{"id":"https://openalex.org/W2963384497","doi":"https://doi.org/10.23919/softcom.2019.8903672","title":"Anomaly-based Intrusion Detection in Industrial Data with SVM and Random Forests","display_name":"Anomaly-based Intrusion Detection in Industrial Data with SVM and Random Forests","publication_year":2019,"publication_date":"2019-09-01","ids":{"openalex":"https://openalex.org/W2963384497","doi":"https://doi.org/10.23919/softcom.2019.8903672","mag":"2963384497"},"language":"en","primary_location":{"id":"doi:10.23919/softcom.2019.8903672","is_oa":false,"landing_page_url":"https://doi.org/10.23919/softcom.2019.8903672","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 International Conference on Software, Telecommunications and Computer Networks (SoftCOM)","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/1907.10374","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5066653225","display_name":"Simon D. Duque Ant\u00f3n","orcid":"https://orcid.org/0000-0003-4005-9165"},"institutions":[{"id":"https://openalex.org/I33256026","display_name":"German Research Centre for Artificial Intelligence","ror":"https://ror.org/01ayc5b57","country_code":"DE","type":"funder","lineage":["https://openalex.org/I33256026"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Simon D. Duque Anton","raw_affiliation_strings":["Intelligent Networks Research Group, German Research Center for AI,Kaiserslautern,Germany","German Research Centre for Artificial Intelligence"],"affiliations":[{"raw_affiliation_string":"Intelligent Networks Research Group, German Research Center for AI,Kaiserslautern,Germany","institution_ids":["https://openalex.org/I33256026"]},{"raw_affiliation_string":"German Research Centre for Artificial Intelligence","institution_ids":["https://openalex.org/I33256026"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062420942","display_name":"Sapna Sinha","orcid":"https://orcid.org/0000-0002-2504-8030"},"institutions":[{"id":"https://openalex.org/I33256026","display_name":"German Research Centre for Artificial Intelligence","ror":"https://ror.org/01ayc5b57","country_code":"DE","type":"funder","lineage":["https://openalex.org/I33256026"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Sapna Sinha","raw_affiliation_strings":["Intelligent Networks Research Group, German Research Center for AI,Kaiserslautern,Germany","German Research Centre for Artificial Intelligence"],"affiliations":[{"raw_affiliation_string":"Intelligent Networks Research Group, German Research Center for AI,Kaiserslautern,Germany","institution_ids":["https://openalex.org/I33256026"]},{"raw_affiliation_string":"German Research Centre for Artificial Intelligence","institution_ids":["https://openalex.org/I33256026"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5008473850","display_name":"Hans D. Schotten","orcid":"https://orcid.org/0000-0001-5005-3635"},"institutions":[{"id":"https://openalex.org/I33256026","display_name":"German Research Centre for Artificial Intelligence","ror":"https://ror.org/01ayc5b57","country_code":"DE","type":"funder","lineage":["https://openalex.org/I33256026"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Hans Dieter Schotten","raw_affiliation_strings":["Intelligent Networks Research Group, German Research Center for AI,Kaiserslautern,Germany","German Research Centre for Artificial Intelligence"],"affiliations":[{"raw_affiliation_string":"Intelligent Networks Research Group, German Research Center for AI,Kaiserslautern,Germany","institution_ids":["https://openalex.org/I33256026"]},{"raw_affiliation_string":"German Research Centre for Artificial Intelligence","institution_ids":["https://openalex.org/I33256026"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5066653225"],"corresponding_institution_ids":["https://openalex.org/I33256026"],"apc_list":null,"apc_paid":null,"fwci":0.5561,"has_fulltext":true,"cited_by_count":9,"citation_normalized_percentile":{"value":0.69991553,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/industrial-control-system","display_name":"Industrial control system","score":0.8434985876083374},{"id":"https://openalex.org/keywords/support-vector-machine","display_name":"Support vector