{"id":"https://openalex.org/W2010571968","doi":"https://doi.org/10.4108/icst.collaboratecom.2013.254136","title":"Finding Anomalies in Windows Event Logs Using Standard Deviation","display_name":"Finding Anomalies in Windows Event Logs Using Standard Deviation","publication_year":2013,"publication_date":"2013-01-01","ids":{"openalex":"https://openalex.org/W2010571968","doi":"https://doi.org/10.4108/icst.collaboratecom.2013.254136","mag":"2010571968"},"language":"en","primary_location":{"id":"doi:10.4108/icst.collaboratecom.2013.254136","is_oa":true,"landing_page_url":"https://doi.org/10.4108/icst.collaboratecom.2013.254136","pdf_url":"http://eudl.eu/pdf/10.4108/icst.collaboratecom.2013.254136","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"http://eudl.eu/pdf/10.4108/icst.collaboratecom.2013.254136","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5013546564","display_name":"John L. Dwyer","orcid":"https://orcid.org/0000-0002-8281-0896"},"institutions":[{"id":"https://openalex.org/I168416876","display_name":"Northern Kentucky University","ror":"https://ror.org/01k44g025","country_code":"US","type":"education","lineage":["https://openalex.org/I168416876"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"John Dwyer","raw_affiliation_strings":["Department of Computer Science Northern Kentucky University Highland Heights, KY 41099, USA","[Department of Computer Science, Northern Kentucky University, Highland Heights, KY, USA]"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science Northern Kentucky University Highland Heights, KY 41099, USA","institution_ids":["https://openalex.org/I168416876"]},{"raw_affiliation_string":"[Department of Computer Science, Northern Kentucky University, Highland Heights, KY, USA]","institution_ids":["https://openalex.org/I168416876"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5067651880","display_name":"Traian Marius Tru\u0163\u0103","orcid":"https://orcid.org/0000-0001-9447-4861"},"institutions":[{"id":"https://openalex.org/I168416876","display_name":"Northern Kentucky University","ror":"https://ror.org/01k44g025","country_code":"US","type":"education","lineage":["https://openalex.org/I168416876"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Traian Marius Truta","raw_affiliation_strings":["[Department of Computer Science, Northern Kentucky University, Highland Heights, KY, USA]"],"affiliations":[{"raw_affiliation_string":"[Department of Computer Science, Northern Kentucky University, Highland Heights, KY, USA]","institution_ids":["https://openalex.org/I168416876"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5013546564"],"corresponding_institution_ids":["https://openalex.org/I168416876"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":7,"citation_normalized_percentile":{"value":0.11217932,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9980000257492065,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9980000257492065,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9944000244140625,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9861000180244446,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6830593347549438},{"id":"https://openalex.org/keywords/event","display_name":"Event (particle physics)","score":0.664573073387146},{"id":"https://openalex.org/keywords/event-data","display_name":"Event data","score":0.4525219798088074},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3536114990711212},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.3110445737838745},{"id":"https://openalex.org/keywords/data-modeling","display_name":"Data modeling","score":0.2067502737045288}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6830593347549438},{"id":"https://openalex.org/C2779662365","wikidata":"https://www.wikidata.org/wiki/Q5416694","display_name":"Event (particle physics)","level":2,"score":0.664573073387146},{"id":"https://openalex.org/C2987896495","wikidata":"https://www.wikidata.org/wiki/Q5416716","display_name":"Event data","level":3,"score":0.4525219798088074},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3536114990711212},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.3110445737838745},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.2067502737045288},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.4108/icst.collaboratecom.2013.254136","is_oa":true,"landing_page_url":"https://doi.org/10.4108/icst.collaboratecom.2013.254136","pdf_url":"http://eudl.eu/pdf/10.4108/icst.collaboratecom.2013.254136","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.4108/icst.collaboratecom.2013.254136","is_oa":true,"landing_page_url":"https://doi.org/10.4108/icst.collaboratecom.2013.254136","pdf_url":"http://eudl.eu/pdf/10.4108/icst.collaboratecom.2013.254136","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing","raw_type":"proceedings-article"},"sustainable_development_goals":[{"score":0.6600000262260437,"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2010571968.pdf","grobid_xml":"https://content.openalex.org/works/W2010571968.grobid-xml"},"referenced_works_count":2,"referenced_works":["https://openalex.org/W2146523844","https://openalex.org/W2612189897"],"related_works":["https://openalex.org/W2025614457","https://openalex.org/W4385573527","https://openalex.org/W4309044578","https://openalex.org/W4319877673","https://openalex.org/W4308672222","https://openalex.org/W2185070550","https://openalex.org/W3111366672","https://openalex.org/W2109809809","https://openalex.org/W148577365","https://openalex.org/W4206497353"],"abstract_inverted_index":{"Security":[0],"is":[1],"one":[2],"of":[3,7,23,40,46],"the":[4,38,44],"biggest":[5],"concerns":[6],"any":[8],"company":[9],"that":[10],"has":[11],"an":[12],"IT":[13],"infrastructure.":[14],"Windows":[15],"event":[16],"logs":[17],"are":[18],"a":[19],"very":[20],"useful":[21],"source":[22],"data":[24,42],"for":[25],"security":[26],"information,":[27],"but":[28],"sometimes":[29],"can":[30],"be":[31],"nearly":[32],"impossible":[33],"to":[34,37],"use":[35],"due":[36],"complexity":[39],"log":[41],"or":[43],"number":[45],"events":[47],"generated":[48],"per":[49],"minute.":[50],"For":[51],"this":[52],"r":[53]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}