{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,25]],"date-time":"2025-03-25T21:51:17Z","timestamp":1742939477982,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":25,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540289630"},{"type":"electronic","value":"9783540319818"}],"license":[{"start":{"date-parts":[[2005,1,1]],"date-time":"2005-01-01T00:00:00Z","timestamp":1104537600000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2005]]},"DOI":"10.1007\/11555827_16","type":"book-chapter","created":{"date-parts":[[2005,9,27]],"date-time":"2005-09-27T10:10:29Z","timestamp":1127815829000},"page":"267-286","source":"Crossref","is-referenced-by-count":9,"title":["Towards a Theory of Intrusion Detection"],"prefix":"10.1007","author":[{"given":"Giovanni","family":"Di Crescenzo","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Abhrajit","family":"Ghosh","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rajesh","family":"Talpade","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"16_CR1","volume-title":"Computer Security Threat Monitoring and Surveillance","author":"J. Anderson","year":"1980","unstructured":"Anderson, J.: Computer Security Threat Monitoring and Surveillance. James P. Anderson Co., Fort Washington (1980)"},{"key":"16_CR2","doi-asserted-by":"crossref","unstructured":"Axelsson, S.: The Base-Rate Fallacy and its Implication for the Difficulty of Intrusion Detection. In: Proc. of ACM CCS (1999)","DOI":"10.1145\/319709.319710"},{"key":"16_CR3","unstructured":"Axelsson, S.: Intrusion Detection Systems: A Survey and Taxonomy, Technical Report 99-15, Depart. of Computer Engineering, Chalmers University (March 2000)"},{"key":"16_CR4","doi-asserted-by":"crossref","unstructured":"Borodin, A., Ostrovsky, R., Rabani, Y.: Subquadratic Approximation Algorithms For Clustering Problems in High Dimensional Spaces. In: Proc. of The 31\u2019st ACM Symposium on Theory of Computing, STOC-1999 (1999)","DOI":"10.1145\/301250.301367"},{"key":"16_CR5","unstructured":"Cisco Flow Collector Overview, \n                  \n                    http:\/\/www.cisco.com\/univercd\/cc\/td\/doc\/product\/rtrmgmt\/nfc\/nfc_3_0\/nfc_ug\/nfcover.pdf"},{"key":"16_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"557","DOI":"10.1007\/3-540-45539-6_39","volume-title":"Advances in Cryptology - EUROCRYPT 2000","author":"Y. Desmedt","year":"2000","unstructured":"Desmedt, Y., Kurosawa, K.: How to break a practical MIX and design a new one. In: Preneel, B. (ed.) EUROCRYPT 2000. LNCS, vol.\u00a01807, p. 557. Springer, Heidelberg (2000)"},{"key":"16_CR7","doi-asserted-by":"crossref","unstructured":"Denning, D.E.: An Intrusion Detection Model. IEEE Transactions on Software Engineering\u00a0SE-13(2), 222\u2013232 (1987)","DOI":"10.1109\/TSE.1987.232894"},{"key":"16_CR8","unstructured":"Esmaili, M., Safavi Naini, R., Pieprzyk, J.: Intrusion Detection: A Survey. In: Proc. of ICCC (1995)"},{"key":"16_CR9","unstructured":"Gordon, D.: La Jolla Covering Repository, website: \n                  \n                    http:\/\/www.ccrwest.org\/cover.html"},{"key":"16_CR10","doi-asserted-by":"publisher","first-page":"269","DOI":"10.1002\/jcd.3180030404","volume":"3","author":"D. Gordon","year":"1995","unstructured":"Gordon, D., Kuperberg, G., Patashnik, O.: New Constructions for Covering Designs. Journal of Combinatorial Designs\u00a03, 269\u2013284 (1995)","journal-title":"Journal of Combinatorial Designs"},{"key":"16_CR11","doi-asserted-by":"publisher","first-page":"220","DOI":"10.1006\/jcta.1996.0077","volume":"75","author":"D. Gordon","year":"1996","unstructured":"Gordon, D., Kuperberg, G., Patashnik, O., Spencer, J.: Asymptotically Optimal Covering Designs. Journal of Combinatorial Theory A\u00a075, 220\u2013240 (1996)","journal-title":"Journal of Combinatorial Theory