{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,7]],"date-time":"2025-11-07T09:25:25Z","timestamp":1762507525755,"version":"3.41.0"},"publisher-location":"Cham","reference-count":41,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319998060"},{"type":"electronic","value":"9783319998077"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-319-99807-7_19","type":"book-chapter","created":{"date-parts":[[2018,9,5]],"date-time":"2018-09-05T13:44:46Z","timestamp":1536155086000},"page":"313-328","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":6,"title":["Towards Securing Challenge-Based Collaborative Intrusion Detection Networks via Message Verification"],"prefix":"10.1007","author":[{"given":"Wenjuan","family":"Li","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Weizhi","family":"Meng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yu","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jinguang","family":"Han","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jin","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,9,6]]},"reference":[{"key":"19_CR1","unstructured":"Chun, B., Lee, J., Weatherspoon, H., Chun, B.N.: Netbait: a distributed worm detection service. Technical report IRB-TR-03-033, Intel Research Berkeley (2003)"},{"key":"19_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"251","DOI":"10.1007\/3-540-45748-8_24","volume-title":"Peer-to-Peer Systems","author":"JR Douceur","year":"2002","unstructured":"Douceur, J.R.: The sybil attack. In: Druschel, P., Kaashoek, F., Rowstron, A. (eds.) IPTPS 2002. LNCS, vol. 2429, pp. 251\u2013260. Springer, Heidelberg (2002). https:\/\/doi.org\/10.1007\/3-540-45748-8_24"},{"key":"19_CR3","doi-asserted-by":"crossref","unstructured":"Duma, C., Karresand, M., Shahmehri, N., Caronni, G.: A trust-aware, P2P-based overlay for intrusion detection. In: DEXA Workshop, pp. 692\u2013697 (2006)","DOI":"10.1109\/DEXA.2006.21"},{"issue":"4","key":"19_CR4","doi-asserted-by":"publisher","first-page":"1234","DOI":"10.1109\/TNET.2009.2039492","volume":"18","author":"ZM Fadlullah","year":"2010","unstructured":"Fadlullah, Z.M., Taleb, T., Vasilakos, A.V., Guizani, M., Kato, N.: DTRAB: combating against attacks on encrypted protocols through traffic-feature analysis. IEEE\/ACM Trans. Netw. 18(4), 1234\u20131247 (2010)","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"19_CR5","doi-asserted-by":"publisher","first-page":"35","DOI":"10.1016\/j.cose.2014.09.006","volume":"48","author":"I Friedberg","year":"2015","unstructured":"Friedberg, I., Skopik, F., Settanni, G., Fiedler, R.: Combating advanced persistent threats: from network event correlation to incident detection. Comput. Secur. 48, 35\u201347 (2015)","journal-title":"Comput. Secur."},{"key":"19_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"109","DOI":"10.1007\/978-3-540-87353-2_9","volume-title":"Managing Large-Scale Service Deployment","author":"CJ Fung","year":"2008","unstructured":"Fung, C.J., Baysal, O., Zhang, J., Aib, I., Boutaba, R.: Trust management for host-based collaborative intrusion detection. In: De Turck, F., Kellerer, W., Kormentzas, G. (eds.) DSOM 2008. LNCS, vol. 5273, pp. 109\u2013122. Springer, Heidelberg (2008). https:\/\/doi.org\/10.1007\/978-3-540-87353-2_9"},{"key":"19_CR7","doi-asserted-by":"crossref","unstructured":"Fung, C.J., Zhang, J., Aib, I., Boutaba, R.: Robust and scalable trust management for collaborative intrusion detection. In: Proceedings of the 11th IFIP\/IEEE International Conference on Symposium on Integrated Network Management (IM), pp. 33\u201340 (2009)","DOI":"10.1109\/INM.2009.5188784"},{"key":"19_CR8","doi-asserted-by":"crossref","unstructured":"Ghosh, A.K., Wanken, J., Charron, F.: Detecting anomalous and unknown intrusions against programs. In: Proceedings of Annual Computer Security Applications Conference (ACSAC), pp. 259\u2013267 (1998)","DOI":"10.1109\/CSAC.1998.738646"},{"key":"19_CR9","unstructured":"Gong, F.: Next Generation Intrusion Detection Systems (IDS). McAfee Network Security Technologies Group (2003)"},{"key":"19_CR10","doi-asserted-by":"crossref","unstructured":"Gou, Z., Ahmadon, M.A.B., Yamaguchi, S., Gupta, B.B.: A petri net-based