{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,27]],"date-time":"2026-03-27T07:35:04Z","timestamp":1774596904207,"version":"3.50.1"},"reference-count":33,"publisher":"Springer Science and Business Media LLC","issue":"10","license":[{"start":{"date-parts":[[2021,3,16]],"date-time":"2021-03-16T00:00:00Z","timestamp":1615852800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2021,3,16]],"date-time":"2021-03-16T00:00:00Z","timestamp":1615852800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Supercomput"],"published-print":{"date-parts":[[2021,10]]},"DOI":"10.1007\/s11227-021-03715-6","type":"journal-article","created":{"date-parts":[[2021,3,16]],"date-time":"2021-03-16T10:03:06Z","timestamp":1615888986000},"page":"10984-11003","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":16,"title":["Cyberattack detection model using deep learning in a network log system with data visualization"],"prefix":"10.1007","volume":"77","author":[{"given":"Jung-Chun","family":"Liu","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9579-4426","authenticated-orcid":false,"given":"Chao-Tung","family":"Yang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yu-Wei","family":"Chan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Endah","family":"Kristiani","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wei-Je","family":"Jiang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2021,3,16]]},"reference":[{"key":"3715_CR1","doi-asserted-by":"publisher","unstructured":"Appleyard RH,\u00a0Adams J (2016) Using the ELK Stack for CASTOR Application Logging at RAL. In: Conference: International Symposium on Grids and Clouds 2015, (p 027). https:\/\/doi.org\/10.22323\/1.239.0027","DOI":"10.22323\/1.239.0027"},{"key":"3715_CR2","doi-asserted-by":"crossref","unstructured":"Betke E, Kunkel J (2017) Real-Time i\/o-Monitoring of Hpc Applications with Siox, Elasticsearch, Grafana and Fuse. In: International Conference on High Performance Computing, Springer, pp 174\u2013186","DOI":"10.1007\/978-3-319-67630-2_15"},{"key":"3715_CR3","doi-asserted-by":"publisher","first-page":"1083","DOI":"10.1016\/j.comnet.2010.11.002","volume":"55","author":"V Carela-Espa\u00f1ol","year":"2011","unstructured":"Carela-Espa\u00f1ol V, Barlet-Ros P, Cabellos-Aparicio A, Sol\u00e9-Pareta J (2011) Analysis of the impact of sampling on NetFlow traffic classification. Comput Netw 55:1083\u20131099","journal-title":"Comput Netw"},{"key":"3715_CR4","unstructured":"Grafana Labs (2020) The analytics platform for all your metrics. https:\/\/grafana.com\/, online; accessed 20 June 2019"},{"key":"3715_CR5","doi-asserted-by":"publisher","first-page":"225","DOI":"10.1016\/j.cose.2019.03.007","volume":"84","author":"M Kalech","year":"2019","unstructured":"Kalech M (2019) Cyberattack detection in SCADA systems using temporal pattern recognition techniques. Comput Secur 84:225\u2013238","journal-title":"Comput Secur"},{"key":"3715_CR6","doi-asserted-by":"publisher","first-page":"66","DOI":"10.1016\/j.eswa.2018.04.004","volume":"106","author":"TY Kim","year":"2018","unstructured":"Kim TY, Cho SB (2018) Web traffic anomaly detection using C-LSTM neural networks. Expert Syst Appl 106:66\u201376","journal-title":"Expert Syst Appl"},{"key":"3715_CR7","doi-asserted-by":"publisher","first-page":"72","DOI":"10.1016\/j.future.2018.11.006","volume":"94","author":"M Kiran","year":"2019","unstructured":"Kiran M, Chhabra A (2019) Understanding flows in high-speed scientific networks: a netflow data study. Future Gener Comput Syst 94:72\u201379","journal-title":"Future Gener Comput Syst"},{"key":"3715_CR8","doi-asserted-by":"publisher","first-page":"14","DOI":"10.1016\/j.patrec.2017.11.004","volume":"101","author":"R Kozik","year":"2018","unstructured":"Kozik R (2018) Distributing extreme learning machines with apache spark for netflow-based malware activity detection. Pattern Recogn Lett 101:14\u201320","journal-title":"Pattern Recogn Lett"},{"key":"3715_CR9","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1016\/j.jpdc.2018.03.006","volume":"119","author":"R Kozik","year":"2018","unstructured":"Kozik R, Chora\u00e1 M, Ficco M, Palmieri F (2018) A scalable distributed