{"id":"https://openalex.org/W4387619790","doi":"https://doi.org/10.15439/2023f4457","title":"Gradient boosting models for cybersecurity threat detection with aggregated time series features","display_name":"Gradient boosting models for cybersecurity threat detection with aggregated time series features","publication_year":2023,"publication_date":"2023-09-26","ids":{"openalex":"https://openalex.org/W4387619790","doi":"https://doi.org/10.15439/2023f4457"},"language":"en","primary_location":{"id":"doi:10.15439/2023f4457","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2023f4457","pdf_url":"https://annals-csis.org/proceedings/2023/drp/pdf/4457.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://annals-csis.org/proceedings/2023/drp/pdf/4457.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100347779","display_name":"Ming Liu","orcid":"https://orcid.org/0000-0002-3482-4871"},"institutions":[{"id":"https://openalex.org/I4210141355","display_name":"EBTIC","ror":"https://ror.org/050mver74","country_code":"AE","type":"other","lineage":["https://openalex.org/I4210141355"]},{"id":"https://openalex.org/I176601375","display_name":"Khalifa University of Science and Technology","ror":"https://ror.org/05hffr360","country_code":"AE","type":"education","lineage":["https://openalex.org/I176601375"]}],"countries":["AE"],"is_corresponding":true,"raw_author_name":"Ming Liu","raw_affiliation_strings":["EBTIC , Khalifa University , UAE","EBTIC, Khalifa University, UAE"],"affiliations":[{"raw_affiliation_string":"EBTIC , Khalifa University , UAE","institution_ids":["https://openalex.org/I176601375"]},{"raw_affiliation_string":"EBTIC, Khalifa University, UAE","institution_ids":["https://openalex.org/I176601375","https://openalex.org/I4210141355"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5108056229","display_name":"Ling Cen","orcid":"https://orcid.org/0000-0002-1674-1052"},"institutions":[{"id":"https://openalex.org/I4210141355","display_name":"EBTIC","ror":"https://ror.org/050mver74","country_code":"AE","type":"other","lineage":["https://openalex.org/I4210141355"]},{"id":"https://openalex.org/I176601375","display_name":"Khalifa University of Science and Technology","ror":"https://ror.org/05hffr360","country_code":"AE","type":"education","lineage":["https://openalex.org/I176601375"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Ling Cen","raw_affiliation_strings":["EBTIC , Khalifa University , UAE","EBTIC, Khalifa University, UAE"],"affiliations":[{"raw_affiliation_string":"EBTIC , Khalifa University , UAE","institution_ids":["https://openalex.org/I176601375"]},{"raw_affiliation_string":"EBTIC, Khalifa University, UAE","institution_ids":["https://openalex.org/I176601375","https://openalex.org/I4210141355"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5037726482","display_name":"Dymitr Ruta","orcid":"https://orcid.org/0000-0003-1060-6375"},"institutions":[{"id":"https://openalex.org/I176601375","display_name":"Khalifa University of Science and Technology","ror":"https://ror.org/05hffr360","country_code":"AE","type":"education","lineage":["https://openalex.org/I176601375"]},{"id":"https://openalex.org/I4210141355","display_name":"EBTIC","ror":"https://ror.org/050mver74","country_code":"AE","type":"other","lineage":["https://openalex.org/I4210141355"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Dymitr Ruta","raw_affiliation_strings":["EBTIC , Khalifa University , UAE","EBTIC, Khalifa University, UAE"],"affiliations":[{"raw_affiliation_string":"EBTIC , Khalifa University , UAE","institution_ids":["https://openalex.org/I176601375"]},{"raw_affiliation_string":"EBTIC, Khalifa University, UAE","institution_ids":["https://openalex.org/I176601375","https://openalex.org/I4210141355"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5100347779"],"corresponding_institution_ids":["https://openalex.org/I176601375","https://openalex.org/I4210141355"],"apc_list":null,"apc_paid":null,"fwci":4.3373,"has_fulltext":true,"cited_by_count":9,"citation_normalized_percentile":{"value":0.95698925,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":"35","issue":null,"first_page":"1311","last_page":"1315"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9954000115394592,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9384999871253967,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/boosting","display_name":"Boosting (machine learning)","score":0.6797677278518677},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6722632050514221},{"id":"https://openalex.org/keywords/time-series","display_name":"Time series","score":0.5637281537055969},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5005457401275635},{"id":"https://openalex.org/keywords/series","display_name":"Series (stratigraphy)","score":0.49379095435142517},{"id":"https://openalex.org/keywords/gradient-boosting","display_name":"Gradient boosting","score":0.4773856997489929},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.32099151611328125},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2471885085105896},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.2220124900341034},{"id":"https://openalex.org/keywords/random-forest","display_name":"Random forest","score":0.0689634382724762}],"concepts":[{"id":"https://openalex.org/C46686674","wikidata":"https://www.wikidata.org/wiki/Q466303","display_name":"Boosting (machine learning)","level":2,"score":0.6797677278518677},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6722632050514221},{"id":"https://openalex.org/C151406439","wikidata":"https://www.wikidata.org/wiki/Q186588","display_name":"Time