{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T20:12:22Z","timestamp":1743106342390,"version":"3.40.3"},"publisher-location":"Cham","reference-count":33,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031565793"},{"type":"electronic","value":"9783031565809"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-56580-9_13","type":"book-chapter","created":{"date-parts":[[2024,4,2]],"date-time":"2024-04-02T05:02:23Z","timestamp":1712034143000},"page":"212-226","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["DEML: Data-Enhanced Meta-Learning Method for IoT APT Traffic Detection"],"prefix":"10.1007","author":[{"given":"Jia","family":"Hu","sequence":"first","affiliation":[]},{"given":"Weina","family":"Niu","sequence":"additional","affiliation":[]},{"given":"Qingjun","family":"Yuan","sequence":"additional","affiliation":[]},{"given":"Lingfeng","family":"Yao","sequence":"additional","affiliation":[]},{"given":"Junpeng","family":"He","sequence":"additional","affiliation":[]},{"given":"Yanfeng","family":"Zhang","sequence":"additional","affiliation":[]},{"given":"Xiaosong","family":"Zhang","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2024,4,3]]},"reference":[{"key":"13_CR1","doi-asserted-by":"crossref","unstructured":"Al-Turjman, F., Nawaz, M.H., Ulusar, U.D.: Intelligence in the internet of medical things era: a systematic review of current and future trends. Comput. Commun. 150, 644\u2013660 (2020)","DOI":"10.1016\/j.comcom.2019.12.030"},{"key":"13_CR2","first-page":"88","volume":"23","author":"A Sinha","year":"2019","unstructured":"Sinha, A., Shrivastava, G., Kumar, P.: Architecting user-centric internet of things for smart agriculture. Sustain. Comput. Inform. Syst. 23, 88\u2013102 (2019)","journal-title":"Sustain. Comput. Inform. Syst."},{"key":"13_CR3","doi-asserted-by":"publisher","first-page":"325","DOI":"10.1016\/j.comcom.2019.11.044","volume":"150","author":"K Liu","year":"2020","unstructured":"Liu, K., Bi, Y.R., Liu, D.: Internet of things based acquisition system of industrial intelligent bar code for smart city applications. Comput. Commun. 150, 325\u2013333 (2020)","journal-title":"Comput. Commun."},{"issue":"10","key":"13_CR4","doi-asserted-by":"publisher","first-page":"4167","DOI":"10.1007\/s12652-018-0820-5","volume":"10","author":"M Babar","year":"2019","unstructured":"Babar, M., Arif, F.: Real-time data processing scheme using big data analytics in internet of things based smart transportation environment. J. Ambient Intell. Humaniz. Comput. 10(10), 4167\u20134177 (2019)","journal-title":"J. Ambient Intell. Humaniz. Comput."},{"key":"13_CR5","unstructured":"Greenberg, A.: Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin\u2019s Most Dangerous Hackers. Doubleday (2019)"},{"key":"13_CR6","unstructured":"National\u00a0CyberSecurity Centre. Advisory: Apt29 targets COVID-19 vaccine development (2020). https:\/\/media.defense.gov\/2020\/Jul\/16\/2002457639\/-1\/-1\/0\/NCSC_APT29_ADVISORY-QUAD-OFFICIAL-20200709-1810.PDF"},{"issue":"2","key":"13_CR7","doi-asserted-by":"publisher","first-page":"1851","DOI":"10.1109\/COMST.2019.2891891","volume":"21","author":"A Alshamrani","year":"2019","unstructured":"Alshamrani, A., Myneni, S., Chowdhary, A., Huang, D.: A survey on advanced persistent threats: techniques, solutions, challenges, and research opportunities. IEEE Commun. Surv. Tutor. 21(2), 1851\u20131877 (2019)","journal-title":"IEEE Commun. Surv. Tutor."},{"issue":"6","key":"13_CR8","doi-asserted-by":"publisher","first-page":"2353","DOI":"10.1007\/s11036-021-01832-3","volume":"26","author":"J Zhaoxue","year":"2021","unstructured":"Zhaoxue, J., Tong, L., Zhenguo, Z., Jingguo, G., Junling, Y., Liangxiong, L.: A survey on log research of aiops: methods and trends. Mob. Netw. Appl. 26(6), 2353\u20132364 (2021)","journal-title":"Mob. Netw. Appl."},{"key":"13_CR9","doi-asserted-by":"crossref","unstructured":"Singh, P., et al.: Using log analytics and process mining to enable self-healing in the internet of things. Environ. Syst. Decis. 42(2), 234\u2013250 (2022)","DOI":"10.1007\/s10669-022-09859-x"},{"key":"13_CR10","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"138","DOI":"10.1007\/978-3-030-59621-7_8","volume-title":"Deployable Machine Learning for Security Defense","author":"S Myneni","year":"2020","unstructured":"Myneni, S., et al.: DAPT 2020 - constructing a benchmark dataset for advanced persistent threats. In: Wang, G., Ciptadi, A., Ahmadzadeh, A. (eds.) MLHat 2020. CCIS, vol. 1271, pp. 138\u2013163. