{"id":"https://openalex.org/W3107544095","doi":"https://doi.org/10.3233/jhs-200642","title":"Entropy-based analyzing anomaly WEB traffic","display_name":"Entropy-based analyzing anomaly WEB traffic","publication_year":2020,"publication_date":"2020-12-01","ids":{"openalex":"https://openalex.org/W3107544095","doi":"https://doi.org/10.3233/jhs-200642","mag":"3107544095"},"language":"en","primary_location":{"id":"doi:10.3233/jhs-200642","is_oa":false,"landing_page_url":"https://doi.org/10.3233/jhs-200642","pdf_url":null,"source":{"id":"https://openalex.org/S133922704","display_name":"Journal of High Speed Networks","issn_l":"0926-6801","issn":["0926-6801","1875-8940"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310318577","host_organization_name":"IOS Press","host_organization_lineage":["https://openalex.org/P4310318577"],"host_organization_lineage_names":["IOS Press"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of High Speed Networks","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5019532804","display_name":"Mehrdad Nasseralfoghara","orcid":null},"institutions":[{"id":"https://openalex.org/I69425150","display_name":"Imam Khomeini International University","ror":"https://ror.org/02jeykk09","country_code":"IR","type":"education","lineage":["https://openalex.org/I69425150"]}],"countries":["IR"],"is_corresponding":false,"raw_author_name":"Mehrdad Nasseralfoghara","raw_affiliation_strings":["Faculty of Engineering, Imam Khomeini International University, Iran. E-mails:\u00a0mnaser1992@gmail.com,\u00a0hamidreza.hamidi@eng.ikiu.ac.ir"],"affiliations":[{"raw_affiliation_string":"Faculty of Engineering, Imam Khomeini International University, Iran. E-mails:\u00a0mnaser1992@gmail.com,\u00a0hamidreza.hamidi@eng.ikiu.ac.ir","institution_ids":["https://openalex.org/I69425150"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5086060305","display_name":"Hamid Reza Hamidi","orcid":"https://orcid.org/0000-0001-6346-3318"},"institutions":[{"id":"https://openalex.org/I69425150","display_name":"Imam Khomeini International University","ror":"https://ror.org/02jeykk09","country_code":"IR","type":"education","lineage":["https://openalex.org/I69425150"]}],"countries":["IR"],"is_corresponding":true,"raw_author_name":"HamidReza Hamidi","raw_affiliation_strings":["Faculty of Engineering, Imam Khomeini International University, Iran. E-mails:\u00a0mnaser1992@gmail.com,\u00a0hamidreza.hamidi@eng.ikiu.ac.ir"],"affiliations":[{"raw_affiliation_string":"Faculty of Engineering, Imam Khomeini International University, Iran. E-mails:\u00a0mnaser1992@gmail.com,\u00a0hamidreza.hamidi@eng.ikiu.ac.ir","institution_ids":["https://openalex.org/I69425150"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5086060305"],"corresponding_institution_ids":["https://openalex.org/I69425150"],"apc_list":null,"apc_paid":null,"fwci":0.3031,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.55687953,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":"26","issue":"4","first_page":"255","last_page":"266"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7864694595336914},{"id":"https://openalex.org/keywords/spectrum-analyzer","display_name":"Spectrum analyzer","score":0.7318412661552429},{"id":"https://openalex.org/keywords/entropy","display_name":"Entropy (arrow of time)","score":0.6225697994232178},{"id":"https://openalex.org/keywords/covert-channel","display_name":"Covert channel","score":0.613028883934021},{"id":"https://openalex.org/keywords/covert","display_name":"Covert","score":0.5959039330482483},{"id":"https://openalex.org/keywords/channel","display_name":"Channel (broadcasting)","score":0.47008705139160156},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.4407532215118408},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.37863385677337646},{"id":"https://openalex.org/keywords/real-time-computing","display_name":"Real-time computing","score":0.3242732286453247},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.287189245223999},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.11696535348892212},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.08539074659347534},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.0799456536769867}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7864694595336914},{"id":"https://openalex.org/C158007255","wikidata":"https://www.wikidata.org/wiki/Q1055222","display_name":"Spectrum analyzer","level":2,"score":0.7318412661552429},{"id":"https://openalex.org/C106301342","wikidata":"https://www.wikidata.org/wiki/Q4117933","display_name":"Entropy (arrow of time)","level":2,"score":0.6225697994232178},{"id":"https://openalex.org/C29024540","wikidata":"https://www.wikidata.org/wiki/Q1476964","display_name":"Covert