framework of intrusion detection systems. In: Proceedings of the 4th IEEE Global Conference on Consumer Electronics, pp. 579\u2013583 (2015)","DOI":"10.1109\/GCCE.2015.7398575"},{"key":"19_CR11","unstructured":"Huebsch, R., et al.: The architecture of PIER: an internet-scale query processor. In: Proceedings of the 2005 Conference on Innovative Data Systems Research (CIDR), pp. 28\u201343 (2005)"},{"key":"19_CR12","doi-asserted-by":"crossref","unstructured":"Li, Z., Chen, Y., Beach, A.: Towards scalable and robust distributed intrusion alert fusion with good load balancing. In: Proceedings of the 2006 SIGCOMM Workshop on Large-Scale Attack Defense (LSAD), pp. 115\u2013122 (2006)","DOI":"10.1145\/1162666.1162669"},{"key":"19_CR13","doi-asserted-by":"crossref","unstructured":"Li, W., Meng, Y., Kwok, L.-F.: Enhancing trust evaluation using intrusion sensitivity in collaborative intrusion detection networks: feasibility and challenges. In: Proceedings of the 9th International Conference on Computational Intelligence and Security (CIS), pp. 518\u2013522. IEEE (2013)","DOI":"10.1109\/CIS.2013.115"},{"key":"19_CR14","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"61","DOI":"10.1007\/978-3-662-43813-8_5","volume-title":"Trust Management VIII","author":"W Li","year":"2014","unstructured":"Li, W., Meng, W., Kwok, L.-F.: Design of intrusion sensitivity-based trust management model for collaborative intrusion detection networks. In: Zhou, J., Gal-Oz, N., Zhang, J., Gudes, E. (eds.) IFIPTM 2014. IAICT, vol. 430, pp. 61\u201376. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-43813-8_5"},{"issue":"3","key":"19_CR15","doi-asserted-by":"publisher","first-page":"265","DOI":"10.1108\/ICS-12-2014-0077","volume":"24","author":"W Li","year":"2016","unstructured":"Li, W., Meng, W.: Enhancing collaborative intrusion detection networks using intrusion sensitivity in detecting pollution attacks. Inf. Comput. Secur. 24(3), 265\u2013276 (2016)","journal-title":"Inf. Comput. Secur."},{"key":"19_CR16","doi-asserted-by":"publisher","first-page":"135","DOI":"10.1016\/j.jnca.2016.09.014","volume":"77","author":"W Li","year":"2017","unstructured":"Li, W., Meng, W., Kwok, L.-F., Ip, H.H.S.: Enhancing collaborative intrusion detection networks against insider attacks using supervised intrusion sensitivity-based trust management model. J. Netw. Comput. Appl. 77, 135\u2013145 (2017)","journal-title":"J. Netw. Comput. Appl."},{"key":"19_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"433","DOI":"10.1007\/978-3-319-46298-1_28","volume-title":"Network and System Security","author":"W Li","year":"2016","unstructured":"Li, W., Meng, W., Kwok, L.-F., Ip, H.H.S.: PMFA: Toward passive message fingerprint attacks on challenge-based collaborative intrusion detection networks. In: Chen, J., Piuri, V., Su, C., Yung, M. (eds.) NSS 2016. LNCS, vol. 9955, pp. 433\u2013449. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-46298-1_28"},{"key":"19_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"402","DOI":"10.1007\/978-3-319-57186-7_30","volume-title":"Green, Pervasive, and Cloud Computing","author":"W Li","year":"2017","unstructured":"Li, W., Meng, W., Kwok, L.-F.: SOOA: exploring special on-off attacks on challenge-based collaborative intrusion detection networks. In: Au, M.H.A., Castiglione, A., Choo, K.-K.R., Palmieri, F., Li, K.-C. (eds.) GPC 2017. LNCS, vol. 10232, pp. 402\u2013415. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-57186-7_30"},{"issue":"4","key":"19_CR19","doi-asserted-by":"publisher","first-page":"626","DOI":"10.1080\/18756891.2013.802114","volume":"6","author":"Y Meng","year":"2013","unstructured":"Meng, Y., Kwok, L.F.: Enhancing false alarm reduction using voted ensemble selection in intrusion detection. Int. J. Comput. Intell. Syst. 6(4), 626\u2013638 (2013)","journal-title":"Int. J. Comput. Intell. Syst."},{"issue":"17","key":"19_CR20","doi-asserted-by":"publisher","first-page":"3630","DOI":"10.1016\/j.comnet.2013.08.009","volume":"57","author":"Y Meng","year":"2013","unstructured":"Meng, Y., Li, W., Kwok, L.F.: Towards adaptive character frequency-based exclusive signature matching scheme and its applications in distributed intrusion detection. Comput. Netw. 57(17), 3630\u20133640 (2013)","journal-title":"Comput. Netw."