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-59621-7_8"},{"key":"13_CR11","doi-asserted-by":"publisher","first-page":"911","DOI":"10.1016\/j.procs.2020.03.111","volume":"170","author":"N Alqudah","year":"2020","unstructured":"Alqudah, N., Yaseen, Q.: Machine learning for traffic analysis: a review. Procedia Comput. Sci. 170, 911\u2013916 (2020)","journal-title":"Procedia Comput. Sci."},{"key":"13_CR12","doi-asserted-by":"publisher","first-page":"418","DOI":"10.1007\/s12559-020-09796-4","volume":"13","author":"Y Ma","year":"2021","unstructured":"Ma, Y., Zhong, G., Liu, W., Wang, Y., Jiang, P., Zhang, R.: ML-CGAN: conditional generative adversarial network with a meta-learner structure for high-quality image generation with few training data. Cogn. Comput. 13, 418\u2013430 (2021)","journal-title":"Cogn. Comput."},{"key":"13_CR13","doi-asserted-by":"crossref","unstructured":"Niu, W., Zhang, X., Yang, G., Zhu, J., Ren, Z.: Identifying apt malware domain based on mobile DNS logging. Math. Probl. Eng. 2017 (2017)","DOI":"10.1155\/2017\/4916953"},{"key":"13_CR14","doi-asserted-by":"crossref","unstructured":"Li, X., Chen, P., Jing, L., He, Z., Yu, G.: Swisslog: robust and unified deep learning based log anomaly detection for diverse faults. In: 2020 IEEE 31st International Symposium on Software Reliability Engineering (ISSRE), pp. 92\u2013103. IEEE (2020)","DOI":"10.1109\/ISSRE5003.2020.00018"},{"key":"13_CR15","doi-asserted-by":"crossref","unstructured":"Yang, L., et al.: Semi-supervised log-based anomaly detection via probabilistic label estimation. In: 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE), pp. 1448\u20131460. IEEE (2021)","DOI":"10.1109\/ICSE43902.2021.00130"},{"key":"13_CR16","doi-asserted-by":"crossref","unstructured":"Cheng, X., Zhang, J., Chen, B.: Cyber situation comprehension for IoT systems based on apt alerts and logs correlation. Sensors 19(18), 4045 (2019)","DOI":"10.3390\/s19184045"},{"key":"13_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"76","DOI":"10.1007\/978-3-030-68851-6_5","volume-title":"Security, Privacy, and Anonymity in Computation, Communication, and Storage","author":"Z Li","year":"2021","unstructured":"Li, Z., Cheng, X., Zhang, J., Chen, B.: Predicting advanced persistent threats for IoT systems based on federated learning. In: Wang, G., Chen, B., Li, W., Di Pietro, R., Yan, X., Han, H. (eds.) SpaCCS 2020. LNCS, vol. 12382, pp. 76\u201389. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-68851-6_5"},{"key":"13_CR18","doi-asserted-by":"crossref","unstructured":"Liu, Y., Ma, M., Liu, X., Xiong, N.N., Liu, A., Zhu, Y.: Design and analysis of probing route to defense sink-hole attacks for internet of things security. IEEE Trans. Netw. Sci. Eng. 7(1), 356\u2013372 (2018)","DOI":"10.1109\/TNSE.2018.2881152"},{"key":"13_CR19","doi-asserted-by":"publisher","first-page":"31068","DOI":"10.1109\/ACCESS.2019.2902843","volume":"7","author":"C Lyu","year":"2019","unstructured":"Lyu, C., Zhang, X., Liu, Z., Chi, C.-H.: Selective authentication based geographic opportunistic routing in wireless sensor networks for internet of things against dos attacks. IEEE Access 7, 31068\u201331082 (2019)","journal-title":"IEEE Access"},{"key":"13_CR20","doi-asserted-by":"crossref","unstructured":"Okutan, A., Werner, G., McConky, K., Yang, S.J.: POSTER: cyber attack prediction of threats from unconventional resources (CAPTURE). In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, pp. 2563\u20132565 (2017)","DOI":"10.1145\/3133956.3138834"},{"issue":"10","key":"13_CR21","doi-asserted-by":"publisher","first-page":"8153","DOI":"10.1109\/TIE.2018.2798605","volume":"65","author":"K Huang","year":"2018","unstructured":"Huang, K., Zhou, C., Tian, Y.-C., Yang, S., Qin, Y.: Assessing the physical impact of cyberattacks on industrial cyber-physical systems. IEEE Trans. Ind. Electron. 65(10), 8153\u20138162 (2018)","journal-title":"IEEE Trans. Ind. Electron."},{"issue":"2","key":"13_CR22","doi-asserted-by":"publisher","first-page":"52","DOI":"10.1145\/3305218.3305239","volume":"46","author":"L Huang","year":"2019","unstructured":"Huang, L., Zhu, Q.: Adaptive strategic cyber defense for advanced persistent threats in critical infrastructure networks. ACM SIGMETRICS Perform. Eval. Rev. 46(2), 52\u201356 (2019)","journal-title":"ACM SIGMETRICS Perform. Eval. Rev."