{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,7]],"date-time":"2026-02-07T03:06:01Z","timestamp":1770433561663,"version":"3.49.0"},"publisher-location":"Berlin, Heidelberg","reference-count":23,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540410850","type":"print"},{"value":"9783540399452","type":"electronic"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2000]]},"DOI":"10.1007\/3-540-39945-3_12","type":"book-chapter","created":{"date-parts":[[2007,4,14]],"date-time":"2007-04-14T02:38:33Z","timestamp":1176518313000},"page":"183-196","source":"Crossref","is-referenced-by-count":5,"title":["Using Rule-Based Activity Descriptions to Evaluate Intrusion-Detection Systems"],"prefix":"10.1007","author":[{"given":"Dominique","family":"Alessandri","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2000,11,11]]},"reference":[{"key":"12_CR1","doi-asserted-by":"crossref","unstructured":"Michael Sobirey, \u201cMichael Sobirey\u2019s Intrusion Detection Systems page,\u201d http:\/\/www-rnks.informatik.tu-cottbus.de\/~sobirey\/ids.html , November 1998.","DOI":"10.1007\/978-3-322-86850-3_3"},{"key":"12_CR2","volume-title":"Incident Note IN-99-07","author":"CERT Coordination Center, \u201c","year":"1996","unstructured":"CERT Coordination Center, \u201cCERT Incident Note IN-99-07-Distributed Denial of Sevice Tools,\u201d CERT Coordination Center, Pittsburgh, Incident Note IN-99-07, 1996."},{"key":"12_CR3","first-page":"233","volume-title":"Ph.D. Thesis","author":"A. H. Gross","year":"1997","unstructured":"Andrew H. Gross, \u201cAnalyzing Computer Intrusions,\u201d Ph.D. Thesis, San Diego: University of California, San Diego Supercomputer Center, 1997, pp. 233."},{"key":"12_CR4","volume-title":"Ph.D. Thesis","author":"S. Kumar","year":"1995","unstructured":"Sandeep Kumar, \u201cClassification and Detection of Computer Intrusions,\u201d Ph.D. Thesis, Purdue, IN: Purdue University, Computer Sciences Department, August 1995."},{"key":"12_CR5","unstructured":"Peter G. Neumann and Donn B. Parker, \u201cA Summary of Computer Misuse Techniques,\u201d presented at 12th National Computer Misuse Techniques, October 1989."},{"key":"12_CR6","unstructured":"Peter A. Loscocco, Stephen D. Smalley, Patrick A. Muckelbauer, Ruth C. Taylor, S. Jeff Turner, and John F. Farrell, \u201cThe Inevitability of Failure: The Flawed Assumptions of Security in Modern Computing Environments,\u201d National Security Agency, 1998."},{"key":"12_CR7","volume-title":"Technical Report","author":"P. G. Neumann","year":"1998","unstructured":"Peter G. Neumann, \u201cIllustrative Risks to the Public in the Use of Computer Systems and Related Technology,\u201d Computer Science Laboratory, SRI International, Menlo Park, CA, Technical Report, October 1998."},{"key":"12_CR8","first-page":"292","volume-title":"Ph.D. Thesis","author":"J. D. Howard","year":"1997","unstructured":"John D. Howard, \u201cAn Analysis Of Security Incidents On The Internet,\u201d Ph.D. Thesis, Pittsburgh: Canegie Mellon University, Engineering and Public Policy, 1997, pp. 292."},{"key":"12_CR9","unstructured":"Aurobindo Sundaram, \u201cAn Introduction to Intrusion Detection,\u201d COAST Laboratory, Purdue University, Purdue, IN."},{"key":"12_CR10","volume-title":"Technical Report","author":"R. Benjamin","year":"1998","unstructured":"R. Benjamin, B. Gladman, and B. Randell, \u201cProtecting IT Systems from Cyber Crime,\u201d Imperial College, London, Technical Report, 1998."},{"key":"12_CR11","volume-title":"Technical Report","author":"P. G. Neumann","year":"1998","unstructured":"Peter G. Neumann, \u201cPractical Architectures for Survivable Systems and Networks,\u201d Computer Science Laboratory, SRI International, Menlo Park, CA, Technical Report, October 1998."},{"key":"12_CR12","unstructured":"R. Lippmann, D. Fried, I. Graf, J. Haines, K. Kendall, D. McClung, D. Weber, S. Webster, D. Wyschogrod, R. Cunningham, and M. Zissman, \u201cEvaluating Intrusion Detection Systems: The 1998 DARPA Off-Line Intrusion Detection Evaluation,\u201d presented at DISECEX\u201900-DARPA Information Survivability Conference & Exposition, Hilton Head, SC, 2000."