{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,3]],"date-time":"2025-05-03T12:04:06Z","timestamp":1746273846904,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":19,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642024894"},{"type":"electronic","value":"9783642024900"}],"license":[{"start":{"date-parts":[[2009,1,1]],"date-time":"2009-01-01T00:00:00Z","timestamp":1230768000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2009]]},"DOI":"10.1007\/978-3-642-02490-0_71","type":"book-chapter","created":{"date-parts":[[2009,7,30]],"date-time":"2009-07-30T06:08:21Z","timestamp":1248934101000},"page":"579-586","source":"Crossref","is-referenced-by-count":15,"title":["An Incident Analysis System NICTER and Its Analysis Engines Based on Data Mining Techniques"],"prefix":"10.1007","author":[{"given":"Daisuke","family":"Inoue","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Katsunari","family":"Yoshioka","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Masashi","family":"Eto","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Masaya","family":"Yamagata","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eisuke","family":"Nishino","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jun\u2019ichi","family":"Takeuchi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kazuya","family":"Ohkouchi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Koji","family":"Nakao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"71_CR1","unstructured":"Song, D., Malan, R., Stone, R.: A Snapshot of Global Internet Worm Activity. In: 14th Annual FIRST Conference on Computer Security Incident Handling and Response (2002)"},{"key":"71_CR2","unstructured":"Moore, D.: Network Telescopes: Tracking Denial-of-Service Attacks and Internet Worms around the Globe. In: 17th Large Installation Systems Administration Conference (LISA 2003), USENIX (2003)"},{"key":"71_CR3","unstructured":"Bailey, M., Cooke, E., Jahanian, F., Nazario, J., Watson, D.: The Internet Motion Sensor: A Distributed Blackhole Monitoring System. In: 12th Annual Network and Distributed System Security Symposium (NDSS 2005) (2005)"},{"key":"71_CR4","unstructured":"Pouget, F., Dacier, M., Pham, V.H.: Leurre.com: On the Advantages of Deploying a Large Scale Distributed Honeypot Platform. In: E-Crime and Computer Conference (ECCE 2005) (2005)"},{"key":"71_CR5","doi-asserted-by":"crossref","unstructured":"Leita, C., Pham, V.H., Thonnard, O., Ramirez-Silva, E., Pouget, F., Kirda, E., Dacier, M.: The Leurre.com Project: Collecting Threats Information using a Worldwide Distributed Honeynet. In: WOMBAT Workshop on Information Security Threats Data Collection and Sharing (WISTDCS 2008), pp. 40\u201357 (2008)","DOI":"10.1109\/WISTDCS.2008.8"},{"key":"71_CR6","unstructured":"REN-ISAC: Research and Education Networking Information Sharing and Analysis Center, \n                    \n                      http:\/\/www.ren-isac.net\/"},{"key":"71_CR7","doi-asserted-by":"crossref","unstructured":"Horenbeeck, M.V.: The SANS Internet Storm Center. In: WOMBAT Workshop on Information Security Threats Data Collection and Sharing (WISTDCS 2008), pp. 17\u201323 (2008), \n                    \n                      http:\/\/isc.sans.org\/","DOI":"10.1109\/WISTDCS.2008.16"},{"key":"71_CR8","unstructured":"JPCERT\/CC, Internet Scan Data Acquisition System (ISDAS), \n                    \n                      http:\/\/www.jpcert.or.jp\/isdas\/"},{"key":"71_CR9","unstructured":"@police, \n                    \n                      http:\/\/www.cyberpolice.go.jp\/detect\/observation.html"},{"key":"71_CR10","unstructured":"MUSTAN, \n                    \n                      http:\/\/mustan.ipa.go.jp\/mustan_web\/"},{"key":"71_CR11","unstructured":"WCLSCAN, \n                    \n                      http:\/\/www.wclscan.org\/"},{"key":"71_CR12","unstructured":"Nakao, K., Yoshioka, K., Inoue, D., Eto, M.: A Novel Concept of Network Incident Analysis based on Multi-layer Observations of Malware Activities. In: The 2nd Joint Workshop on Information Security (JWIS 2007), pp. 267\u2013279 (2007)"},{"key":"71_CR13","doi-asserted-by":"crossref","unstructured":"Inoue, D., Eto, M., Yoshioka, K., Baba, S., Suzuki, K., Nakazato, J., Ohtaka, K., Nakao, K.: Nicter: An Incident Analysis System toward Binding Network Monitoring with Malware Analysis. In: WOMBAT Workshop on Information Security Threats Data Collection and Sharing (WISTDCS 2008), pp. 58\u201366 (2008)","DOI":"10.1109\/WISTDCS.2008.14"},{"key":"71_CR14","volume-title":"The Eighth ACM SIGKDD International Conference on Knowledge Discovery and Data Mining (KDD 2002)","author":"K. Yamanishi","year":"2002","unstructured":"Yamanishi, K., Takeuchi, J.: A Unifying Approach to Detecting Outliers and Change-Points from Nonstationary Data. In: The Eighth ACM SIGKDD International Conference on Knowledge Discovery and Data Mining (KDD 2002). ACM Press, New York (2002)"},{"issue":"4","key":"71_CR15","doi-asserted-by":"publisher","first-page":"482","DOI":"10.1109\/TKDE.2006.1599387","volume":"18","author":"J. Takeuchi","year":"2006","unstructured":"Takeuchi, J., Yamanishi, K.: A Unifying Framework for Detecting Outliers and Change-points from Time Series. IEEE Trans. on Knowledge and Data Engineering\u00a018(4), 482\u2013492 (2006)","journal-title":"IEEE Trans. on Knowledge and Data Engineering"},{"key":"71_CR16","unstructured":"Ohkouchi, K., Rikitake, K., Nakao, K.: A Study on Network Incident Analysis Using Self-Organizing Maps. In: The 2006 Symposium on Cryptography and Information Security (SCIS 2006) (2006)"},{"key":"71_CR17","unstructured":"Nishino, E., Ishitobi, K., Takeuchi, J., Yoshioka, K., Eto, M., Inoue, D., Nakao, K.: Forecast and Detection of Security Incident Based on the Network Traffic. In: The 30th Symposium on Information Theory and its Application (SITA 2007) (2007)"},{"key":"71_CR18","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9780511841040","volume-title":"Wavelet Methods for Time Series Analysis","author":"D.B. Percival","year":"2000","unstructured":"Percival, D.B., Walden, A.T.: Wavelet Methods for Time Series Analysis. Cambridge University Press, Cambridge (2000)"},{"issue":"3","key":"71_CR19","doi-asserted-by":"publisher","first-page":"828","DOI":"10.1109\/18.761321","volume":"45","author":"K. Daoudi","year":"1999","unstructured":"Daoudi, K., Frakt, A.B., Willsky, A.S.: Multiscale Autoregressive Models and Wavelets. IEEE Trans. on Information Theory\u00a045(3), 828\u2013845 (1999)","journal-title":"IEEE Trans. on Information Theory"}],"container-title":["Lecture Notes in Computer Science","Advances in Neuro-Information Processing"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-02490-0_71","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,19]],"date-time":"2019-05-19T12:08:25Z","timestamp":1558267705000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-02490-0_71"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2009]]},"ISBN":["9783642024894","9783642024900"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-02490-0_71","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2009]]}}}