{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,4]],"date-time":"2025-05-04T06:40:09Z","timestamp":1746340809005,"version":"3.40.4"},"publisher-location":"Cham","reference-count":34,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319112114"},{"type":"electronic","value":"9783319112121"}],"license":[{"start":{"date-parts":[[2014,1,1]],"date-time":"2014-01-01T00:00:00Z","timestamp":1388534400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014]]},"DOI":"10.1007\/978-3-319-11212-1_21","type":"book-chapter","created":{"date-parts":[[2014,8,14]],"date-time":"2014-08-14T20:36:45Z","timestamp":1408048605000},"page":"365-382","source":"Crossref","is-referenced-by-count":4,"title":["LESS Is More: Host-Agent Based Simulator for Large-Scale Evaluation of Security Systems"],"prefix":"10.1007","author":[{"given":"John","family":"Sonchack","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Adam J.","family":"Aviv","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"21_CR1","unstructured":"Wagner, A., Plattner, B.: Entropy based worm and anomaly detection in fast ip networks. In: WETICE (2005)"},{"key":"21_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"142","DOI":"10.1007\/978-3-642-23644-0_8","volume-title":"Recent Advances in Intrusion Detection","author":"N. Boggs","year":"2011","unstructured":"Boggs, N., Hiremagalore, S., Stavrou, A., Stolfo, S.J.: Cross-domain collaborative anomaly detection: so far yet so close. In: Sommer, R., Balzarotti, D., Maier, G. (eds.) RAID 2011. LNCS, vol.\u00a06961, pp. 142\u2013160. Springer, Heidelberg (2011)"},{"key":"21_CR3","unstructured":"Zhang, J., Porras, P., Ullrich, J.: Highly predictive blacklisting. In: USENIX Security, vol.\u00a08, pp. 107\u2013122 (2008)"},{"key":"21_CR4","doi-asserted-by":"crossref","unstructured":"Katti, S., Krishnamurthy, B., Katabi, D.: Collaborating against common enemies. In: ACM IMC (2005)","DOI":"10.1145\/1330107.1330151"},{"key":"21_CR5","doi-asserted-by":"crossref","unstructured":"Coskun, B., Dietrich, S., Memon, N.: Friends of an enemy: identifying local members of peer-to-peer botnets using mutual contacts. In: Proceedings of the 26th Annual Computer Security Applications Conference (2010)","DOI":"10.1145\/1920261.1920283"},{"key":"21_CR6","unstructured":"Sonchack, J., Aviv, A., Smith, J.M.: Bridging the data gap: Data related challenges in evaluating large scale collaborative security systems. In: 6th Workshop on Cyber Security Experitmentation and Testing (2013)"},{"key":"21_CR7","unstructured":"Aviv, A.J., Haeberlen, A.: Challenges in experimenting with botnet detection systems. In: USENIX 4th CSET Workshop (2011)"},{"issue":"4","key":"21_CR8","doi-asserted-by":"publisher","first-page":"392","DOI":"10.1109\/90.944338","volume":"9","author":"S. Floyd","year":"2001","unstructured":"Floyd, S., Paxson, V.: Difficulties in simulating the internet. IEEE\/ACM Transactions on Networking (TON)\u00a09(4), 392\u2013403 (2001)","journal-title":"IEEE\/ACM Transactions on Networking (TON)"},{"key":"21_CR9","doi-asserted-by":"crossref","unstructured":"Riley, G.F.: The georgia tech network simulator. In: Proceedings of the ACM SIGCOMM MoMeTools Workshop, pp. 5\u201312. ACM (2003)","DOI":"10.1145\/944773.944775"},{"key":"21_CR10","doi-asserted-by":"crossref","unstructured":"Lantz, B., Heller, B., McKeown, N.: A network in a laptop: rapid prototyping for software-defined networks. In: Proceedings of the 9th ACM SIGCOMM Workshop