},{"key":"12_CR13","doi-asserted-by":"crossref","unstructured":"Robert Durst, Terrence Champion, Brian Witten, Eric Miller, and Luigi Spanguolo, \u201cTesting and Evaluating Computer Intrusion Detection Systems,\u201d Commun. of ACM, vol. 42, July 1999.","DOI":"10.1145\/306549.306571"},{"key":"12_CR14","unstructured":"J. McHugh, \u201cThe Lincoln Laboratories Intrusion Detection System Evaluation: A Critique,\u201d presented at DISCEX\u201900-DARPA Information Survivability Conference & Exposition, Hilton Head, SC, 2000."},{"key":"12_CR15","doi-asserted-by":"publisher","first-page":"805","DOI":"10.1016\/S1389-1286(98)00017-6","volume":"31","author":"H. Debar","year":"1999","unstructured":"Herv\u00e9 Debar, Marc Dacier, and Andreas Wespi, \u201cTowards a Taxonomy of Intrusion Detection Systems,\u201d Computer Networks, vol. 31, pp. 805\u2013822, 1999.","journal-title":"Computer Networks"},{"key":"12_CR16","volume-title":"Advisory CA-95.05","author":"CERT Coordination Center, \u201c","year":"1995","unstructured":"CERT Coordination Center, \u201cSendmail v.5 Vulnerability,\u201d CERT Coordination Center, Pittsburgh, Advisory CA-95.05, 1995."},{"key":"12_CR17","doi-asserted-by":"crossref","unstructured":"J. C. Laprie, A. Avizienis, and H. Kopetz, \u201cDependability: Basic Concepts and Terminology, vol. 5: Springer Verlag, 1992.","DOI":"10.1007\/978-3-7091-9170-5"},{"key":"12_CR18","doi-asserted-by":"publisher","first-page":"2435","DOI":"10.1016\/S1389-1286(99)00112-7","volume":"31","author":"V. Paxson","year":"1999","unstructured":"Vern Paxson, \u201cBro: a system for detecting network intruders in real-time,\u201d Computer Networks, vol. 31, pp. 2435\u20132463, 1999.","journal-title":"Computer Networks"},{"key":"12_CR19","unstructured":"Rain Forest Puppy \u2329rfp@wiretrip.net\u232a, \u201cA look at whisker\u2019s anti-IDS tactics-Just how bad can we ruin a good thing?\u201d, http:\/\/www.securityfocus.com\/templates\/forummessage.html?forum=2&head=670&id=670 , 2000."},{"key":"12_CR20","unstructured":"William E. Weinman, \u201cAbout Web Server Logs: Common Log Format,\u201d http:\/\/www.weinman.com\/wew\/log-talk\/clf.html , 1998."},{"key":"12_CR21","first-page":"120","volume-title":"Master\u2019s thesis","author":"T. Aslam","year":"1995","unstructured":"Taimur Aslam, \u201cA Taxonomy of Security Faults in the UNIX Operating System,\u201d Master\u2019s thesis, Purdue, IN: Purdue University, Computer Sciences Department, 1995, pp. 120."},{"key":"12_CR22","doi-asserted-by":"crossref","unstructured":"David Powell, \u201cFailure Mode Assumptions and Assumption Coverage,\u201d presented at 22nd Int. Symp. on Fault-Tolerant Computing (FTCS-22), Boston, MA, 1992.","DOI":"10.1109\/FTCS.1992.243562"},{"key":"12_CR23","doi-asserted-by":"crossref","first-page":"20375","DOI":"10.21236\/ADA465587","volume-title":"A Taxonomy of Computer Program Security Flaws","author":"C. E. Landwehr","year":"1994","unstructured":"Carl E. Landwehr, Alan R. Bull, John P. McDermott, and William S. Choi, \u201cA Taxonomy of Computer Program Security Flaws,\u201d Information Technology Division, Naval Research Laboratory, Washington, D.C 20375\u20135337, 1994."}],"container-title":["Lecture Notes in Computer Science","Recent Advances in Intrusion Detection"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/3-540-39945-3_12","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,4,27]],"date-time":"2019-04-27T05:34:42Z","timestamp":1556343282000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/3-540-39945-3_12"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2000]]},"ISBN":["9783540410850","9783540399452"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/3-540-39945-3_12","relation":{},"ISSN":["0302-9743"],"issn-type":[{"value":"0302-9743","type":"print"}],"subject":[],"published":{"date-parts":[[2000]]}}}