machine learning approach for attack detection in edge computing environments. J Parallel Distrib Comput 119:18\u201326","journal-title":"J Parallel Distrib Comput"},{"issue":"1","key":"3715_CR10","doi-asserted-by":"publisher","first-page":"309","DOI":"10.1109\/JIOT.2020.3004244","volume":"8","author":"E Kristiani","year":"2020","unstructured":"Kristiani E, Yang CT, Huang CY, Ko PC, Fathoni H (2020) On construction of sensors, edge, and cloud (ISEC) framework for smart system integration and applications. IEEE Internet Things J 8(1):309\u2013319","journal-title":"IEEE Internet Things J"},{"key":"3715_CR11","doi-asserted-by":"crossref","unstructured":"Langi PP, Najib W, Aji TB, et\u00a0al (2015) An Evaluation of Twitter River and Logstash Performances as Elasticsearch Inputs for Social Media Analysis of Twitter. In: 2015 International Conference on Information & Communication Technology and Systems (ICTS), IEEE, pp 181\u2013186","DOI":"10.1109\/ICTS.2015.7379895"},{"issue":"8","key":"3715_CR12","doi-asserted-by":"publisher","first-page":"4267","DOI":"10.1007\/s11227-018-2440-4","volume":"75","author":"S Lee","year":"2019","unstructured":"Lee S, Huh JH (2019) An effective security measures for nuclear power plant using big data analysis approach. J Supercomput 75(8):4267\u20134294","journal-title":"J Supercomput"},{"key":"3715_CR13","doi-asserted-by":"publisher","first-page":"332","DOI":"10.1016\/j.knosys.2018.08.036","volume":"163","author":"H Liu","year":"2019","unstructured":"Liu H, Lang B, Liu M, Yan H (2019) CNN and RNN based payload classification methods for attack detection. Knowl-Based Syst 163:332\u2013341","journal-title":"Knowl-Based Syst"},{"key":"3715_CR14","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1016\/j.neucom.2019.01.099","volume":"338","author":"MS Mahmoud","year":"2019","unstructured":"Mahmoud MS, Hamdan MM, Baroudi UA (2019) Modeling and control of cyber-physical systems subject to cyber attacks: a survey of recent advances and challenges. Neurocomputing 338:101\u2013115","journal-title":"Neurocomputing"},{"key":"3715_CR15","doi-asserted-by":"publisher","unstructured":"Moh M, Pininti S, Doddapaneni S, Moh T (2016) Detecting Web Attacks Using Multi-Stage Log Analysis. In: 2016 IEEE 6th International Conference on Advanced Computing (IACC), pp 733\u2013738, https:\/\/doi.org\/10.1109\/IACC.2016.141","DOI":"10.1109\/IACC.2016.141"},{"key":"3715_CR16","doi-asserted-by":"publisher","first-page":"214","DOI":"10.1016\/j.cose.2018.03.001","volume":"76","author":"J Navarro","year":"2018","unstructured":"Navarro J, Deruyver A, Parrend P (2018) A systematic survey on multi-step attack detection. Comput Secur 76:214\u2013249","journal-title":"Comput Secur"},{"key":"3715_CR17","doi-asserted-by":"crossref","unstructured":"Perry I, Li L, Sweet C, Su SH, Cheng FY, Yang SJ, Okutan A (2018) Differentiating and Predicting Cyberattack Behaviors Using lstm. In: 2018 IEEE Conference on Dependable and Secure Computing (DSC), IEEE, pp 1\u20138","DOI":"10.1109\/DESEC.2018.8625145"},{"key":"3715_CR18","doi-asserted-by":"crossref","unstructured":"Prakash T, Kakkar M, Patel K (2016) Geo-Identification of Web Users Through Logs Using Elk Stack. In: 2016 6th International Conference-Cloud System and Big Data Engineering (Confluence), IEEE, pp 606\u2013610","DOI":"10.1109\/CONFLUENCE.2016.7508191"},{"key":"3715_CR19","doi-asserted-by":"crossref","unstructured":"Rastogi R, Akash S, Shobha G, Poonam G, Pratiba D, Singh A (2016) Design and development of generic web based framework for log analysis. In: 2016 IEEE Region 10 Conference (TENCON), IEEE, pp 232\u2013236","DOI":"10.1109\/TENCON.2016.7847996"},{"key":"3715_CR20","doi-asserted-by":"publisher","first-page":"345","DOI":"10.1016\/j.eswa.2018.09.029","volume":"117","author":"OK Sahingoz","year":"2019","unstructured":"Sahingoz OK, Buber E, Demir O, Diri B (2019) Machine learning based phishing detection from URLs. Expert Syst Appl 117:345\u2013357","journal-title":"Expert Syst Appl"},{"issue":"8","key":"3715_CR21","doi-asserted-by":"publisher","first-page":"4829","DOI":"10.1007\/s11227-019-02767-z","volume":"75","author":"KS Sahoo","year":"2019","unstructured":"Sahoo