on Hot Topics in Networks, p. 19. ACM (2010)","DOI":"10.1145\/1868447.1868466"},{"issue":"3","key":"21_CR11","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1145\/1140086.1140094","volume":"36","author":"M.C. Weigle","year":"2006","unstructured":"Weigle, M.C., Adurthi, P., Hern\u00e1ndez-Campos, F., Jeffay, K., Smith, F.D.: Tmix: a tool for generating realistic tcp application workloads in ns-2. ACM SIGCOMM Computer Communication Review\u00a036(3), 65\u201376 (2006)","journal-title":"ACM SIGCOMM Computer Communication Review"},{"key":"21_CR12","doi-asserted-by":"crossref","unstructured":"Konda, V., Kaur, J.: Rapid: Shrinking the congestion-control timescale. In: IEEE INFOCOM 2009, pp. 1\u20139. IEEE (2009)","DOI":"10.1109\/INFCOM.2009.5061900"},{"key":"21_CR13","doi-asserted-by":"crossref","unstructured":"Cao, J., Cleveland, W.S., Gao, Y., Jeffay, K., Smith, F.D., Weigle, M.: Stochastic models for generating synthetic http source traffic. In: INFOCOM 2004, vol.\u00a03, pp. 1546\u20131557. IEEE (2004)","DOI":"10.1109\/INFCOM.2004.1354568"},{"key":"21_CR14","doi-asserted-by":"crossref","unstructured":"Moore, D., Shannon, C., Voelker, G.M., Savage, S.: Internet quarantine: Requirements for containing self-propagating code. In: IEEE INFOCOM 2003, pp. 1901\u20131910. IEEE (2003)","DOI":"10.1109\/INFCOM.2003.1209212"},{"key":"21_CR15","unstructured":"Grizzard, J.B., Sharma, V., Nunnery, C., Kang, B.B., Dagon, D.: Peer-to-peer botnets: Overview and case study. In: HOTBOTS, pp. 1\u20138 (2007)"},{"key":"21_CR16","doi-asserted-by":"crossref","unstructured":"Sommers, J., Yegneswaran, V., Barford, P.: Recent advances in network intrusion detection system tuning. In: IEEE 40th Annual CISS, pp. 1490\u20131495 (2006)","DOI":"10.1109\/CISS.2006.286375"},{"key":"21_CR17","doi-asserted-by":"crossref","unstructured":"Chen, G., Gray, R.S.: Simulating non-scanning worms on peer-to-peer networks. In: ACM INFOSCALE, p. 29 (2006)","DOI":"10.1145\/1146847.1146876"},{"key":"21_CR18","doi-asserted-by":"crossref","unstructured":"Rossey, L.M., Cunningham, R.K., Fried, D.J., Rabek, J.C., Lippmann, R.P., Haines, J.W., Zissman, M.A.: Lariat: Lincoln adaptable real-time information assurance testbed. In: IEEE Aerospace Conference Proceedings 2002, vol.\u00a06, pp. 6\u20132671. IEEE (2002)","DOI":"10.1109\/AERO.2002.1036158"},{"issue":"suppl. 3","key":"21_CR19","doi-asserted-by":"publisher","first-page":"7280","DOI":"10.1073\/pnas.082080899","volume":"99","author":"E. Bonabeau","year":"2002","unstructured":"Bonabeau, E.: Agent-based modeling: Methods and techniques for simulating human systems. PNAS\u00a099(suppl. 3), 7280\u20137287 (2002)","journal-title":"PNAS"},{"key":"21_CR20","doi-asserted-by":"crossref","unstructured":"Ripley, B.D.: Stochastic simulation, vol.\u00a0316. Wiley. com (1987)","DOI":"10.1002\/9780470316726"},{"key":"21_CR21","unstructured":"Dshield.org, http:\/\/www.dshield.org\/"},{"key":"21_CR22","unstructured":"Caida data overview, http:\/\/www.caida.org\/data\/overview\/"},{"key":"21_CR23","unstructured":"Argus: Audit records generation and utilization system, http:\/\/qosient.com\/argus\/"},{"key":"21_CR24","unstructured":"Xie, G., Iliofotou, M., Keralapura, R., Faloutsos, M., Nucci, A.: Subflow: Towards practical flow-level traffic classification. In: IEEE INFOCOM, 2012 Proceedings, pp. 2541\u20132545. IEEE (2012)"},{"key":"21_CR25","unstructured":"Tan, G., Poletto, M., Guttag, J.V., Kaashoek, M.F.: Role