on Smart City Applications","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th International Conference on Smart City Applications","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5040097612","display_name":"Zouhair Chiba","orcid":"https://orcid.org/0000-0002-6200-0087"},"institutions":[{"id":"https://openalex.org/I99297268","display_name":"University of Hassan II Casablanca","ror":"https://ror.org/001q4kn48","country_code":"MA","type":"education","lineage":["https://openalex.org/I99297268"]}],"countries":["MA"],"is_corresponding":true,"raw_author_name":"Zouhair Chiba","raw_affiliation_strings":["Hassan II University of Casablanca, Casablanca, Morocco"],"affiliations":[{"raw_affiliation_string":"Hassan II University of Casablanca, Casablanca, Morocco","institution_ids":["https://openalex.org/I99297268"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032038935","display_name":"Noreddine Abghour","orcid":"https://orcid.org/0000-0002-8429-6712"},"institutions":[{"id":"https://openalex.org/I99297268","display_name":"University of Hassan II Casablanca","ror":"https://ror.org/001q4kn48","country_code":"MA","type":"education","lineage":["https://openalex.org/I99297268"]}],"countries":["MA"],"is_corresponding":false,"raw_author_name":"Noreddine Abghour","raw_affiliation_strings":["Hassan II University of Casablanca, Casablanca, Morocco"],"affiliations":[{"raw_affiliation_string":"Hassan II University of Casablanca, Casablanca, Morocco","institution_ids":["https://openalex.org/I99297268"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010907886","display_name":"Khalid Moussaid","orcid":"https://orcid.org/0000-0002-7542-9640"},"institutions":[{"id":"https://openalex.org/I99297268","display_name":"University of Hassan II Casablanca","ror":"https://ror.org/001q4kn48","country_code":"MA","type":"education","lineage":["https://openalex.org/I99297268"]}],"countries":["MA"],"is_corresponding":false,"raw_author_name":"Khalid Moussaid","raw_affiliation_strings":["Hassan II University of Casablanca, Casablanca, Morocco"],"affiliations":[{"raw_affiliation_string":"Hassan II University of Casablanca, Casablanca, Morocco","institution_ids":["https://openalex.org/I99297268"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112116285","display_name":"Amina El Omri","orcid":null},"institutions":[{"id":"https://openalex.org/I99297268","display_name":"University of Hassan II Casablanca","ror":"https://ror.org/001q4kn48","country_code":"MA","type":"education","lineage":["https://openalex.org/I99297268"]}],"countries":["MA"],"is_corresponding":false,"raw_author_name":"Amina El Omri","raw_affiliation_strings":["Hassan II University of Casablanca, Casablanca, Morocco"],"affiliations":[{"raw_affiliation_string":"Hassan II University of Casablanca, Casablanca, Morocco","institution_ids":["https://openalex.org/I99297268"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5086156614","display_name":"Mohamed Rida","orcid":"https://orcid.org/0000-0002-4964-4347"},"institutions":[{"id":"https://openalex.org/I99297268","display_name":"University of Hassan II Casablanca","ror":"https://ror.org/001q4kn48","country_code":"MA","type":"education","lineage":["https://openalex.org/I99297268"]}],"countries":["MA"],"is_corresponding":false,"raw_author_name":"Mohamed Rida","raw_affiliation_strings":["Hassan II University of Casablanca, Casablanca, Morocco"],"affiliations":[{"raw_affiliation_string":"Hassan II University of