{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T09:26:40Z","timestamp":1769938000873,"version":"3.49.0"},"publisher-location":"Berlin, Heidelberg","reference-count":29,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540874027","type":"print"},{"value":"9783540874034","type":"electronic"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1007\/978-3-540-87403-4_15","type":"book-chapter","created":{"date-parts":[[2008,9,17]],"date-time":"2008-09-17T11:42:05Z","timestamp":1221651725000},"page":"271-290","source":"Crossref","is-referenced-by-count":22,"title":["Determining Placement of Intrusion Detectors for a Distributed Application through Bayesian Network Modeling"],"prefix":"10.1007","author":[{"given":"Gaspar","family":"Modelo-Howard","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Saurabh","family":"Bagchi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Guy","family":"Lebanon","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"15_CR1","doi-asserted-by":"crossref","first-page":"690","DOI":"10.1109\/BROADNETS.2004.52","volume-title":"1st IEEE International Conference on Broadband Networks","author":"F. Anjum","year":"2004","unstructured":"Anjum, F., Subhadrabandhu, D., Sarkar, S., Shetty, R.: On Optimal Placement of Intrusion Detection Modules in Sensor Networks. In: 1st IEEE International Conference on Broadband Networks, pp. 690\u2013699. IEEE Press, New York (2004)"},{"key":"15_CR2","doi-asserted-by":"publisher","first-page":"186","DOI":"10.1145\/357830.357849","volume":"3-3","author":"S. Axelsson","year":"2000","unstructured":"Axelsson, S.: The base-rate fallacy and the difficulty of intrusion detection. ACM Trans. Inf. Syst. Secur.\u00a03-3, 186\u2013205 (2000)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"15_CR3","unstructured":"Bayes Net Toolbox for Matlab, http:\/\/www.cs.ubc.ca\/~murphyk\/Software"},{"key":"15_CR4","first-page":"420","volume-title":"19th ACM Symposium on Applied computing","author":"N. Ben Amor","year":"2004","unstructured":"Ben Amor, N., Benferhat, S., Elouedi, Z.: Naive Bayes vs decision trees in intrusion detection systems. In: 19th ACM Symposium on Applied computing, pp. 420\u2013424. ACM Press, New York (2004)"},{"key":"15_CR5","doi-asserted-by":"publisher","first-page":"1385","DOI":"10.1016\/j.mcm.2005.03.005","volume":"42","author":"T. Berger-Wolf","year":"2005","unstructured":"Berger-Wolf, T., Hart, W., Saia, J.: Discrete Sensor Placement Problems in Distribution Networks. J. Math. and Comp. Model.\u00a042, 1385\u20131396 (2005)","journal-title":"J. Math. and Comp. Model."},{"key":"15_CR6","unstructured":"Bugtraq Vulnerability Database, http:\/\/www.securityfocus.com\/vulnerabilities"},{"key":"15_CR7","first-page":"15","volume-title":"27th IEEE Symposium on Security and Privacy","author":"A. Cardenas","year":"2006","unstructured":"Cardenas, A., Baras, J., Seamon, K.: A Framework for the Evaluation of Intrusion Detection Systems. In: 27th IEEE Symposium on Security and Privacy, p. 15. IEEE Press, New York (2006)"},{"key":"15_CR8","volume-title":"Design of an Intrusion-Tolerant Intrusion Detection System","year":"2002","unstructured":"Dacier, M. (ed.): Design of an Intrusion-Tolerant Intrusion Detection System. Research Report, Maftia Project (2002)"},{"key":"15_CR9","unstructured":"Foo, B., Wu, Y., Mao, Y., Bagchi, S., Spafford, E.: ADEPTS: Adaptive Intrusion Response using Attack Graphs in an E-Commerce Environment. In: International Conference on Dependable Systems and Networks, pp. 508\u2013517 (2005)"},{"key":"15_CR10","doi-asserted-by":"publisher","first-page":"90","DOI":"10.1145\/1128817.1128834","volume-title":"1st ACM Symposium on Information, Computer and Communications Security","author":"G. Gu","year":"2006","unstructured":"Gu, G., Fogla, P., Dagon, D., Lee, W., Skoric, B.: Measuring Intrusion Detection Capability: An Information-Theoretic Approach. In: 1st ACM Symposium on Information, Computer and Communications Security, pp. 90\u2013101. ACM Press, New York (2006)"},{"key":"15_CR11","first-page":"121","volume-title":"22nd Annual Computer Security Applications Conference","author":"K. Ingols","year":"2006","unstructured":"Ingols, K., Lippmann, R., Piwowarski, K.: Practical Attack Graph Generation for Network Defense. In: 22nd Annual Computer Security Applications Conference, pp. 121\u2013130. IEEE Press, New York (2006)"},{"key":"15_CR12","unstructured":"IPTables Firewall, http:\/\/www.netfilters.org\/projects\/iptables"},{"key":"15_CR13","doi-asserted-by":"crossref","DOI":"10.1007\/978-1-4757-3502-4","volume-title":"Bayesian Networks and Decision Graphs","author":"F. Jensen","year":"2001","unstructured":"Jensen, F.: Bayesian Networks and Decision Graphs. Springer, Heidelberg (2001)"},{"key":"15_CR14","doi-asserted-by":"crossref","first-page":"49","DOI":"10.1109\/CSFW.2002.1021806","volume-title":"15th IEEE Computer Security Foundations Workshop","author":"S. Jha","year":"2002","unstructured":"Jha, S., Sheyner, O., Wing, J.: Two Formal Analyses of Attack Graphs. In: 15th IEEE Computer Security Foundations Workshop, pp. 