{"id":"https://openalex.org/W3108630703","doi":"https://doi.org/10.1186/s40537-020-00382-x","title":"A survey and analysis of intrusion detection models based on CSE-CIC-IDS2018 Big Data","display_name":"A survey and analysis of intrusion detection models based on CSE-CIC-IDS2018 Big Data","publication_year":2020,"publication_date":"2020-11-23","ids":{"openalex":"https://openalex.org/W3108630703","doi":"https://doi.org/10.1186/s40537-020-00382-x","mag":"3108630703"},"language":"en","primary_location":{"id":"doi:10.1186/s40537-020-00382-x","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s40537-020-00382-x","pdf_url":"https://journalofbigdata.springeropen.com/track/pdf/10.1186/s40537-020-00382-x","source":{"id":"https://openalex.org/S2737955091","display_name":"Journal Of Big Data","issn_l":"2196-1115","issn":["2196-1115"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Big Data","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://journalofbigdata.springeropen.com/track/pdf/10.1186/s40537-020-00382-x","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5004094853","display_name":"Joffrey L. Leevy","orcid":"https://orcid.org/0000-0002-7079-7540"},"institutions":[{"id":"https://openalex.org/I63772739","display_name":"Florida Atlantic University","ror":"https://ror.org/05p8w6387","country_code":"US","type":"education","lineage":["https://openalex.org/I63772739"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Joffrey L. Leevy","raw_affiliation_strings":["Florida Atlantic University, 777 Glades Road, Boca Raton, FL, 33431, USA"],"raw_orcid":"https://orcid.org/0000-0002-7079-7540","affiliations":[{"raw_affiliation_string":"Florida Atlantic University, 777 Glades Road, Boca Raton, FL, 33431, USA","institution_ids":["https://openalex.org/I63772739"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5089170562","display_name":"Taghi M. Khoshgoftaar","orcid":null},"institutions":[{"id":"https://openalex.org/I63772739","display_name":"Florida Atlantic University","ror":"https://ror.org/05p8w6387","country_code":"US","type":"education","lineage":["https://openalex.org/I63772739"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Taghi M. Khoshgoftaar","raw_affiliation_strings":["Florida Atlantic University, 777 Glades Road, Boca Raton, FL, 33431, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Florida Atlantic University, 777 Glades Road, Boca Raton, FL, 33431, USA","institution_ids":["https://openalex.org/I63772739"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5004094853"],"corresponding_institution_ids":["https://openalex.org/I63772739"],"apc_list":{"value":1060,"currency":"GBP","value_usd":1300},"apc_paid":{"value":1060,"currency":"GBP","value_usd":1300},"fwci":20.2328,"has_fulltext":true,"cited_by_count":240,"citation_normalized_percentile":{"value":0.99573598,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"7","issue":"1","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/overfitting","display_name":"Overfitting","score":0.8791691064834595},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8436371088027954},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6907441020011902},{"id":"https://openalex.org/keywords/big-data","display_name":"Big data","score":0.6536346673965454},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.6261641383171082},{"id":"https://openalex.org/keywords/class","display_name":"Class (philosophy)","score":0.5434842109680176},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.49743369221687317},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.456863135099411},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.45214447379112244},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.37260064482688904},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3534092307090759},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.12740200757980347}],"concepts":[{"id":"https://openalex.org/C22019652","wikidata":"https://www.wikidata.org/wiki/Q331309","display_name":"Overfitting","level":3,"score":0.8791691064834595},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8436371088027954},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6907441020011902},{"id":"https://openalex.org/C75684735","wikidata":"https://www.wikidata.org/wiki/Q858810","display_name":"Big data","level":2,"score":0.6536346673965454},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.6261641383171082},{"id":"https://openalex.org/C2777212361","wikidata":"https://www.wikidata.org/wiki/Q5127848","display_name":"Class (philosophy)","level":2,"score":0.5434842109680176},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.49743369221687317},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.456863135099411},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.45214447379112244},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.37260064482688904},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3534092307090759},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.12740200757980347},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1186/s40537-020-00382-x","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s40537-020-00382-x","pdf_url":"https://journalofbigdata.springeropen.com/track/pdf/10.1186/s40537-020-00382-x","source":{"id":"https://openalex.org/S2737955091","display_name":"Journal Of Big Data","issn_l":"2196-1115","issn":["2196-1115"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Big Data","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1186/s40537-020-00382-x","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s40537-020-00382-x","pdf_url":"https://journalofbigdata.springeropen.com/track/pdf/10.1186/s40537-020-00382-x","source":{"id":"https://openalex.org/S2737955091","display_name":"Journal Of Big Data","issn_l":"2196-1115","issn":["2196-1115"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Big Data","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9","score":0.49000000953674316}],"awards":[{"id":"https://openalex.org/G5416735113","display_name":"MRI: Acquisition of Big Data Training and Research Laboratory","funder_award_id":"1427536","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G6293531692","display_name":null,"funder_award_id":"CNS-1427536","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320310801","display_name":"Florida Atlantic University","ror":"https://ror.org/05p8w6387"},{"id":"https://openalex.org/F4320317380","display_name":"Universidad del Atl\u00e1ntico","ror":"https://ror.org/05mm1w714"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3108630703.pdf","grobid_xml":"https://content.openalex.org/works/W3108630703.grobid-xml"},"referenced_works_count":104,"referenced_works":["https://openalex.org/W49700977","https://openalex.org/W1559370560","https://openalex.org/W1898031563","https://openalex.org/W2028138594","https://openalex.org/W2031163547","https://openalex.org/W2052055672","https://openalex.org/W2099940443","https://openalex.org/W2118516194","https://openalex.org/W2118978333","https://openalex.org/W2121142820","https://openalex.org/W2154137718","https://openalex.org/W2171647935","https://openalex.org/W2304598329","https://openalex.org/W2318802957","https://openalex.org/W2507528282","https://openalex.org/W2514173981","https://openalex.org/W2518326618","https://openalex.org/W2546427370","https://openalex.org/W2549264034","https://openalex.org/W2557427388","https://openalex.org/W2565516711","https://openalex.org/W2576243563","https://openalex.org/W2592193412","https://openalex.org/W2597472767","https://openalex.org/W2610127543","https://openalex.org/W2611652092","https://openalex.org/W2715071261","https://openalex.org/W2750868742","https://openalex.org/W2751425051","https://openalex.org/W2763698768","https://openalex.org/W2765181145","https://openalex.org/W2767106145","https://openalex.org/W2768348081","https://openalex.org/W2771584409","https://openalex.org/W2776676105","https://openalex.org/W2783196494","https://openalex.org/W2787223421","https://openalex.org/W2789828921","https://openalex.org/W2789886710","https://openalex.org/W2795204804","https://openalex.org/W2800788706","https://openalex.org/W2807319534","https://openalex.org/W2810433267","https://openalex.org/W2880239935","https://openalex.org/W2892911634","https://openalex.org/W2895926968","https://openalex.org/W2899434936","https://openalex.org/W2906121546","https://openalex.org/W2907881598","https://openalex.org/W2909481502","https://openalex.org/W2912290085","https://openalex.org/W2912326390","https://openalex.org/W2937711115","https://openalex.org/W2944577974","https://openalex.org/W2945660495","https://openalex.org/W2945801048","https://openalex.org/W2952014779","https://openalex.org/W2952066300","https://openalex.org/W2953022181","https://openalex.org/W2953405390","https://openalex.org/W2963197901","https://openalex.org/W2963748489","https://openalex.org/W2965533141","https://openalex.org/W2