{"id":"https://openalex.org/W4388407550","doi":"https://doi.org/10.3390/jcp3040035","title":"Towards a Near-Real-Time Protocol Tunneling Detector Based on Machine Learning Techniques","display_name":"Towards a Near-Real-Time Protocol Tunneling Detector Based on Machine Learning Techniques","publication_year":2023,"publication_date":"2023-11-06","ids":{"openalex":"https://openalex.org/W4388407550","doi":"https://doi.org/10.3390/jcp3040035"},"language":"en","primary_location":{"id":"doi:10.3390/jcp3040035","is_oa":true,"landing_page_url":"https://doi.org/10.3390/jcp3040035","pdf_url":"https://www.mdpi.com/2624-800X/3/4/35/pdf?version=1699261188","source":{"id":"https://openalex.org/S4210232532","display_name":"Journal of Cybersecurity and Privacy","issn_l":"2624-800X","issn":["2624-800X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity and Privacy","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/2624-800X/3/4/35/pdf?version=1699261188","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5014517738","display_name":"Filippo Sobrero","orcid":"https://orcid.org/0009-0003-7677-052X"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Filippo Sobrero","raw_affiliation_strings":["aizoOn Technology Consulting, 10146 Turin, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"aizoOn Technology Consulting, 10146 Turin, Italy","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5092938849","display_name":"Beatrice Clavarezza","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Beatrice Clavarezza","raw_affiliation_strings":["aizoOn Technology Consulting, 10146 Turin, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"aizoOn Technology Consulting, 10146 Turin, Italy","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005581132","display_name":"Daniele Ucci","orcid":"https://orcid.org/0000-0002-5902-3958"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Daniele Ucci","raw_affiliation_strings":["aizoOn Technology Consulting, 10146 Turin, Italy"],"raw_orcid":"https://orcid.org/0000-0002-5902-3958","affiliations":[{"raw_affiliation_string":"aizoOn Technology Consulting, 10146 Turin, Italy","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5075110204","display_name":"Federica Bisio","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Federica Bisio","raw_affiliation_strings":["aizoOn Technology Consulting, 10146 Turin, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"aizoOn Technology Consulting, 10146 Turin, Italy","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5005581132","https://openalex.org/A5014517738"],"corresponding_institution_ids":[],"apc_list":{"value":1000,"currency":"CHF","value_usd":1082},"apc_paid":{"value":1000,"currency":"CHF","value_usd":1082},"fwci":0.1921,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.52491596,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":"3","issue":"4","first_page":"794","last_page":"807"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7475702166557312},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.7466467618942261},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.642204761505127},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.5526441335678101},{"id":"https://openalex.org/keywords/pace","display_name":"Pace","score":0.506648600101471},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.49787473678588867},{"id":"https://openalex.org/keywords/attack-surface","display_name":"Attack surface","score":0.4801734983921051},{"id":"https://openalex.org/keywords/metadata","display_name":"Metadata","score":0.44310498237609863},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.43079477548599243},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.35443174839019775},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.1384698450565338}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7475702166557312},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.7466467618942261},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.642204761505127},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.5526441335678101},{"id":"https://openalex.org/C2777526511","wikidata":"https://www.wikidata.org/wiki/Q691543","display_name":"Pace","level":2,"score":0.506648600101471},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.49787473678588867},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.4801734983921051},{"id":"https://openalex.org/C93518851","wikidata":"https://www.wikidata.org/wiki/Q180160","display_name":"Metadata","level":2,"score":0.44310498237609863},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.43079477548599243},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.35443174839019775},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.1384698450565338},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C13280743","wikidata":"https://www.wikidata.org/wiki/Q131089","display_name":"Geodesy","level":1,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0},{"id":"https://openalex.org/C205649164","wikidata":"https://www.wikidata.org/wiki/Q1071","display_name":"Geography","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.3390/jcp3040035","is_oa":true,"landing_page_url":"https://doi.org/10.3390/jcp3040035","pdf_url":"https://www.mdpi.com/2624-800X/3/4/35/pdf?version=1699261188","source":{"id":"https://openalex.org/S4210232532","display_name":"Journal