49\u201363. IEEE Press, New York (2002)"},{"key":"15_CR15","doi-asserted-by":"crossref","unstructured":"Jones, D., Davis, C., Turnquist, M., Nozick, L.: Physical Security and Vulnerability Modeling for Infrastructure Facilities. Technical Report, Sandia National Laboratories (2006)","DOI":"10.1109\/HICSS.2006.379"},{"key":"15_CR16","first-page":"2","volume-title":"5th International Conference on Information Processing in Sensor Networks","author":"A. Krause","year":"2006","unstructured":"Krause, A., Guestrin, C., Gupta, A., Kleinberg, J.: Near-optimal Sensor Placements: Maximizing Information while Minimizing Communication Cost. In: 5th International Conference on Information Processing in Sensor Networks, pp. 2\u201310. ACM Press, New York (2006)"},{"key":"15_CR17","doi-asserted-by":"publisher","first-page":"14","DOI":"10.1109\/CSAC.2003.1254306","volume-title":"19th Annual Computer Security Applications Conference","author":"C. Kr\u00fcgel","year":"2003","unstructured":"Kr\u00fcgel, C., Mutz, D., Robertson, W., Valeyr, F.: Bayesian Event Classification for Intrusion Detection. In: 19th Annual Computer Security Applications Conference, pp. 14\u201323. IEEE Press, New York (2003)"},{"key":"15_CR18","doi-asserted-by":"crossref","unstructured":"Kuhn, D., Walsh, T., Fires, S.: Security Considerations for Voice Over IP Systems. Special Publication 800-58, National Institute of Standards and Technology (2005)","DOI":"10.6028\/NIST.SP.800-58"},{"key":"15_CR19","doi-asserted-by":"publisher","first-page":"2252","DOI":"10.1109\/TSMCB.2004.834424","volume":"34","author":"J. Lemmer","year":"2004","unstructured":"Lemmer, J., Gossink, D.: Recursive Noisy OR - A Rule for Estimating Complex Probabilistic Interactions. IEEE Trans. Syst. Man. Cybern. B.\u00a034, 2252\u20132261 (2004)","journal-title":"IEEE Trans. Syst. Man. Cybern. B."},{"key":"15_CR20","unstructured":"Lippmann, R., et al.: Evaluating Intrusion Detection Systems: The 1998 DARPA Off-line Intrusion Detection Evaluation. In: 1st DARPA Information Survivability Conference and Exposition, pp. 81\u201389 (2000)"},{"key":"15_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"127","DOI":"10.1007\/11856214_7","volume-title":"Recent Advances in Intrusion Detection","author":"V. Mehta","year":"2006","unstructured":"Mehta, V., Bartzis, C., Zhu, H., Clarke, E., Wing, J.: Ranking Attack Graphs. In: Zamboni, D., Kr\u00fcgel, C. (eds.) RAID 2006. LNCS, vol.\u00a04219, pp. 127\u2013144. Springer, Heidelberg (2006)"},{"key":"15_CR22","unstructured":"Modelo-Howard, G.: Addendum to Determining Placement of Intrusion Detectors for a Distributed Application through Bayesian Network Modeling, http:\/\/cobweb.ecn.purdue.edu\/~dcsl\/publications\/detectors-location_addendum.pdf"},{"key":"15_CR23","unstructured":"National Vulnerability Database, http:\/\/nvd.nist.gov\/nvd.cfm"},{"key":"15_CR24","doi-asserted-by":"crossref","unstructured":"Ning, P., Cui, Y., Reeves, D.: Constructing Attack Scenarios through Correlation of Intrusion Alerts. In: 9th ACM Conference on Computers & Communications Security, pp. 245\u2013254 (2002)","DOI":"10.1145\/586110.586144"},{"key":"15_CR25","doi-asserted-by":"crossref","unstructured":"Ou, X., Boyer, W., McQueen, M.: A Scalable Approach to Attack Graph Generation. In: 13th ACM Conference on Computer & Communications Security, pp. 336\u2013345 (2006)","DOI":"10.1145\/1180405.1180446"},{"key":"15_CR26","volume-title":"Security Warrior","author":"C. Peikari","year":"2004","unstructured":"Peikari, C., Chuvakin, A.: Security Warrior. O\u2019Reilly, New York (2004)"},{"key":"15_CR27","doi-asserted-by":"publisher","first-page":"1016","DOI":"10.1109\/JSAC.2004.830895","volume":"22","author":"S. Ray","year":"2004","unstructured":"Ray, S., Starobinski, D., Trachtenberg, A., Ungrangsi, R.: Robust Location Detection with Sensor Networks. IEEE J. on Selected Areas in Comm.\u00a022, 1016\u20131025 (2004)","journal-title":"IEEE J. on Selected Areas in Comm."},{"key":"15_CR28","unstructured":"Snort Intrusion Detection System, http:\/\/www.snort.org"},{"key":"15_CR29","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"80","DOI":"10.1007\/3-540-39945-3_6","volume-title":"Recent Advances in Intrusion Detection","author":"A. Valdes","year":"2000","unstructured":"Valdes, A., Skinner, K.: Adaptive, Model-based Monitoring for Cyber Attack Detection. In: Debar, H., M\u00e9, L., Wu, S.F. (eds.) RAID 2000. LNCS, vol.\u00a01907, pp. 80\u201392. Springer, Heidelberg (2000)"}],"container-title":["Lecture Notes in Computer Science","Recent Advances in Intrusion Detection"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-87403-4_15.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,5,19]],"date-time":"2023-05-19T23:56:43Z","timestamp":1684540603000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-87403-4_15"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"ISBN":["9783540874027","9783540874034"],"references-count":29,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-87403-4_15","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[]}}