{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T04:28:46Z","timestamp":1780633726195,"version":"3.54.1"},"publisher-location":"Berlin, Heidelberg","reference-count":8,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540427025","type":"print"},{"value":"9783540454748","type":"electronic"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2001]]},"DOI":"10.1007\/3-540-45474-8_6","type":"book-chapter","created":{"date-parts":[[2007,8,6]],"date-time":"2007-08-06T17:26:29Z","timestamp":1186421189000},"page":"85-103","source":"Crossref","is-referenced-by-count":310,"title":["Aggregation and Correlation of Intrusion-Detection Alerts"],"prefix":"10.1007","author":[{"given":"Herv\u00e9","family":"Debar","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Andreas","family":"Wespi","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2001,9,27]]},"reference":[{"key":"6_CR1","unstructured":"Magnus Almgren, Herv\u00e9 Debar, and Marc Dacier. A lightweight tool for detecting web server attacks. In Symposium on Network and Distributed Systems Security (NDSS\u2019 00), pages 157\u2013170, San Diego, CA, February 2000. Internet Society."},{"issue":"2","key":"6_CR2","first-page":"5","volume":"3","author":"T. Bey","year":"1999","unstructured":"Taurus Bey. Tec rules: Planning for efficiency. The Managed View, 3(2):5\u201320, Spring 1999.","journal-title":"The Managed View"},{"key":"6_CR3","doi-asserted-by":"crossref","unstructured":"Herv\u00e9 Debar, Marc Dacier, and Andreas Wespi. A revised taxonomy for intrusiondetection systems. Annales des t\u00e9l\u00e9communications, 55 (7-8):361\u2013378, July-August 2000.","DOI":"10.1007\/BF02994844"},{"key":"6_CR4","unstructured":"IBM International Technical Support Organization. Early Experiences with Tivoli Enterprise Console 3.7, November 2000. IBM Redbook SG24-6015-00."},{"key":"6_CR5","unstructured":"IBM International Technical Support Organization. Tivoli SecureWay Risk Manager: Correlating Enterprise Risk Management, November 2000. IBM Redbook SG24-6021-00."},{"key":"6_CR6","unstructured":"Tivoli Systems. Tivoli SecureWay Risk Manager, User\u2019s Guide, Version 3.7, December 2000."},{"key":"6_CR7","unstructured":"Tivoli Systems. TME 10 Enterprise Console, User\u2019s Guide, Version 3.7, November 2000."},{"key":"6_CR8","unstructured":"Wietse Venema. TCP WRAPPER: Network monitoring, access control and booby traps. In UNIX Security III Symposium, pages 85\u201392, Baltmore, MD, September 1992. Usenix."}],"container-title":["Lecture Notes in Computer Science","Recent Advances in Intrusion Detection"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/3-540-45474-8_6","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,8,21]],"date-time":"2021-08-21T07:49:23Z","timestamp":1629532163000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/3-540-45474-8_6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2001]]},"ISBN":["9783540427025","9783540454748"],"references-count":8,"URL":"https:\/\/doi.org\/10.1007\/3-540-45474-8_6","relation":{},"ISSN":["0302-9743"],"issn-type":[{"value":"0302-9743","type":"print"}],"subject":[],"published":{"date-parts":[[2001]]}}}