of Cybersecurity and Privacy","issn_l":"2624-800X","issn":["2624-800X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity and Privacy","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:08bb328084eb4bde9c1cd27398eb0613","is_oa":true,"landing_page_url":"https://doaj.org/article/08bb328084eb4bde9c1cd27398eb0613","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Journal of Cybersecurity and Privacy, Vol 3, Iss 4, Pp 794-807 (2023)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.3390/jcp3040035","is_oa":true,"landing_page_url":"https://doi.org/10.3390/jcp3040035","pdf_url":"https://www.mdpi.com/2624-800X/3/4/35/pdf?version=1699261188","source":{"id":"https://openalex.org/S4210232532","display_name":"Journal of Cybersecurity and Privacy","issn_l":"2624-800X","issn":["2624-800X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity and Privacy","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","score":0.5099999904632568,"display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4388407550.pdf"},"referenced_works_count":22,"referenced_works":["https://openalex.org/W1995875735","https://openalex.org/W2148143831","https://openalex.org/W2326113404","https://openalex.org/W2404532944","https://openalex.org/W2562370852","https://openalex.org/W2595170736","https://openalex.org/W2773625629","https://openalex.org/W2885639124","https://openalex.org/W2900633536","https://openalex.org/W2901312569","https://openalex.org/W2948023660","https://openalex.org/W2996378475","https://openalex.org/W3089398505","https://openalex.org/W3098102491","https://openalex.org/W3104507661","https://openalex.org/W3137483304","https://openalex.org/W3185198511","https://openalex.org/W4206956181","https://openalex.org/W4226373174","https://openalex.org/W4310206563","https://openalex.org/W6682141768","https://openalex.org/W6740744476"],"related_works":["https://openalex.org/W2386723501","https://openalex.org/W2392768766","https://openalex.org/W2058118494","https://openalex.org/W2387879414","https://openalex.org/W2390304029","https://openalex.org/W2095118173","https://openalex.org/W2382021449","https://openalex.org/W2097492617","https://openalex.org/W2104269053","https://openalex.org/W2106424170"],"abstract_inverted_index":{"In":[0,92],"the":[1,30,35,38,49,71,75,79,123,180],"very":[2],"recent":[3],"years,":[4],"cybersecurity":[5],"attacks":[6,117,144],"have":[7,183],"increased":[8],"at":[9],"an":[10,46,194,200],"unprecedented":[11],"pace,":[12],"becoming":[13],"ever":[14],"more":[15],"sophisticated":[16],"and":[17,26,58,74,90,137,145,151,189,199],"costly.":[18],"Their":[19],"impact":[20],"has":[21],"involved":[22],"both":[23,186],"private/public":[24],"companies":[25],"critical":[27],"infrastructures.":[28],"At":[29],"same":[31],"time,":[32],"due":[33],"to":[34,69,83,121,140,167,203],"COVID-19":[36],"pandemic,":[37],"security":[39,72,86,163],"perimeters":[40],"of":[41,66,88,179,197],"many":[42],"organizations":[43],"expanded,":[44],"causing":[45],"increase":[47],"in":[48,78,104,125,160],"attack":[50],"surface":[51],"exploitable":[52],"by":[53,147],"threat":[54],"actors":[55,120],"through":[56],"malware":[57],"phishing":[59],"attacks.":[60],"Given":[61],"these":[62],"factors,":[63],"it":[64],"is":[65],"primary":[67],"importance":[68],"monitor":[70],"perimeter":[73],"events":[76],"occurring":[77,143],"monitored":[80],"network,":[81],"according":[82],"a":[84,97,107],"tested":[85,185],"strategy":[87],"detection":[89,177],"response.":[91],"this":[93],"paper,":[94],"we":[95],"present":[96],"protocol":[98],"tunneling":[99,116],"detector":[100,132],"prototype":[101,182],"which":[102,126],"inspects,":[103],"near":[105],"real-time,":[106],"company\u2019s":[108],"network":[109,135,162,169],"traffic":[110],"using":[111],"machine":[112,149],"learning":[113,150],"techniques.":[114],"Indeed,":[115],"allow":[118],"malicious":[119,190],"maximize":[122],"time":[124],"their":[127],"activity":[128],"remains":[129],"undetected.":[130],"The":[131,154,176],"monitors":[133],"unencrypted":[134],"flows":[136],"extracts":[138],"features":[139],"detect":[141],"possible":[142],"anomalies":[146],"combining":[148],"deep":[152],"learning.":[153],"proposed":[155],"module":[156],"can":[157],"be":[158],"embedded":[159],"any":[161],"monitoring":[164],"platform":[165],"able":[166],"provide":[168],"flow":[170],"information":[171],"along":[172],"with":[173],"its":[174],"metadata.":[175],"capabilities":[178],"implemented":[181],"been":[184],"on":[187],"benign":[188],"datasets.":[191],"Results":[192],"show":[193],"overall":[195],"accuracy":[196],"97.1%":[198],"F1-score":[201],"equal":[202],"95.6%.":[204]},"counts_by_year":[{"year":2024,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}