Casablanca, Casablanca, Morocco","institution_ids":["https://openalex.org/I99297268"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5040097612"],"corresponding_institution_ids":["https://openalex.org/I99297268"],"apc_list":null,"apc_paid":null,"fwci":1.7728,"has_fulltext":false,"cited_by_count":17,"citation_normalized_percentile":{"value":0.85938904,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"11"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7924069762229919},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7242682576179504},{"id":"https://openalex.org/keywords/pace","display_name":"Pace","score":0.4761616885662079},{"id":"https://openalex.org/keywords/workload","display_name":"Workload","score":0.45400193333625793},{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.4493669271469116},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.4397233724594116},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4381861984729767},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.39952677488327026}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7924069762229919},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7242682576179504},{"id":"https://openalex.org/C2777526511","wikidata":"https://www.wikidata.org/wiki/Q691543","display_name":"Pace","level":2,"score":0.4761616885662079},{"id":"https://openalex.org/C2778476105","wikidata":"https://www.wikidata.org/wiki/Q628539","display_name":"Workload","level":2,"score":0.45400193333625793},{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.4493669271469116},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.4397233724594116},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4381861984729767},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.39952677488327026},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C89423630","wikidata":"https://www.wikidata.org/wiki/Q7193","display_name":"Microbiology","level":1,"score":0.0},{"id":"https://openalex.org/C13280743","wikidata":"https://www.wikidata.org/wiki/Q131089","display_name":"Geodesy","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C205649164","wikidata":"https://www.wikidata.org/wiki/Q1071","display_name":"Geography","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3368756.3369061","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3368756.3369061","pdf_url":null,"source":{"id":"https://openalex.org/S4306523848","display_name":"Proceedings of the 4th International Conference on Smart City Applications","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th International Conference on Smart City Applications","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":28,"referenced_works":["https://openalex.org/W1991357106","https://openalex.org/W1995443851","https://openalex.org/W2019014808","https://openalex.org/W2021833436","https://openalex.org/W2026372785","https://openalex.org/W2124536999","https://openalex.org/W2144182447","https://openalex.org/W2170651405","https://openalex.org/W2296269467","https://openalex.org/W2296719434","https://openalex.org/W2541841318","https://openalex.org/W2552339118","https://openalex.org/W2564857486","https://openalex.org/W2606340069","https://openalex.org/W2619690290","https://openalex.org/W2752291283","https://openalex.org/W2785033548","https://openalex.org/W2788834115","https://openalex.org/W2790583291","https://openalex.org/W2793962651","https://openalex.org/W2805631676","https://openalex.org/W2886745383","https://openalex.org/W2913186480","https://openalex.org/W2920449071","https://openalex.org/W2937220155","https://openalex.org/W2941658740","https://openalex.org/W4243563432","https://openalex.org/W4302970624"],"related_works":["https://openalex.org/W2061466315","https://openalex.org/W2376886931","https://openalex.org/W1992118813","https://openalex.org/W2010561419","https://openalex.org/W2374845301","https://openalex.org/W2351448539","https://openalex.org/W1977863481","https://openalex.org/W2384741105","https://openalex.org/W1495178644","https://openalex.org/W2185594426"],"abstract_inverted_index":{"With":[0],"the":[1,25,33,47,85,98,155,218,224,239,252,260,275,323,376],"advent":[2],"of":[3,110,196,251,262,300],"digital":[4],"technology,":[5],"computer":[6,41],"networks":[7,42],"have":[8,23,43],"developed":[9],"rapidly":[10],"at":[11,367],"an":[12,77,177,231],"unprecedented":[13],"pace":[14],"contributing":[15],"tremendously":[16],"to":