classification of hosts within enterprise networks based on connection patterns. In: USENIX Annual Technical Conference, General Track, pp. 15\u201328 (2003)"},{"key":"21_CR26","doi-asserted-by":"crossref","unstructured":"Blondel, V.D., Guillaume, J.L., Lambiotte, R., Lefebvre, E.: Fast unfolding of communities in large networks. Journal of Statistical Mechanics: Theory and Experiment\u00a02008(10), P10008 (2008)","DOI":"10.1088\/1742-5468\/2008\/10\/P10008"},{"key":"21_CR27","first-page":"80","volume":"1","author":"E.M. Hutchins","year":"2011","unstructured":"Hutchins, E.M., Cloppert, M.J., Amin, R.M.: Intelligence-driven computer network defense informed by analysis of adversary campaigns and intrusion kill chains. Leading Issues in Information Warfare & Security Research\u00a01, 80 (2011)","journal-title":"Leading Issues in Information Warfare & Security Research"},{"key":"21_CR28","unstructured":"Plot digitizer, http:\/\/plotdigitizer.sourceforge.net\/"},{"key":"21_CR29","doi-asserted-by":"crossref","unstructured":"Moore, D., Shannon, C., et al.: Code-red: a case study on the spread and victims of an internet worm. In: Proceedings of the 2nd ACM SIGCOMM Workshop on Internet Measurment, pp. 273\u2013284. ACM (2002)","DOI":"10.1145\/637241.637244"},{"key":"21_CR30","doi-asserted-by":"crossref","unstructured":"Hagberg, A., Swart, P., Schult, D.: Exploring network structure, dynamics, and function using networkx. Technical report, Los Alamos National Laboratory, LANL (2008)","DOI":"10.25080\/TCWV9851"},{"issue":"4","key":"21_CR31","doi-asserted-by":"publisher","first-page":"377","DOI":"10.1017\/S0963548399003867","volume":"8","author":"A. Steger","year":"1999","unstructured":"Steger, A., Wormald, N.C.: Generating random regular graphs quickly. Combinatorics Probability and Computing\u00a08(4), 377\u2013396 (1999)","journal-title":"Combinatorics Probability and Computing"},{"issue":"5439","key":"21_CR32","doi-asserted-by":"publisher","first-page":"509","DOI":"10.1126\/science.286.5439.509","volume":"286","author":"A.L. Barab\u00e1si","year":"1999","unstructured":"Barab\u00e1si, A.L., Albert, R.: Emergence of scaling in random networks. Science\u00a0286(5439), 509\u2013512 (1999)","journal-title":"Science"},{"key":"21_CR33","doi-asserted-by":"crossref","first-page":"290","DOI":"10.5486\/PMD.1959.6.3-4.12","volume":"6","author":"P. Erdos","year":"1959","unstructured":"Erdos, P., Renyi, A.: On random graphs i. Publ. Math. Debrecen\u00a06, 290\u2013297 (1959)","journal-title":"Publ. Math. Debrecen"},{"issue":"4","key":"21_CR34","doi-asserted-by":"publisher","first-page":"1079","DOI":"10.1080\/00018730110112519","volume":"51","author":"S.N. Dorogovtsev","year":"2002","unstructured":"Dorogovtsev, S.N., Mendes, J.F.: Evolution of networks. Advances in Physics\u00a051(4), 1079\u20131187 (2002)","journal-title":"Advances in Physics"}],"container-title":["Lecture Notes in Computer Science","Computer Security - ESORICS 2014"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-11212-1_21","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,4]],"date-time":"2025-05-04T06:07:07Z","timestamp":1746338827000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-11212-1_21"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014]]},"ISBN":["9783319112114","9783319112121"],"references-count":34,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-11212-1_21","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2014]]}}}