965561013","https://openalex.org/W2966632508","https://openalex.org/W2966776741","https://openalex.org/W2969482453","https://openalex.org/W2979323854","https://openalex.org/W2979434725","https://openalex.org/W2987201163","https://openalex.org/W2989009480","https://openalex.org/W2990612605","https://openalex.org/W2991507433","https://openalex.org/W2997301451","https://openalex.org/W3000722911","https://openalex.org/W3006165800","https://openalex.org/W3008005700","https://openalex.org/W3011471823","https://openalex.org/W3015108593","https://openalex.org/W3016974523","https://openalex.org/W3016975937","https://openalex.org/W3021219025","https://openalex.org/W3022558251","https://openalex.org/W3032021129","https://openalex.org/W3035510612","https://openalex.org/W3037824821","https://openalex.org/W3041133507","https://openalex.org/W3043821203","https://openalex.org/W3047132966","https://openalex.org/W3048668222","https://openalex.org/W3080177360","https://openalex.org/W3081125651","https://openalex.org/W3081279800","https://openalex.org/W3084540277","https://openalex.org/W3099702946","https://openalex.org/W3102476541","https://openalex.org/W3105233262","https://openalex.org/W3116029052","https://openalex.org/W3137362470","https://openalex.org/W4235730433","https://openalex.org/W4248220371","https://openalex.org/W4254984988","https://openalex.org/W6748039686","https://openalex.org/W6816237827"],"related_works":["https://openalex.org/W1574414179","https://openalex.org/W4362597605","https://openalex.org/W4297676672","https://openalex.org/W4281702477","https://openalex.org/W2922073769","https://openalex.org/W4378510483","https://openalex.org/W2490526372","https://openalex.org/W4376166922","https://openalex.org/W4221142204","https://openalex.org/W2133389611"],"abstract_inverted_index":{"Abstract":[0],"The":[1],"exponential":[2],"growth":[3],"in":[4,17,162],"computer":[5],"networks":[6],"and":[7,88],"network":[8],"applications":[9],"worldwide":[10],"has":[11,99],"been":[12,201],"matched":[13],"by":[14],"a":[15,90,100,163,183],"surge":[16],"cyberattacks.":[18],"For":[19],"this":[20],"reason,":[21],"datasets":[22,37],"such":[23],"as":[24,43],"CSE-CIC-IDS2018":[25,62,177],"were":[26,132],"created":[27],"to":[28,41,51,140],"train":[29],"predictive":[30],"models":[31],"on":[32,54,172],"network-based":[33],"intrusion":[34,79],"detection.":[35],"These":[36],"are":[38],"not":[39,151],"meant":[40],"serve":[42],"repositories":[44],"for":[45,127],"signature-based":[46],"detection":[47,56,80],"systems,":[48],"but":[49],"rather":[50],"promote":[52],"research":[53,197],"anomaly-based":[55],"through":[57],"various":[58],"machine":[59],"learning":[60],"approaches.":[61],"contains":[63],"about":[64],"16,000,000":[65],"instances":[66,108],"collected":[67],"over":[68],"the":[69,76,107,123,148,155,173,181],"course":[70],"of":[71,93,106,147,157,176,191],"ten":[72],"days.":[73],"It":[74],"is":[75,83],"most":[77,146],"recent":[78],"dataset":[81,98],"that":[82,122,145,170,185],"big":[84,164],"data,":[85],"publicly":[86],"available,":[87,131],"covers":[89],"wide":[91],"range":[92],"attack":[94,110],"types.":[95],"This":[96],"multi-class":[97],"class":[101,153],"imbalance,":[102,154],"with":[103,189],"roughly":[104],"17%":[105],"comprising":[109],"(anomalous)":[111],"traffic.":[112],"Our":[113],"survey":[114],"work":[115],"contributes":[116],"several":[117],"key":[118],"findings.":[119],"We":[120,142],"determined":[121],"best":[124],"performance":[125],"scores":[126],"each":[128],"study,":[129],"where":[130],"unexpectedly":[133],"high":[134],"overall,":[135],"which":[136,158],"may":[137,186],"be":[138],"due":[139],"overfitting.":[141],"also":[143,200],"found":[144],"works":[149],"did":[150],"address":[152],"effects":[156],"can":[159],"bias":[160],"results":[161],"data":[165,174],"study.":[166],"Lastly,":[167],"we":[168],"discovered":[169],"information":[171],"cleaning":[175],"was":[178],"inadequate":[179],"across":[180],"board,":[182],"finding":[184],"indicate":[187],"problems":[188],"reproducibility":[190],"experiments.":[192],"In":[193],"our":[194],"survey,":[195],"major":[196],"gaps":[198],"have":[199],"identified.":[202]},"counts_by_year":[{"year":2026,"cited_by_count":14},{"year":2025,"cited_by_count":54},{"year":2024,"cited_by_count":47},{"year":2023,"cited_by_count":49},{"year":2022,"cited_by_count":44},{"year":2021,"cited_by_count":32}],"updated_date":"2026-04-26T08:31:28.666265","created_date":"2025-10-10T00:00:00"}