{"id":"https://openalex.org/W2344236714","doi":"https://doi.org/10.5220/0005745504570464","title":"Contextual Intrusion Alerts for Scada Networks - An Ontology based Approach for Intrusion Alerts Post Processing","display_name":"Contextual Intrusion Alerts for Scada Networks - An Ontology based Approach for Intrusion Alerts Post Processing","publication_year":2016,"publication_date":"2016-01-01","ids":{"openalex":"https://openalex.org/W2344236714","doi":"https://doi.org/10.5220/0005745504570464","mag":"2344236714"},"language":"en","primary_location":{"id":"doi:10.5220/0005745504570464","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005745504570464","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2nd International Conference on Information Systems Security and Privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.5220/0005745504570464","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5114113897","display_name":"Abdullah Al Balushi","orcid":null},"institutions":[{"id":"https://openalex.org/I126231945","display_name":"Queen's University Belfast","ror":"https://ror.org/00hswnk62","country_code":"GB","type":"education","lineage":["https://openalex.org/I126231945"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Abdullah Al Balushi","raw_affiliation_strings":["Queens University Belfast, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Queens University Belfast, United Kingdom","institution_ids":["https://openalex.org/I126231945"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5110340370","display_name":"Kieran McLaughlin","orcid":null},"institutions":[{"id":"https://openalex.org/I126231945","display_name":"Queen's University Belfast","ror":"https://ror.org/00hswnk62","country_code":"GB","type":"education","lineage":["https://openalex.org/I126231945"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Kieran McLaughlin","raw_affiliation_strings":["Queens University Belfast, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Queens University Belfast, United Kingdom","institution_ids":["https://openalex.org/I126231945"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5103745938","display_name":"Sakir Sezer","orcid":null},"institutions":[{"id":"https://openalex.org/I126231945","display_name":"Queen's University Belfast","ror":"https://ror.org/00hswnk62","country_code":"GB","type":"education","lineage":["https://openalex.org/I126231945"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Sakir Sezer","raw_affiliation_strings":["Queens University Belfast, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Queens University Belfast, United Kingdom","institution_ids":["https://openalex.org/I126231945"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5114113897"],"corresponding_institution_ids":["https://openalex.org/I126231945"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.03265192,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"457","last_page":"464"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9919000267982483,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9872999787330627,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.796151340007782},{"id":"https://openalex.org/keywords/ontology","display_name":"Ontology","score":0.7697955369949341},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.7410222291946411},{"id":"https://openalex.org/keywords/scada","display_name":"SCADA","score":0.7233775854110718},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.5330520868301392},{"id":"https://openalex.org/keywords/intrusion-prevention-system","display_name":"Intrusion prevention system","score":0.47731146216392517},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.33685705065727234},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.07297879457473755}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.796151340007782},{"id":"https://openalex.org/C25810664","wikidata":"https://www.wikidata.org/wiki/Q44325","display_name":"Ontology","level":2,"score":0.7697955369949341},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.7410222291946411},{"id":"https://openalex.org/C113863187","wikidata":"https://www.wikidata.org/wiki/Q17498","display_name":"SCADA","level":2,"score":0.7233775854110718},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.5330520868301392},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.47731146216392517},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33685705065727234},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.07297879457473755},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C17409809","wikidata":"https://www.wikidata.org/wiki/Q161764","display_name":"Geochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.5220/0005745504570464","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005745504570464","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2nd International Conference on Information Systems Security and Privacy","raw_type":"proceedings-article"},{"id":"pmh:oai:pure.qub.ac.uk/portal:publications/eb3dc6de-c12a-403a-9503-e937482811a6","is_oa":false,"landing_page_url":"https://pure.qub.ac.uk/en/publications/eb3dc6de-c12a-403a-9503-e937482811a6","pdf_url":null,"source":{"id":"https://openalex.org/S4306402319","display_name":"Research Portal (Queen's University Belfast)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I126231945","host_organization_name":"Queen's University Belfast","host_organization_lineage":["https://openalex.org/I126231945"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Al Balushi, A S A, McLaughlin, K & Sezer, S 2016, Contextual Intrusion Alerts for SCADA Networks. in Proceedings of the 2nd International Conference on Information Systems Security and Privacy. pp. 457-464, 2nd International Conference on Information Systems Security and Privacy, Rome, Italy, 19/01/2016. https://doi.org/10.5220/0005745504570464","raw_type":"info:eu-repo/semantics/conferenceObject"}],"best_oa_location":{"id":"doi:10.5220/0005745504570464","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005745504570464","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2nd International Conference on Information Systems Security and Privacy","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5445011987","display_name":null,"funder_award_id":"EP/K004379/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G6577499357","display_name":null,"funder_award_id":"EP/N508664/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2392603527","https://openalex.org/W2390009783","https://openalex.org/W2348767155","https://openalex.org/W2388497169","https://openalex.org/W3120393658","https://openalex.org/W4283700121","https://openalex.org/W1496376327","https://openalex.org/W2357468538","https://openalex.org/W4300599821","https://openalex.org/W2133389611"],"abstract_inverted_index":{"The":[0,95,119],"complexity":[1],"of":[2,38,115],"modern":[3],"SCADA":[4,51],"networks":[5],"and":[6,21,35,63,71,107],"their":[7],"associated":[8],"cyber-attacks":[9],"requires":[10],"an":[11,43],"expressive":[12],"but":[13],"flexible":[14],"manner":[15],"for":[16,31,46],"representing":[17],"both":[18],"domain":[19],"knowledge":[20],"collected":[22],"intrusion":[23,48,67,81],"alerts":[24,49,82,97],"with":[25],"the":[26,100,110],"ability":[27],"to":[28,61,102,108],"integrate":[29],"them":[30],"enhanced":[32],"analytical":[33],"capabilities":[34],"better":[36,103],"understanding":[37],"attacks.":[39],"This":[40,75],"paper":[41],"proposes":[42],"ontology-based":[44],"approach":[45],"contextualized":[47,96],"in":[50,89],"networks.":[52],"In":[53],"this":[54],"approach,":[55],"three":[56],"security":[57],"ontologies":[58],"were":[59],"developed":[60],"represent":[62],"store":[64],"information":[65,76],"on":[66],"alerts,":[68],"Modbus":[69,72],"communications,":[70],"attack":[73,117],"descriptions.":[74],"is":[77,122],"correlated":[78],"into":[79],"enriched":[80],"using":[83],"simple":[84],"ontology":[85],"logic":[86],"rules":[87],"written":[88],"Semantic":[90],"Query-Enhanced":[91],"Web":[92],"Rules":[93],"(SQWRL).":[94],"give":[98],"analysts":[99],"means":[101],"understand":[104],"evolving":[105],"attacks":[106],"uncover":[109],"semantic":[111],"relationships":[112],"between":[113],"sequences":[114],"individual":[116],"events.":[118],"proposed":[120],"system":[121],"illustrated":[123],"by":[124],"two":[125],"use":[126],"case":[127],"scenarios.":[128]},"counts_by_year":[],"updated_date":"2026-04-16T15:07:20.185449","created_date":"2025-10-10T00:00:00"}