},{"key":"19_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"465","DOI":"10.1007\/978-3-319-13257-0_29","volume-title":"Information Security","author":"W Meng","year":"2014","unstructured":"Meng, W., Li, W., Kwok, L.-F.: An evaluation of single character frequency-based exclusive signature matching in distinct IDS environments. In: Chow, S.S.M., Camenisch, J., Hui, L.C.K., Yiu, S.M. (eds.) ISC 2014. LNCS, vol. 8783, pp. 465\u2013476. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-13257-0_29"},{"key":"19_CR22","doi-asserted-by":"publisher","first-page":"189","DOI":"10.1016\/j.cose.2014.02.006","volume":"43","author":"W Meng","year":"2014","unstructured":"Meng, W., Li, W., Kwok, L.-F.: EFM: enhancing the performance of signature-based network intrusion detection systems using enhanced filter mechanism. Comput. Secur. 43, 189\u2013204 (2014)","journal-title":"Comput. Secur."},{"issue":"18","key":"19_CR23","doi-asserted-by":"publisher","first-page":"3883","DOI":"10.1002\/sec.1307","volume":"8","author":"W Meng","year":"2015","unstructured":"Meng, W., Li, W., Kwok, L.-F.: Design of intelligent KNN-based alarm filter using knowledge-based alert verification in intrusion detection. Secur. Commun. Netw. 8(18), 3883\u20133895 (2015)","journal-title":"Secur. Commun. Netw."},{"key":"19_CR24","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"152","DOI":"10.1007\/978-3-319-59171-1_12","volume-title":"Trust Management XI","author":"W Meng","year":"2017","unstructured":"Meng, W., Au, M.H.: Towards statistical trust computation for medical smartphone networks based on behavioral profiling. In: Stegh\u00f6fer, J.-P., Esfandiari, B. (eds.) IFIPTM 2017. IAICT, vol. 505, pp. 152\u2013159. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-59171-1_12"},{"key":"19_CR25","doi-asserted-by":"publisher","first-page":"162","DOI":"10.1016\/j.jnca.2016.11.012","volume":"78","author":"W Meng","year":"2017","unstructured":"Meng, W., Li, W., Xiang, Y., Choo, K.K.R.: A Bayesian inference-based detection mechanism to defend medical smartphone networks against insider attacks. J. Netw. Comput. Appl. 78, 162\u2013169 (2017)","journal-title":"J. Netw. Comput. Appl."},{"issue":"1","key":"19_CR26","doi-asserted-by":"publisher","first-page":"233","DOI":"10.1109\/TNSM.2017.2664893","volume":"14","author":"W Meng","year":"2017","unstructured":"Meng, W., Li, W., Kwok, L.-F.: Towards effective trust-based packet filtering in collaborative network environments. IEEE Trans. Netw. Serv. Manage. 14(1), 233\u2013245 (2017)","journal-title":"IEEE Trans. Netw. Serv. Manage."},{"key":"19_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"759","DOI":"10.1007\/978-3-319-93638-3_44","volume-title":"Information Security and Privacy","author":"W Meng","year":"2018","unstructured":"Meng, W., Wang, Y., Li, W., Liu, Z., Li, J., Probst, C.W.: Enhancing intelligent alarm reduction for distributed intrusion detection systems via edge computing. In: Susilo, W., Yang, G. (eds.) ACISP 2018. LNCS, vol. 10946, pp. 759\u2013767. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-93638-3_44"},{"key":"19_CR28","doi-asserted-by":"publisher","unstructured":"Meng, W., Li, W., Wang, Y., Au, M.H.: Detecting insider attacks in medical cyber-physical networks based on behavioral profiling. Future Gener. Comput. Syst. (2018). https:\/\/doi.org\/10.1016\/j.future.2018.06.007","DOI":"10.1016\/j.future.2018.06.007"},{"key":"19_CR29","doi-asserted-by":"crossref","unstructured":"Mishra, A., Gupta, B.B., Joshi, R.C.: A comparative study of distributed denial of service attacks, intrusion tolerance and mitigation techniques. In: Proceedings of the 2011 European Intelligence and Security Informatics Conference, pp. 286\u2013289 (2011)","DOI":"10.1109\/EISIC.2011.15"},{"key":"19_CR30","doi-asserted-by":"crossref","unstructured":"Papadopoulos, C., Lindell, R., Mehringer, J., Hussain, A., Govindan, R.: COSSACK: coordinated suppression of simultaneous attacks. In: Proceedings of the 2003 DARPA Information Survivability Conference and Exposition (DISCEX), pp. 94\u201396 (2003)","DOI":"10.1109\/DISCEX.2003.1194932"},{"issue":"23\u201324","key":"19_CR31","doi-asserted-by":"publisher","first-page":"2435","DOI":"10.1016\/S1389-1286(99)00112-7","volume":"31","author":"V Paxson","year":"1999","unstructured":"Paxson, V.: Bro: a system for detecting network intruders in real-time. Comput. Netw. 31(23\u201324), 2435\u20132463 (1999)","journal-title":"Comput. Netw."