series","level":2,"score":0.5637281537055969},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5005457401275635},{"id":"https://openalex.org/C143724316","wikidata":"https://www.wikidata.org/wiki/Q312468","display_name":"Series (stratigraphy)","level":2,"score":0.49379095435142517},{"id":"https://openalex.org/C70153297","wikidata":"https://www.wikidata.org/wiki/Q5591907","display_name":"Gradient boosting","level":3,"score":0.4773856997489929},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.32099151611328125},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2471885085105896},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.2220124900341034},{"id":"https://openalex.org/C169258074","wikidata":"https://www.wikidata.org/wiki/Q245748","display_name":"Random forest","level":2,"score":0.0689634382724762},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.15439/2023f4457","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2023f4457","pdf_url":"https://annals-csis.org/proceedings/2023/drp/pdf/4457.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},{"id":"pmh:oai:doaj.org/article:29b5388b5efd4b05bdd08365215a917b","is_oa":true,"landing_page_url":"https://doaj.org/article/29b5388b5efd4b05bdd08365215a917b","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Annals of computer science and information systems, Vol 35, Pp 1311-1315 (2023)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.15439/2023f4457","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2023f4457","pdf_url":"https://annals-csis.org/proceedings/2023/drp/pdf/4457.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4387619790.pdf","grobid_xml":"https://content.openalex.org/works/W4387619790.grobid-xml"},"referenced_works_count":22,"referenced_works":["https://openalex.org/W1678356000","https://openalex.org/W2108263314","https://openalex.org/W2399011141","https://openalex.org/W2604813584","https://openalex.org/W2625965143","https://openalex.org/W2626958520","https://openalex.org/W2758581632","https://openalex.org/W2787208502","https://openalex.org/W2892780823","https://openalex.org/W2894414645","https://openalex.org/W2973249924","https://openalex.org/W2973459124","https://openalex.org/W3008731154","https://openalex.org/W3020687048","https://openalex.org/W3092087672","https://openalex.org/W3099185017","https://openalex.org/W4205464644","https://openalex.org/W4205953621","https://openalex.org/W4298137338","https://openalex.org/W4298137599","https://openalex.org/W4386215340","https://openalex.org/W6768694318"],"related_works":["https://openalex.org/W2967733078","https://openalex.org/W3204430031","https://openalex.org/W3137904399","https://openalex.org/W4310492845","https://openalex.org/W2885778889","https://openalex.org/W2766514146","https://openalex.org/W2885516856","https://openalex.org/W4289703016","https://openalex.org/W4310224730","https://openalex.org/W1985505753"],"abstract_inverted_index":{"The":[0],"rapid":[1],"proliferation":[2],"of":[3,5,90,149,168,178,182,192],"Internet":[4],"Things":[6],"(IoT)":[7],"devices":[8,68],"has":[9,23,188],"revolutionized":[10],"the":[11,88,101,146,155,161,189,199],"way":[12],"we":[13,93,105],"interact":[14],"with":[15,31,133,145,164,174],"and":[16,34,55,73,98,107,111,126,130,151,170,185],"manage":[17],"our":[18,78],"surroundings.However,":[19],"this":[20],"widespread":[21],"adoption":[22],"also":[24],"brought":[25],"forth":[26],"significant":[27],"cybersecurity":[28],"challenges.IoT":[29],"devices,":[30],"their":[32,71],"interconnectedness":[33],"varying":[35],"functionalities,":[36],"present":[37],"a":[38,165,175],"unique":[39],"threat":[40],"landscape":[41],"that":[42],"requires":[43],"tailored":[44],"detection":[45],"techniques.Traditional":[46],"approaches":[47],"to":[48,70,114],"cybersecurity,":[49],"primarily":[50],"focused":[51],"on":[52,154],"network":[53],"monitoring":[54],"anomaly":[56],"detection,":[57],"often":[58],"fall":[59],"short":[60],"in":[61,87,198],"effectively":[62],"identifying":[63],"threats":[64],"originating":[65],"from":[66,180],"IoT":[67,91],"due":[69],"dynamic":[72],"complex":[74],"behaviors.This":[75],"paper":[76],"addresses":[77],"solution":[79],"for":[80],"FedCSIS":[81],"2023":[82],"Challenge:":[83],"Cybersecurity":[84],"Threat":[85],"Detection":[86],"behavior":[89],"Devices.First,":[92],"aggregated":[94],"time":[95],"series":[96],"features,":[97],"then":[99],"at":[100],"feature":[102,118,157],"selection":[103],"stage,":[104],"filtered":[106],"combined":[108],"different":[109,117,156],"categorical":[110],"numerical":[112],"features":[113],"generate":[115],"four":[116],"sets.The":[119],"Gradient":[120],"boosting":[121],"models,":[122],"i.e.":[123],"lightgbm,":[124,186],"catboost":[125,184],"xgboost,":[127,183],"are":[128,139],"applied":[129],"trained":[131],"individually":[132],"hyper-parameter":[134],"tuning.The":[135],"final":[136,166,190,200],"three":[137,201],"submissions":[138],"two":[140],"best":[141],"individual":[142],"lightgbm":[143],"models":[144],"AUC":[147,176],"scores":[148],"0.9999":[150],"0.9998,":[152],"respectively":[153],"sets,":[158],"which":[159,187],"secured":[160],"4th":[162],"place":[163],"score":[167,177,191],"0.9993,":[169],"one":[171],"ensemble":[172],"result":[173],"0.9998":[179],"combination":[181],"0.9997":[193],"while":[194],"unluckily":[195],"was":[196],"missing":[197],"evaluation":[202],"entries.":[203]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":2}],"updated_date":"2026-04-02T15:55:50.835912","created_date":"2025-10-10T00:00:00"}