[17,61,93,135,154,160,189,255,271,292,329,360],"social":[18],"and":[19,31,53,66,114,117,120,170,206,212,235,268,280,306,370],"economic":[20],"development.":[21],"They":[22],"become":[24],"backbone":[26],"for":[27,40,76,140,364],"all":[28,32,304],"critical":[29],"sectors":[30],"top":[34],"Multi-National":[35],"companies.":[36],"Unfortunately,":[37],"security":[38],"threats":[39],"increased":[44,204],"dramatically":[45],"over":[46,238],"last":[48],"decade":[49],"being":[50],"much":[51],"brazen":[52],"bolder.":[54],"Indeed,":[55],"intrusions":[56,366],"or":[57,289],"attacks":[58,96,331,343],"can":[59,213,350],"lead":[60],"irreparable":[62],"damages,":[63],"information":[64],"leakage":[65],"significant":[67],"financial":[68],"losses.":[69],"Hence,":[70],"there":[71],"is":[72,168,173,176,200,249],"a":[73,90,107,131,186,197,265,312],"great":[74],"need":[75],"effective":[78,267],"Network":[79],"Intrusion":[80],"Detection":[81],"System":[82],"(NIDS).":[83],"In":[84,123,283,339],"current":[86],"study,":[87],"we":[88,127,144],"propose":[89],"hybrid":[91],"NIDS":[92,125,245,349],"detect":[94,161,256],"network":[95,99,103,142,209,377],"in":[97,208,233,303,315,320,326,336,374],"environment":[100],"by":[101,332,347,354],"monitoring":[102],"traffic,":[104],"thereby":[105],"achieving":[106],"solid":[108],"line":[109],"protection":[111],"against":[112],"inside":[113],"outside":[115],"intruders":[116],"maintaining":[118],"performance":[119,237],"service":[121],"quality.":[122],"our":[124],"framework,":[126,322],"use":[128,145,261],"Suricata":[129,152,175,229],"as":[130,185,264],"signature":[132],"based":[133,221],"detection":[134,166,372],"uncover":[136],"known":[137],"attacks,":[138],"while":[139],"detecting":[141,365],"anomaly,":[143],"Isolation":[146],"Forest":[147],"Algorithm":[148],"(IFA).":[149],"By":[150],"applying":[151],"prior":[153],"IFA":[156,158,248,285,310],"classifier,":[157],"has":[159,182,311],"only":[162],"unknown":[163,342],"attacks.":[164],"Therefore,":[165],"time":[167],"reduced":[169],"computational":[171,298,317,362],"power":[172],"saved.":[174],"open":[178],"source":[179],"IDS,":[180],"which":[181,258],"been":[183],"advanced":[184],"multi-threaded":[187,198],"alternative":[188],"popular":[190],"Snort":[191],"IDS.":[192],"The":[193],"major":[194,297],"benefits":[195],"design":[199],"that":[201,344],"it":[202],"offers":[203],"speed":[205],"efficiency":[207],"traffic":[210],"analysis":[211],"also":[214,358],"help":[215],"divide":[216],"up":[217],"IDS":[219],"workload":[220],"on":[222],"where":[223],"processing":[225],"needs":[226],"are.":[227],"Consequently,":[228],"shows":[230],"increase":[232],"accuracy":[234],"system":[236],"de":[240],"facto":[241],"standard,":[242],"single":[243],"threaded":[244],"Snort.":[246],"While,":[247],"one":[250],"newest":[253],"approaches":[254],"anomalies/outliers,":[257],"introduces":[259],"isolation":[263],"more":[266],"efficient":[269],"means":[270],"recognize":[272],"anomalies":[273],"than":[274],"popularly":[276],"used":[277],"basic":[278],"distance":[279,288,301],"density":[281,290],"measures.":[282],"fact,":[284],"uses":[286],"no":[287],"measures":[291],"identify":[293],"outliers,":[294],"this":[295,321,340],"eliminates":[296],"cost":[299,363],"calculation":[302],"distance-based":[305],"density-based":[307],"algorithms.":[308],"Additionally,":[309],"low":[313],"constant":[314],"its":[316],"complexity.":[318],"Moreover,":[319],"NIDSs":[324],"operate":[325],"collaborative":[327],"way":[328],"oppose":[330],"sharing":[333],"alerts":[334],"stored":[335],"central":[337],"log.":[338],"way,":[341],"were":[345],"detected":[346,353],"any":[348],"easily":[351],"be":[352],"others":[355,368],"IDSs.":[356],"This":[357],"helps":[359],"reduce":[361],"NIDSs,":[369],"improve":[371],"rate":[373],"overall":[375],"environment.":[378]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":5},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}