machine","score":0.6962724328041077},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.6857840418815613},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6742825508117676},{"id":"https://openalex.org/keywords/modbus","display_name":"Modbus","score":0.6298637390136719},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6160598397254944},{"id":"https://openalex.org/keywords/random-forest","display_name":"Random forest","score":0.566899836063385},{"id":"https://openalex.org/keywords/honeypot","display_name":"Honeypot","score":0.4944741725921631},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4936695992946625},{"id":"https://openalex.org/keywords/pipeline","display_name":"Pipeline (software)","score":0.4767078757286072},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.4102047085762024},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4040377736091614},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.4030855894088745},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2618747651576996},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.1346854269504547}],"concepts":[{"id":"https://openalex.org/C40071531","wikidata":"https://www.wikidata.org/wiki/Q2513962","display_name":"Industrial control system","level":3,"score":0.8434985876083374},{"id":"https://openalex.org/C12267149","wikidata":"https://www.wikidata.org/wiki/Q282453","display_name":"Support vector machine","level":2,"score":0.6962724328041077},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.6857840418815613},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6742825508117676},{"id":"https://openalex.org/C2776666747","wikidata":"https://www.wikidata.org/wiki/Q1135322","display_name":"Modbus","level":3,"score":0.6298637390136719},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6160598397254944},{"id":"https://openalex.org/C169258074","wikidata":"https://www.wikidata.org/wiki/Q245748","display_name":"Random forest","level":2,"score":0.566899836063385},{"id":"https://openalex.org/C191267431","wikidata":"https://www.wikidata.org/wiki/Q911932","display_name":"Honeypot","level":2,"score":0.4944741725921631},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4936695992946625},{"id":"https://openalex.org/C43521106","wikidata":"https://www.wikidata.org/wiki/Q2165493","display_name":"Pipeline (software)","level":2,"score":0.4767078757286072},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4102047085762024},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4040377736091614},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.4030855894088745},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2618747651576996},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.1346854269504547},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C12269588","wikidata":"https://www.wikidata.org/wiki/Q132364","display_name":"Communications protocol","level":2,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.23919/softcom.2019.8903672","is_oa":false,"landing_page_url":"https://doi.org/10.23919/softcom.2019.8903672","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 International Conference on Software, Telecommunications and Computer Networks (SoftCOM)","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:1907.10374","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1907.10374","pdf_url":"https://arxiv.org/pdf/1907.10374","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"mag:2963384497","is_oa":true,"landing_page_url":"https://arxiv.org/pdf/1907.10374","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"arXiv (Cornell University)","raw_type":null},{"id":"doi:10.48550/arxiv.1907.10374","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.1907.10374","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:1907.10374","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1907.10374","pdf_url":"https://arxiv.org/pdf/1907.10374","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[{"score":0.49000000953674316,"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2963384497.pdf","grobid_xml":"https://content.openalex.org/works/W2963384497.grobid-xml"},"referenced_works_count":40,"referenced_works":["https://openalex.org/W10491193","https://openalex.org/W48170608","https://openalex.org/W258159988","https://openalex.org/W1525180324","https://openalex.org/W1578384606","https://openalex.org/W1999318832","https://openalex.org/W2011778831","https://openalex.org/W2021702566","https://openalex.org/W2031668066","https://openalex.org/W2043089557","https://openalex.org/W2076296740","https://openalex.org/W2081544377","https://openalex.org/W2087347434","https://openalex.org/W2119821739","https://openalex.org/W2120617515","https://openalex.org/W2124363451","https://openalex.org/W2131060714","https://openalex.org/W2136903812","https://openalex.org/W2142889610","https://openalex.org/W2144963861","https://openalex.org/W2148239836","https://openalex.org/W2154276653","https://openalex.org/W2162783010","https://openalex.org/W2410255620","https://openalex.org/W2557328120","https://openalex.org/W2887434122","https://openalex.org/W2890488673","https://openalex.org/W2911964244","https://openalex.org/W2946531354","https://openalex.org/W2947418993","https://openalex.org/W2947672756","https://openalex.org/W2949753509","https://openalex.org/W2961854495","https://openalex.org/W3098072737","https://openalex.org/W3103526825","https://openalex.org/W3105915408","https://openalex.org/W4239510810","https://openalex.org/W6601964875","https://openalex.org/W6680202767","https://openalex.org/W6714647609"],"related_works":["https://openalex.org/W3113001767","https://openalex.org/W2905030198","https://openalex.org/W3159820758","https://openalex.org/W3183257769","https://openalex.org/W3016307237","https://openalex.org/W3117827099","https://openalex.org/W3129401991","https://openalex.org/W3129336802","https://openalex.org/W2807319534","https://openalex.org/W2988884990","https://openalex.org/W2971355205","https://openalex.org/W2983358130","https://openalex.org/W1984670829","https://openalex.org/W3113546696","https://openalex.org/W2738876274","https://openalex.org/W2964861348","https://openalex.org/W3209272920","https://openalex.org/W3017410307","https://openalex.org/W2751639377","https://openalex.org/W2794406470"],"abstract_inverted_index":{"Attacks":[0],"on":[1,41,67,92],"industrial":[2,17,24,42,59,72,99,122],"enterprises":[3],"are":[4,46,84,149,173],"increasing":[5],"in":[6,11,20,135,202],"number":[7],"as":[8,10,194,196],"well":[9,195],"effect.":[12],"Since":[13],"the":[14,21,28,35,68,95,102,118,139,143],"introduction":[15],"of":[16,30,39,98],"control":[18,155],"systems":[19],"1970'":[22],"s,":[23],"networks":[25],"have":[26,64,74],"been":[27],"target":[29],"malicious":[31],"actors.":[32],"More":[33],"recently,":[34],"political":[36],"and":[37,43,55,82,86,129,157,177,191],"warfare-aspects":[38],"attacks":[40,140],"critical":[44],"infrastructure":[45],"becoming":[47],"more":[48],"relevant.":[49],"In":[50,115,164],"contrast":[51],"to":[52,137,142,166],"classic":[53],"home":[54],"office":[56],"IT":[57],"systems,":[58,63],"IT,":[60],"so-called":[61],"OT":[62],"an":[65],"effect":[66],"physical":[69],"world.":[70],"Furthermore,":[71,189],"devices":[73],"long":[75],"operation":[76,123],"times,":[77],"sometimes":[78],"several":[79],"decades.":[80],"Updates":[81],"fixes":[83],"tedious":[85],"often":[87],"not":[88],"possible.":[89],"The":[90],"threats":[91],"industry":[93],"with":[94,126,183],"legacy":[96],"requirements":[97],"environments":[100],"creates":[101],"need":[103],"for":[104],"efficient":[105],"intrusion":[106],"detection":[107,133],"that":[108],"can":[109],"be":[110],"integrated":[111],"into":[112],"existing":[113],"systems.":[114],"this":[116,203],"work,":[117],"network":[119],"data":[120,147,199],"containing":[121],"is":[124,200],"analysed":[125],"machine":[127,170],"learning-":[128],"time":[130],"series-based":[131],"anomaly":[132],"algorithms":[134,172],"order":[136,165],"discover":[138],"introduced":[141],"data.":[144],"Two":[145],"different":[146],"sets":[148],"used,":[150,174],"one":[151,158],"Modbus-based":[152],"gas":[153],"pipeline":[154],"traffic":[156],"OPC":[159],"UA-based":[160],"batch":[161],"processing":[162],"traffic.":[163],"detect":[167],"attacks,":[168],"two":[169],"learning-based":[171],"namely":[175],"SVM":[176],"Random":[178,184],"Forest.":[179],"Both":[180],"perform":[181],"well,":[182],"Forest":[185],"slightly":[186],"outperforming":[187],"SVM.":[188],"extracting":[190],"selecting":[192],"features":[193],"handling":[197],"missing":[198],"addressed":[201],"work.":[204]},"counts_by_year":[{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":3}],"updated_date":"2026-03-21T08:13:44.787528","created_date":"2022-07-22T00:00:00"}