},{"key":"19_CR32","unstructured":"Porras, P.A., Neumann, P.G.: EMERALD: event monitoring enabling responses to anomalous live disturbances. In: Proceedings of the 20th National Information Systems Security Conference, pp. 353\u2013365 (1997)"},{"key":"19_CR33","unstructured":"Roesch, M.: Snort: Lightweight intrusion detection for networks. In: Proceedings of Usenix Lisa Conference, pp. 229\u2013238 (1999)"},{"key":"19_CR34","doi-asserted-by":"crossref","unstructured":"Scarfone, K., Mell, P.: Guide to Intrusion Detection and Prevention Systems (IDPS), vol. 800, no. 94. NIST Special Publication (2007)","DOI":"10.6028\/NIST.SP.800-94"},{"key":"19_CR35","unstructured":"Snapp, S.R., et al.: DIDS (distributed intrusion detection system) - motivation, architecture, and an early prototype. In: Proceedings of the 14th National Computer Security Conference, pp. 167\u2013176 (1991)"},{"key":"19_CR36","unstructured":"Snort: An an open source network intrusion prevention and detection system (IDS\/IPS). http:\/\/www.snort.org\/"},{"key":"19_CR37","doi-asserted-by":"crossref","unstructured":"Tuan, T.A.: A game-theoretic analysis of trust management in P2P systems. In: Proceedings of ICCE, pp. 130\u2013134 (2006)","DOI":"10.1109\/CCE.2006.350832"},{"key":"19_CR38","unstructured":"Valdes, A., Anderson, D.: Statistical methods for computer usage anomaly detection using NIDES. Technical report, SRI International, January 1995"},{"key":"19_CR39","doi-asserted-by":"crossref","unstructured":"Vigna, G., Kemmerer, R.A.: NetSTAT: a network-based intrusion detection approach. In: Proceedings of Annual Computer Security Applications Conference (ACSAC), pp. 25\u201334 (1998)","DOI":"10.1109\/CSAC.1998.738566"},{"key":"19_CR40","unstructured":"Wu, Y.-S., Foo, B., Mei, Y., Bagchi, S.: Collaborative intrusion detection system (CIDS): a framework for accurate and efficient IDS. In: Proceedings of the 2003 Annual Computer Security Applications Conference (ACSAC), pp. 234\u2013244 (2003)"},{"key":"19_CR41","unstructured":"Yegneswaran, V., Barford, P., Jha, S.: Global intrusion detection in the DOMINO overlay system. In: Proceedings of the 2004 Network and Distributed System Security Symposium (NDSS), pp. 1\u201317 (2004)"}],"container-title":["Lecture Notes in Computer Science","Information Security Practice and Experience"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-99807-7_19","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,6]],"date-time":"2025-07-06T21:55:25Z","timestamp":1751838925000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-99807-7_19"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783319998060","9783319998077"],"references-count":41,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-99807-7_19","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2018]]},"assertion":[{"value":"ISPEC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security Practice and Experience","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Tokyo","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Japan","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"25 September 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"27 September 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ispec2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/www.risk.tsukuba.ac.jp\/ispec2018\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"73","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"25","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"12","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"34% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3.0","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"4","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"2 invited papers were accepted for publication","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}