},{"key":"13_CR23","doi-asserted-by":"crossref","unstructured":"Wang, X., Zheng, K., Niu, X., Wu, B., Wu, C.: Detection of command and control in advanced persistent threat based on independent access. In: 2016 IEEE International Conference on Communications (ICC), pp. 1\u20136. IEEE (2016)","DOI":"10.1109\/ICC.2016.7511197"},{"key":"13_CR24","unstructured":"Msika, S., Quintero, A., Khomh, F.: Sigma: strengthening ids with GAN and metaheuristics attacks. arXiv preprint arXiv:1912.09303 (2019)"},{"key":"13_CR25","doi-asserted-by":"crossref","unstructured":"Rao, H., et al.: Feature selection based on artificial bee colony and gradient boosting decision tree. Appl. Soft Comput. 74, 634\u2013642 (2019)","DOI":"10.1016\/j.asoc.2018.10.036"},{"key":"13_CR26","unstructured":"Erquiaga, M.J., Garcia, S., Parmisano, A.: IoT-23: a labeled dataset with malicious and benign IoT network traffic (2020). http:\/\/doi.org\/10.5281\/zenodo.4743746"},{"key":"13_CR27","doi-asserted-by":"publisher","first-page":"779","DOI":"10.1016\/j.future.2019.05.041","volume":"100","author":"N Koroniotis","year":"2019","unstructured":"Koroniotis, N., Moustafa, N., Sitnikova, E., Turnbull, B.: Towards the development of realistic botnet dataset in the internet of things for network forensic analytics: bot-iot dataset. Futur. Gener. Comput. Syst. 100, 779\u2013796 (2019)","journal-title":"Futur. Gener. Comput. Syst."},{"key":"13_CR28","doi-asserted-by":"crossref","unstructured":"Garcia, S., Grill, M., Stiborek, J., Zunino, A.: An empirical comparison of botnet detection methods. Comput. Secur. 45, 100\u2013123 (2014)","DOI":"10.1016\/j.cose.2014.05.011"},{"issue":"3","key":"13_CR29","doi-asserted-by":"publisher","first-page":"12","DOI":"10.1109\/MPRV.2018.03367731","volume":"17","author":"Y Meidan","year":"2018","unstructured":"Meidan, Y., et al.: N-BaIoT-Network-based detection of IoT botnet attacks using deep autoencoders. IEEE Pervasive Comput. 17(3), 12\u201322 (2018)","journal-title":"IEEE Pervasive Comput."},{"issue":"6","key":"13_CR30","doi-asserted-by":"publisher","first-page":"704","DOI":"10.3390\/electronics10060704","volume":"10","author":"K Hofer-Schmitz","year":"2021","unstructured":"Hofer-Schmitz, K., Kleb, U., Stojanovi\u0107, B.: The influences of feature sets on the detection of advanced persistent threats. Electronics 10(6), 704 (2021)","journal-title":"Electronics"},{"key":"13_CR31","unstructured":"Mila. Collection of pcap files from malware analysis (2015). http:\/\/contagiodump.blogspot.com\/2013\/04\/collection-of-pcap-files-from-malware.html"},{"key":"13_CR32","doi-asserted-by":"crossref","unstructured":"Shahriar, M.H., Haque, N.I., Rahman, M.A., Alonso, M.: G-IDS: generative adversarial networks assisted intrusion detection system. In: 2020 IEEE 44th Annual Computers, Software, and Applications Conference (COMPSAC), pp. 376\u2013385. IEEE (2020)","DOI":"10.1109\/COMPSAC48688.2020.0-218"},{"key":"13_CR33","doi-asserted-by":"crossref","unstructured":"Wang, Y., Jiang, Y., Lan, J.: FCNN: an efficient intrusion detection method based on raw network traffic. Secur. Commun. Netw. 2021, 1\u201313 (2021)","DOI":"10.1155\/2021\/5533269"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Digital Forensics and Cyber Crime"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-56580-9_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,4,2]],"date-time":"2024-04-02T05:08:45Z","timestamp":1712034525000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-56580-9_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031565793","9783031565809"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-56580-9_13","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"3 April 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICDF2C","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Digital Forensics and Cyber Crime","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"New York, NY","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 November 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 November 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"icdf2c2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Confy +","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"105","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"41","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"39% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"5","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}