KS, Panda SK, Sahoo S, Sahoo B, Dash R (2019) Toward secure software-defined networks against distributed denial of service attack. J Supercomput 75(8):4829\u20134874","journal-title":"J Supercomput"},{"issue":"2","key":"3715_CR22","doi-asserted-by":"publisher","first-page":"54","DOI":"10.1109\/MIS.2018.111145054","volume":"33","author":"A Taylor","year":"2018","unstructured":"Taylor A, Leblanc S, Japkowicz N (2018) Probing the limits of anomaly detectors for automobiles with a cyberattack framework. IEEE Intell Syst 33(2):54\u201362","journal-title":"IEEE Intell Syst"},{"key":"3715_CR23","doi-asserted-by":"publisher","first-page":"26,497","DOI":"10.1109\/ACCESS.2019.2901115","volume":"7","author":"CK Tsung","year":"2019","unstructured":"Tsung CK, Hsieh HY, Yang CT (2019) An implementation of scalable high throughput data platform for logging semiconductor testing results. IEEE Access 7:26,497-26,506","journal-title":"IEEE Access"},{"key":"3715_CR24","doi-asserted-by":"publisher","first-page":"41525","DOI":"10.1109\/ACCESS.2019.2895334","volume":"7","author":"R Vinayakumar","year":"2019","unstructured":"Vinayakumar R, Alazab M, Soman K, Poornachandran P, Al-Nemrat A, Venkatraman S (2019) Deep learning approach for intelligent intrusion detection system. IEEE Access 7:41525\u201341550","journal-title":"IEEE Access"},{"key":"3715_CR25","doi-asserted-by":"publisher","first-page":"175","DOI":"10.1016\/j.comnet.2018.08.014","volume":"145","author":"CY Wang","year":"2018","unstructured":"Wang CY, Ou CL, Zhang YE, Cho FM, Chen PH, Chang JB, Shieh CK (2018) BotCluster: a session-based P2P botnet clustering system on NetFlow. Comput Netw 145:175\u2013189","journal-title":"Comput Netw"},{"key":"3715_CR26","doi-asserted-by":"publisher","first-page":"477","DOI":"10.1016\/j.future.2018.08.021","volume":"90","author":"P Wu","year":"2019","unstructured":"Wu P, Lu Z, Zhou Q, Lei Z, Li X, Qiu M, Hung PC (2019) Bigdata logs analysis based on seq2seq networks for cognitive internet of things. Future Gener Comput Syst 90:477\u2013488","journal-title":"Future Gener Comput Syst"},{"key":"3715_CR27","doi-asserted-by":"publisher","first-page":"144","DOI":"10.1016\/j.smhl.2018.07.015","volume":"9\u201310","author":"Q Xue","year":"2018","unstructured":"Xue Q, Chuah MC (2018) New attacks on RNN based healthcare learning system and their detections. Smart Health 9\u201310:144\u2013157","journal-title":"Smart Health"},{"key":"3715_CR28","doi-asserted-by":"publisher","first-page":"147,672","DOI":"10.1109\/ACCESS.2019.2946962","volume":"7","author":"CT Yang","year":"2019","unstructured":"Yang CT, Chen ST, Cheng WH, Chan YW, Kristiani E (2019a) A heterogeneous cloud storage platform with uniform data distribution by software-defined storage technologies. IEEE Access 7:147,672-147,682","journal-title":"IEEE Access"},{"key":"3715_CR29","doi-asserted-by":"publisher","first-page":"687","DOI":"10.1016\/j.future.2018.08.050","volume":"93","author":"CT Yang","year":"2019","unstructured":"Yang CT, Chen ST, Liu JC, Yang YY, Mitra K, Ranjan R (2019b) Implementation of a real-time network traffic monitoring service with network functions virtualization. Future Gener Comput Syst 93:687\u2013701","journal-title":"Future Gener Comput Syst"},{"key":"3715_CR30","doi-asserted-by":"crossref","unstructured":"Yang CT, Jiang WJ, Kristiani E, Chan YW, Liu JC (2019c) The Implementation of a Network Log System Using Rnn on Cyberattack Detection with Data Visualization. In: International Conference on Frontier Computing, Springer, pp 321\u2013329","DOI":"10.1007\/978-981-15-3250-4_38"},{"key":"3715_CR31","doi-asserted-by":"publisher","first-page":"6344","DOI":"10.1007\/s11227-019-02853-2","volume":"76","author":"CT Yang","year":"2020","unstructured":"Yang CT, Kristiani E, Wang YT, Min G, Lai CH, Jiang WJ (2020a) On construction of a network log management system using ELK Stack with Ceph. J Supercomput 76:6344\u20136360","journal-title":"J Supercomput"},{"key":"3715_CR32","doi-asserted-by":"publisher","first-page":"7842","DOI":"10.1109\/ACCESS.2019.2963716","volume":"8","author":"CT Yang","year":"2020","unstructured":"Yang CT, Liu JC, Kristiani E, Liu ML, You I, