{"id":"https://openalex.org/W4400583162","doi":"https://doi.org/10.3390/info15070404","title":"Extended Isolation Forest for Intrusion Detection in Zeek Data","display_name":"Extended Isolation Forest for Intrusion Detection in Zeek Data","publication_year":2024,"publication_date":"2024-07-12","ids":{"openalex":"https://openalex.org/W4400583162","doi":"https://doi.org/10.3390/info15070404"},"language":"en","primary_location":{"id":"doi:10.3390/info15070404","is_oa":true,"landing_page_url":"https://doi.org/10.3390/info15070404","pdf_url":"https://www.mdpi.com/2078-2489/15/7/404/pdf?version=1720774207","source":{"id":"https://openalex.org/S4210219776","display_name":"Information","issn_l":"2078-2489","issn":["2078-2489"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/2078-2489/15/7/404/pdf?version=1720774207","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5104423960","display_name":"Fariha Moomtaheen","orcid":"https://orcid.org/0000-0002-5970-4091"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Fariha Moomtaheen","raw_affiliation_strings":["Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA"],"affiliations":[{"raw_affiliation_string":"Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038428882","display_name":"Sikha Bagui","orcid":"https://orcid.org/0000-0002-1886-4582"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Sikha S. Bagui","raw_affiliation_strings":["Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]},{"raw_affiliation_string":"Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038428882","display_name":"Sikha Bagui","orcid":"https://orcid.org/0000-0002-1886-4582"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sikha S. Bagui","raw_affiliation_strings":["Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]},{"raw_affiliation_string":"Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Subhash C. Bagui","orcid":"https://orcid.org/0000-0001-6140-5384"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Subhash C. Bagui","raw_affiliation_strings":["Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]},{"raw_affiliation_string":"Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Subhash C. Bagui","orcid":"https://orcid.org/0000-0001-6140-5384"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Subhash C. Bagui","raw_affiliation_strings":["Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]},{"raw_affiliation_string":"Department of Mathematics and Statistics, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5018128355","display_name":"Dustin Mink","orcid":"https://orcid.org/0000-0003-0106-3890"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Dustin Mink","raw_affiliation_strings":["Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of West Florida, Pensacola, FL 32514, USA","institution_ids":["https://openalex.org/I83683471"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5038428882"],"corresponding_institution_ids":["https://openalex.org/I83683471"],"apc_list":{"value":1400,"currency":"CHF","value_usd":1515},"apc_paid":{"value":1400,"currency":"CHF","value_usd":1515},"fwci":2.0119,"has_fulltext":true,"cited_by_count":6,"citation_normalized_percentile":{"value":0.88272466,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":"15","issue":"7","first_page":"404","last_page":"404"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12357","display_name":"Digital Media Forensic Detection","score":0.9934999942779541,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9901999831199646,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.6645419597625732},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5543321371078491},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.47677117586135864},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.4754069447517395},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.275437593460083},{"id":"https://openalex.org/keywords/geology","display_name":"Geology","score":0.17736515402793884},{"id":"https://openalex.org/keywords/biology","display_name":"Biology","score":0.08645236492156982},{"id":"https://openalex.org/keywords/bioinformatics","display_name":"Bioinformatics","score":0.05274650454521179}],"concepts":[{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.6645419597625732},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5543321371078491},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.47677117586135864},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.4754069447517395},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.275437593460083},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.17736515402793884},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.08645236492156982},{"id":"https://openalex.org/C60644358","wikidata":"https://www.wikidata.org/wiki/Q128570","display_name":"Bioinformatics","level":1,"score":0.05274650454521179},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.3390/info15070404","is_oa":true,"landing_page_url":"https://doi.org/10.3390/info15070404","pdf_url":"https://www.mdpi.com/2078-2489/15/7/404/pdf?version=1720774207","source":{"id":"https://openalex.org/S4210219776","display_name":"Information","issn_l":"2078-2489","issn":["2078-2489"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:7d1cca7e046b4fe3851d8dc539540b4b","is_oa":true,"landing_page_url":"https://doaj.org/article/7d1cca7e046b4fe3851d8dc539540b4b","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Information, Vol 15, Iss 7, p 404 (2024)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.3390/info15070404","is_oa":true,"landing_page_url":"https://doi.org/10.3390/info15070404","pdf_url":"https://www.mdpi.com/2078-2489/15/7/404/pdf?version=1720774207","source":{"id":"https://openalex.org/S4210219776","display_name":"Information","issn_l":"2078-2489","issn":["2078-2489"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4400583162.pdf","grobid_xml":"https://content.openalex.org/works/W4400583162.grobid-xml"},"referenced_works_count":11,"referenced_works":["https://openalex.org/W1995443851","https://openalex.org/W2122646361","https://openalex.org/W2137130182","https://openalex.org/W2296719434","https://openalex.org/W2438467919","https://openalex.org/W4306964299","https://openalex.org/W4392563522","https://openalex.org/W4398196886","https://openalex.org/W6755953715","https://openalex.org/W6862447827","https://openalex.org/W6867399757"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W2382290278","https://openalex.org/W2133389611"],"abstract_inverted_index":{"The":[0,30,114],"novelty":[1],"of":[2,36,56,66,76,130],"this":[3,80],"paper":[4],"is":[5,33,88,107],"in":[6,27,45,48,79],"determining":[7],"and":[8,92,95,142],"using":[9],"hyperparameters":[10],"to":[11,23],"improve":[12],"the":[13,37,54,57,73,82,96,118,123,133,139,145],"Extended":[14],"Isolation":[15,38],"Forest":[16,39],"(EIF)":[17],"algorithm,":[18,22,40],"a":[19,34,61,100],"relatively":[20],"new":[21],"detect":[24],"malicious":[25],"activities":[26],"network":[28],"traffic.":[29],"EIF":[31,58,119],"algorithm":[32,120],"variation":[35],"known":[41],"for":[42,90,109,117,132,138,144],"its":[43],"efficacy":[44],"detecting":[46],"anomalies":[47],"high-dimensional":[49],"data.":[50],"Our":[51],"research":[52],"assesses":[53],"performance":[55],"model":[59],"on":[60],"newly":[62],"created":[63],"dataset":[64],"composed":[65],"Zeek":[67],"Connection":[68],"Logs,":[69],"UWF-ZeekDataFall22.":[70],"To":[71],"handle":[72],"enormous":[74],"volume":[75],"data":[77],"involved":[78],"research,":[81],"Hadoop":[83],"Distributed":[84],"File":[85],"System":[86],"(HDFS)":[87],"employed":[89],"efficient":[91],"fault-tolerant":[93],"storage,":[94],"Apache":[97],"Spark":[98],"framework,":[99],"powerful":[101],"open-source":[102],"Big":[103],"Data":[104],"analytics":[105],"platform,":[106],"utilized":[108],"machine":[110],"learning":[111],"(ML)":[112],"tasks.":[113],"best":[115],"results":[116],"came":[121],"from":[122],"0-extension":[124],"level.":[125],"We":[126],"received":[127],"an":[128],"accuracy":[129],"82.3%":[131],"Resource":[134],"Development":[135],"tactic,":[136,141],"82.21%":[137],"Reconnaissance":[140],"78.3%":[143],"Discovery":[146],"tactic.":[147]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":4}],"updated_date":"2026-04-19T08:26:33.389920","created_date":"2025-10-10T00:00:00"}