channel","level":5,"score":0.613028883934021},{"id":"https://openalex.org/C2779338814","wikidata":"https://www.wikidata.org/wiki/Q5179285","display_name":"Covert","level":2,"score":0.5959039330482483},{"id":"https://openalex.org/C127162648","wikidata":"https://www.wikidata.org/wiki/Q16858953","display_name":"Channel (broadcasting)","level":2,"score":0.47008705139160156},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.4407532215118408},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.37863385677337646},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.3242732286453247},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.287189245223999},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.11696535348892212},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.08539074659347534},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0799456536769867},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.0},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.3233/jhs-200642","is_oa":false,"landing_page_url":"https://doi.org/10.3233/jhs-200642","pdf_url":null,"source":{"id":"https://openalex.org/S133922704","display_name":"Journal of High Speed Networks","issn_l":"0926-6801","issn":["0926-6801","1875-8940"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310318577","host_organization_name":"IOS Press","host_organization_lineage":["https://openalex.org/P4310318577"],"host_organization_lineage_names":["IOS Press"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of High Speed Networks","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":39,"referenced_works":["https://openalex.org/W1471507","https://openalex.org/W198888069","https://openalex.org/W334630518","https://openalex.org/W1495134838","https://openalex.org/W1797940646","https://openalex.org/W1958789226","https://openalex.org/W1963845100","https://openalex.org/W1983001326","https://openalex.org/W2037787320","https://openalex.org/W2106070341","https://openalex.org/W2112092883","https://openalex.org/W2119322397","https://openalex.org/W2120467192","https://openalex.org/W2145819439","https://openalex.org/W2151185692","https://openalex.org/W2157852252","https://openalex.org/W2158205231","https://openalex.org/W2162618814","https://openalex.org/W2165920672","https://openalex.org/W2170219762","https://openalex.org/W2270016532","https://openalex.org/W2339473945","https://openalex.org/W2409612194","https://openalex.org/W2502170095","https://openalex.org/W2514403414","https://openalex.org/W2751870871","https://openalex.org/W2767919804","https://openalex.org/W2793647790","https://openalex.org/W2808474923","https://openalex.org/W2935839804","https://openalex.org/W2963139572","https://openalex.org/W3100169753","https://openalex.org/W4230242453","https://openalex.org/W6602279052","https://openalex.org/W6609217705","https://openalex.org/W6640623526","https://openalex.org/W6671890456","https://openalex.org/W6681671234","https://openalex.org/W6703829140"],"related_works":["https://openalex.org/W174282171","https://openalex.org/W2357367573","https://openalex.org/W2128884765","https://openalex.org/W1500817591","https://openalex.org/W2030863607","https://openalex.org/W2017348396","https://openalex.org/W2130990529","https://openalex.org/W2385896398","https://openalex.org/W3107544095","https://openalex.org/W2231981235"],"abstract_inverted_index":{"The":[0,43],"application":[1],"nature":[2],"of":[3,9,18,49,92],"HTTP":[4],"protocol":[5,20],"allows":[6],"the":[7,35,47,58,65,70,76,87,93,96,101],"creation":[8],"a":[10,74,118],"covert":[11,119],"timing":[12],"channel":[13,50,66,94],"based":[14],"on":[15,64,117],"different":[16,22,90],"features":[17],"this":[19,33],"(or":[21],"levels)":[23],"that":[24,100,113],"has":[25],"not":[26,80],"been":[27],"addressed":[28],"in":[29],"previous":[30],"research.":[31],"In":[32],"article,":[34],"entropy-based":[36],"detection":[37],"method":[38],"was":[39],"designed":[40],"and":[41,95],"implemented.":[42],"attacker":[44],"can":[45],"adjust":[46],"amount":[48],"entropy":[51,77,88,127],"by":[52,114],"controlling":[53],"measures":[54],"such":[55],"as":[56,126],"changing":[57],"channel\u2019s":[59],"level":[60],"or":[61],"creating":[62],"noise":[63,116],"to":[67,133],"protect":[68],"from":[69,89],"analyzer\u2019s":[71],"detection.":[72,84],"As":[73],"result,":[75],"threshold":[78],"is":[79],"always":[81],"constant":[82],"for":[83],"By":[85],"comparing":[86],"levels":[91],"analyzer,":[97],"we":[98],"concluded":[99],"analyzer":[102],"must":[103],"investigate":[104],"traffic":[105],"at":[106],"all":[107],"possible":[108],"levels.":[109],"We":[110],"also":[111],"illustrated":[112],"making":[115],"channel,":[120],"its":[121],"capacity":[122],"would":[123,130],"decrease,":[124],"but":[125],"increases,":[128],"it":[129],"be":[131],"harder":[132],"detect":[134],"it.":[135]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}