{"id":"https://openalex.org/W2508381203","doi":"https://doi.org/10.5220/0005953003910396","title":"A Pre-clustering Method To Improve Anomaly Detection","display_name":"A Pre-clustering Method To Improve Anomaly Detection","publication_year":2016,"publication_date":"2016-01-01","ids":{"openalex":"https://openalex.org/W2508381203","doi":"https://doi.org/10.5220/0005953003910396","mag":"2508381203"},"language":"en","primary_location":{"id":"doi:10.5220/0005953003910396","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005953003910396","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 13th International Joint Conference on e-Business and Telecommunications","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.5220/0005953003910396","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5033054004","display_name":"Denis Hock","orcid":"https://orcid.org/0000-0002-2750-0502"},"institutions":[{"id":"https://openalex.org/I114090438","display_name":"Goethe University Frankfurt","ror":"https://ror.org/04cvxnb49","country_code":"DE","type":"education","lineage":["https://openalex.org/I114090438"]},{"id":"https://openalex.org/I5237613","display_name":"Frankfurt University of Applied Sciences","ror":"https://ror.org/02r625m11","country_code":"DE","type":"education","lineage":["https://openalex.org/I5237613"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Denis Hock","raw_affiliation_strings":["Frankfurt University of Applied Sciences, Germany"],"affiliations":[{"raw_affiliation_string":"Frankfurt University of Applied Sciences, Germany","institution_ids":["https://openalex.org/I5237613","https://openalex.org/I114090438"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5111909213","display_name":"Martin Kappes","orcid":null},"institutions":[{"id":"https://openalex.org/I114090438","display_name":"Goethe University Frankfurt","ror":"https://ror.org/04cvxnb49","country_code":"DE","type":"education","lineage":["https://openalex.org/I114090438"]},{"id":"https://openalex.org/I5237613","display_name":"Frankfurt University of Applied Sciences","ror":"https://ror.org/02r625m11","country_code":"DE","type":"education","lineage":["https://openalex.org/I5237613"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Martin Kappes","raw_affiliation_strings":["Frankfurt University of Applied Sciences, Germany"],"affiliations":[{"raw_affiliation_string":"Frankfurt University of Applied Sciences, Germany","institution_ids":["https://openalex.org/I5237613","https://openalex.org/I114090438"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5044709278","display_name":"Bogdan Ghita","orcid":"https://orcid.org/0000-0002-1788-547X"},"institutions":[{"id":"https://openalex.org/I897542642","display_name":"University of Plymouth","ror":"https://ror.org/008n7pv89","country_code":"GB","type":"education","lineage":["https://openalex.org/I897542642"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Bogdan Ghita","raw_affiliation_strings":["Plymouth University, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Plymouth University, United Kingdom","institution_ids":["https://openalex.org/I897542642"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5033054004"],"corresponding_institution_ids":["https://openalex.org/I114090438","https://openalex.org/I5237613"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.08796739,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"391","last_page":"396"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.8251013159751892},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.7864119410514832},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.772122859954834},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.7112123370170593},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.6229679584503174},{"id":"https://openalex.org/keywords/preprocessor","display_name":"Preprocessor","score":0.5565243363380432},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.5541653633117676},{"id":"https://openalex.org/keywords/anomaly","display_name":"Anomaly (physics)","score":0.4222114682197571},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3566133975982666},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.12462469935417175}],"concepts":[{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.8251013159751892},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.7864119410514832},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.772122859954834},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.7112123370170593},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.6229679584503174},{"id":"https://openalex.org/C34736171","wikidata":"https://www.wikidata.org/wiki/Q918333","display_name":"Preprocessor","level":2,"score":0.5565243363380432},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.5541653633117676},{"id":"https://openalex.org/C12997251","wikidata":"https://www.wikidata.org/wiki/Q567560","display_name":"Anomaly (physics)","level":2,"score":0.4222114682197571},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3566133975982666},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.12462469935417175},{"id":"https://openalex.org/C26873012","wikidata":"https://www.wikidata.org/wiki/Q214781","display_name":"Condensed matter physics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.5220/0005953003910396","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005953003910396","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 13th International Joint Conference on e-Business and Telecommunications","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.5220/0005953003910396","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005953003910396","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 13th International Joint Conference on e-Business and Telecommunications","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":7,"referenced_works":["https://openalex.org/W44307044","https://openalex.org/W1556024794","https://openalex.org/W1747767590","https://openalex.org/W1965334909","https://openalex.org/W1988861237","https://openalex.org/W2133524609","https://openalex.org/W2150847526"],"related_works":["https://openalex.org/W2806741695","https://openalex.org/W4290647774","https://openalex.org/W3189286258","https://openalex.org/W3207797160","https://openalex.org/W3210364259","https://openalex.org/W4300558037","https://openalex.org/W2667207928","https://openalex.org/W2912112202","https://openalex.org/W4377864969","https://openalex.org/W3030345572"],"abstract_inverted_index":{"While":[0],"Anomaly":[1,48],"Detection":[2,49],"is":[3,103],"commonly":[4],"accepted":[5],"as":[6,71],"an":[7],"appropriate":[8],"technique":[9],"to":[10,52],"uncover":[11],"yet":[12],"unknown":[13],"network\r\n\r\nmisuse":[14],"patterns":[15],"and":[16,29,37],"malware,":[17],"detection":[18,54,84,100],"rates":[19,55,85,101],"are":[20],"often":[21],"diminished":[22],"by,":[23],"e.g.,":[24],"unpredictable":[25],"user":[26],"behavior,\r\n\r\nnew":[27],"applications":[28],"concept":[30],"changes.":[31],"In":[32],"this":[33],"paper,":[34],"we":[35],"propose":[36],"evaluate":[38],"the":[39,58],"benefits":[40],"of":[41],"using":[42],"clustering\r\n\r\nmethods":[43],"for":[44,67,86],"data":[45],"preprocessing":[46],"in":[47,50,57],"order":[51],"improve":[53,99],"even":[56],"presence\r\n\r\nof":[59],"such":[60,70],"events.":[61],"We":[62],"study":[63],"our":[64,94],"pre-clustering":[65],"approach":[66,95],"different":[68],"features":[69],"IP":[72],"addresses,":[73],"traffic":[74],"characteristics\r\n\r\nand":[75],"application":[76],"layer":[77],"protocols.":[78],"Our":[79],"results":[80],"obtained":[81],"by":[82],"analyzing":[83],"real":[87],"network\r\n\r\ntraffic":[88],"with":[89],"actual":[90],"intrusions":[91],"indicates":[92],"that":[93],"does":[96],"indeed":[97],"significantly":[98],"and,\r\n\r\nmoreover,":[102],"practically":[104],"feasible.":[105]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}