A"},{"issue":"2","key":"16_CR12","doi-asserted-by":"publisher","first-page":"270","DOI":"10.1016\/0022-0000(84)90070-9","volume":"28","author":"S. Goldwasser","year":"1984","unstructured":"Goldwasser, S., Micali, S.: Probabilistic Encryption. Journal of Computer and System Sciences\u00a028(2), 270\u2013299 (1984)","journal-title":"Journal of Computer and System Sciences"},{"key":"16_CR13","doi-asserted-by":"crossref","unstructured":"Kushilevitz, E., Ostrovsky, R., Rabani, Y.: Efficient Search for Approximate Nearest Neighbor in High Dimensional Spaces. In: Proc. of the 30\u2019s ACM Symposium on Theory of Computing, STOC-1998 (1998)","DOI":"10.1145\/276698.276877"},{"key":"16_CR14","unstructured":"Lee, W.: A Data Mining Framework for Building Intrusion Detection Models. In: Proc. of IEEE Symposium on Security and Privacy (1999)"},{"key":"16_CR15","doi-asserted-by":"crossref","unstructured":"Lunt, T.: Automated Audit Trail Analysis and Intrusion Detection: A Survey. In: Proc. of 11th National Computer Security Conference (1988)","DOI":"10.1016\/0167-4048(92)90256-Q"},{"key":"16_CR16","unstructured":"McAuliffe, N., Wolcott, D., Schaefer, L., Kelem, N., Hubbard, B., Haley, T.: Is Your Computer Being Misused? A Survey of Current Intrusion Detection System Technology. In: Proc. of 6th IEEE Computer Security Applications Conference (1990)"},{"key":"16_CR17","unstructured":"Netflow, IETF RFC, \n                  \n                    ftp:\/\/ftp.rfc-editor.org\/innotes\/rfc3954.txt"},{"key":"16_CR18","first-page":"93","volume":"96","author":"K. Nurmela","year":"1993","unstructured":"Nurmela, K., Ostergard, P.: Upper Bounds for Covering Designs by Simulated Annealing. Congressum Numerantium\u00a096, 93\u2013111 (1993)","journal-title":"Congressum Numerantium"},{"key":"16_CR19","first-page":"225","volume":"531","author":"R. Rees","year":"1999","unstructured":"Rees, R., Stinson, D.R., Wei, R., van Rees, G.H.J.: An application of covering designs: Determining the maximum consistent set of shares in a threshold scheme. Ars Combinatoria\u00a0531, 225\u2013237 (1999)","journal-title":"Ars Combinatoria"},{"key":"16_CR20","doi-asserted-by":"crossref","first-page":"1405","DOI":"10.2140\/pjm.1964.14.1405","volume":"14","author":"J. Schonheim","year":"1964","unstructured":"Schonheim, J.: On Coverings. Pacific Journal of Mathematics\u00a014, 1405\u20131411 (1964)","journal-title":"Pacific Journal of Mathematics"},{"key":"16_CR21","doi-asserted-by":"crossref","unstructured":"Colbourn, C., Dinitz, J.: The CRC Handbook of Combinatorial Designs. CRC Press, Boca Raton (1996); (see D. R. Stinson, Coverings, pp. 260\u2013265)","DOI":"10.1201\/9781420049954"},{"key":"16_CR22","unstructured":"http:\/\/www.snort.org"},{"key":"16_CR23","unstructured":"Flowtools public-domain software, \n                  \n                    http:\/\/www.splintered.net\/sw\/flow-tools\/"},{"key":"16_CR24","unstructured":"Yao, A.: Theory and Application of Trapdoor Functions. In: Proc. of FOCS 1985 (1985)"},{"key":"16_CR25","unstructured":"Ghosh, A., Wong, L., Di Crescenzo, G., Talpade, R.: Infilter: Predictive Ingress Filtering to Detect IP Spoofed Traffic. In: 2nd International Workshop on Security in Distributed Computing Systems, SDCS 2005 (2005)"}],"container-title":["Lecture Notes in Computer Science","Computer Security \u2013 ESORICS 2005"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11555827_16","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,2]],"date-time":"2019-06-02T20:24:11Z","timestamp":1559507051000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11555827_16"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2005]]},"ISBN":["9783540289630","9783540319818"],"references-count":25,"URL":"https:\/\/doi.org\/10.1007\/11555827_16","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2005]]}}}