{"id":"https://openalex.org/W2095526213","doi":"https://doi.org/10.3166/tsi.23.359-390","title":"D\u00e9tection d'intrusions : corr\u00e9lation d'alertes","display_name":"D\u00e9tection d'intrusions : corr\u00e9lation d'alertes","publication_year":2004,"publication_date":"2004-03-01","ids":{"openalex":"https://openalex.org/W2095526213","doi":"https://doi.org/10.3166/tsi.23.359-390","mag":"2095526213"},"language":"fr","primary_location":{"id":"doi:10.3166/tsi.23.359-390","is_oa":false,"landing_page_url":"https://doi.org/10.3166/tsi.23.359-390","pdf_url":null,"source":{"id":"https://openalex.org/S4210191397","display_name":"Techniques et sciences informatiques","issn_l":"0752-4072","issn":["0752-4072","2116-5920"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Techniques et sciences informatiques","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5038047052","display_name":"Herv\u00e9 Debar","orcid":"https://orcid.org/0000-0002-1344-4167"},"institutions":[{"id":"https://openalex.org/I102475099","display_name":"Sup\u00e9lec","ror":"https://ror.org/00n7gwn90","country_code":"FR","type":"education","lineage":["https://openalex.org/I102475099"]}],"countries":["FR"],"is_corresponding":true,"raw_author_name":"Herv\u00e9 Debar","raw_affiliation_strings":["SUPELEC-Campus Rennes"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SUPELEC-Campus Rennes","institution_ids":["https://openalex.org/I102475099"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075439663","display_name":"Benjamin Morin","orcid":"https://orcid.org/0000-0001-6632-0320"},"institutions":[{"id":"https://openalex.org/I102475099","display_name":"Sup\u00e9lec","ror":"https://ror.org/00n7gwn90","country_code":"FR","type":"education","lineage":["https://openalex.org/I102475099"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Benjamin Morin","raw_affiliation_strings":["SUPELEC-Campus Rennes"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SUPELEC-Campus Rennes","institution_ids":["https://openalex.org/I102475099"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5113930460","display_name":"Fr\u00e9d\u00e9ric Cuppens","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Fr\u00e9d\u00e9ric Cuppens","raw_affiliation_strings":["TAMCIC -\n        Traitement Algorithmique et Mat\u00e9riel de la Communication, de l'Information et de la Connaissance","RSM -\n        D\u00e9partement R\u00e9seaux, S\u00e9curit\u00e9 et Multim\u00e9dia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"TAMCIC -\n        Traitement Algorithmique et Mat\u00e9riel de la Communication, de l'Information et de la Connaissance","institution_ids":[]},{"raw_affiliation_string":"RSM -\n        D\u00e9partement R\u00e9seaux, S\u00e9curit\u00e9 et Multim\u00e9dia","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015628570","display_name":"Fabien Autrel","orcid":"https://orcid.org/0000-0002-8403-515X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Fabien Autrel","raw_affiliation_strings":["FRIA -\n        F\u00e9d\u00e9ration de Recherche en Informatique et Automatique"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"FRIA -\n        F\u00e9d\u00e9ration de Recherche en Informatique et Automatique","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5113507934","display_name":"Ludovic M\u00e9","orcid":null},"institutions":[{"id":"https://openalex.org/I102475099","display_name":"Sup\u00e9lec","ror":"https://ror.org/00n7gwn90","country_code":"FR","type":"education","lineage":["https://openalex.org/I102475099"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Ludovic M\u00e9","raw_affiliation_strings":["SUPELEC-Campus Rennes"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SUPELEC-Campus Rennes","institution_ids":["https://openalex.org/I102475099"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069411166","display_name":"Bernard Vivinis","orcid":null},"institutions":[{"id":"https://openalex.org/I102475099","display_name":"Sup\u00e9lec","ror":"https://ror.org/00n7gwn90","country_code":"FR","type":"education","lineage":["https://openalex.org/I102475099"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Bernard Vivinis","raw_affiliation_strings":["SUPELEC-Campus Rennes"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SUPELEC-Campus Rennes","institution_ids":["https://openalex.org/I102475099"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5089475466","display_name":"Salem Benferhat","orcid":"https://orcid.org/0000-0002-4853-3637"},"institutions":[{"id":"https://openalex.org/I4210115519","display_name":"Centre de Recherche en Informatique","ror":"https://ror.org/020cdve92","country_code":"FR","type":"facility","lineage":["https://openalex.org/I190752583","https://openalex.org/I2746051580","https://openalex.org/I4210091621","https://openalex.org/I4210115519","https://openalex.org/I70768539"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Salem Benferhat","raw_affiliation_strings":["CRIL -\n        Centre de Recherche en Informatique de Lens"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CRIL -\n        Centre de Recherche en Informatique de Lens","institution_ids":["https://openalex.org/I4210115519"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009047342","display_name":"Mireille Ducass\u00e9","orcid":"https://orcid.org/0000-0003-1084-4322"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mireille Ducass\u00e9","raw_affiliation_strings":["LIS -\n        Logical Information Systems"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"LIS -\n        Logical Information Systems","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5089321381","display_name":"Rodolphe Ortalo","orcid":"https://orcid.org/0009-0004-8034-6956"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Rodolphe Ortalo","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":9,"corresponding_author_ids":["https://openalex.org/A5038047052"],"corresponding_institution_ids":["https://openalex.org/I102475099"],"apc_list":null,"apc_paid":null,"fwci":0.7482,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.78109431,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"23","issue":"3","first_page":"359","last_page":"390"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9926999807357788,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.8880170583724976},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6843443512916565},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.5415125489234924},{"id":"https://openalex.org/keywords/operator","display_name":"Operator (biology)","score":0.5174358487129211},{"id":"https://openalex.org/keywords/intrusion-prevention-system","display_name":"Intrusion prevention system","score":0.43820473551750183},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.43449854850769043},{"id":"https://openalex.org/keywords/information-systems-security","display_name":"Information systems security","score":0.42952960729599},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3708384335041046},{"id":"https://openalex.org/keywords/information-system","display_name":"Information system","score":0.2312164306640625},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.13640278577804565},{"id":"https://openalex.org/keywords/management-information-systems","display_name":"Management information systems","score":0.07300686836242676},{"id":"https://openalex.org/keywords/geology","display_name":"Geology","score":0.06233793497085571}],"concepts":[{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.8880170583724976},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6843443512916565},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.5415125489234924},{"id":"https://openalex.org/C17020691","wikidata":"https://www.wikidata.org/wiki/Q139677","display_name":"Operator (biology)","level":5,"score":0.5174358487129211},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.43820473551750183},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.43449854850769043},{"id":"https://openalex.org/C2988319471","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information systems security","level":4,"score":0.42952960729599},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3708384335041046},{"id":"https://openalex.org/C180198813","wikidata":"https://www.wikidata.org/wiki/Q121182","display_name":"Information system","level":2,"score":0.2312164306640625},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.13640278577804565},{"id":"https://openalex.org/C29848774","wikidata":"https://www.wikidata.org/wiki/Q61905","display_name":"Management information systems","level":3,"score":0.07300686836242676},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.06233793497085571},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C158448853","wikidata":"https://www.wikidata.org/wiki/Q425218","display_name":"Repressor","level":4,"score":0.0},{"id":"https://openalex.org/C86339819","wikidata":"https://www.wikidata.org/wiki/Q407384","display_name":"Transcription factor","level":3,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.3166/tsi.23.359-390","is_oa":false,"landing_page_url":"https://doi.org/10.3166/tsi.23.359-390","pdf_url":null,"source":{"id":"https://openalex.org/S4210191397","display_name":"Techniques et sciences informatiques","issn_l":"0752-4072","issn":["0752-4072","2116-5920"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Techniques et sciences informatiques","raw_type":"journal-article"},{"id":"pmh:oai:publications.polymtl.ca:46840","is_oa":false,"landing_page_url":"https://publications.polymtl.ca/46840/","pdf_url":null,"source":{"id":"https://openalex.org/S4306401013","display_name":"PolyPublie (\u00c9cole Polytechnique de Montr\u00e9al)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I45683168","host_organization_name":"Polytechnique Montr\u00e9al","host_organization_lineage":["https://openalex.org/I45683168"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Article de revue"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W177666592","https://openalex.org/W181378396","https://openalex.org/W1481915258","https://openalex.org/W1495304983","https://openalex.org/W1499966149","https://openalex.org/W1519378944","https://openalex.org/W1536779234","https://openalex.org/W1554596310","https://openalex.org/W1570845098","https://openalex.org/W1587979610","https://openalex.org/W1589267927","https://openalex.org/W1606099259","https://openalex.org/W1684452600","https://openalex.org/W1754293565","https://openalex.org/W1913166991","https://openalex.org/W1999448603","https://openalex.org/W2073165180","https://openalex.org/W2096063762","https://openalex.org/W2100715081","https://openalex.org/W2102056016","https://openalex.org/W2108867737","https://openalex.org/W2163277533","https://openalex.org/W2166657964"],"related_works":["https://openalex.org/W2392603527","https://openalex.org/W2390009783","https://openalex.org/W2348767155","https://openalex.org/W2388497169","https://openalex.org/W3120393658","https://openalex.org/W4283700121","https://openalex.org/W1496376327","https://openalex.org/W2357468538","https://openalex.org/W1513478798","https://openalex.org/W2133389611"],"abstract_inverted_index":{"Current":[0],"intrusion":[1,82],"detection":[2],"systems":[3],"generate":[4],"too":[5],"many":[6],"alerts.":[7],"These":[8,20],"alerts":[9,21],"are":[10,22],"imprecise":[11],"and":[12,46,73],"partial.":[13],"Furthermore,":[14],"they":[15],"contain":[16],"low":[17],"level":[18],"information.":[19],"therefore":[23],"of":[24,41,51,54,60,68],"limited":[25],"interest":[26],"for":[27],"a":[28,34,48],"human":[29],"operator.":[30],"Alert":[31],"correlation":[32,71],"is":[33],"promising":[35],"technology":[36],"to":[37,81],"reduce":[38],"the":[39,44,52,55,58],"number":[40],"alerts,":[42],"improve":[43],"diagnostic":[45],"provide":[47],"better":[49],"vision":[50],"security":[53],"system":[56],"in":[57],"case":[59],"an":[61,66],"intrusion.":[62],"This":[63],"paper":[64],"presents":[65],"overview":[67],"different":[69],"alert":[70],"technologies":[72,77],"shows":[74],"how":[75],"these":[76],"can":[78],"be":[79],"applied":[80],"detection.":[83]},"counts_by_year":[],"updated_date":"2026-05-04T08:30:34.212998","created_date":"2025-10-10T00:00:00"}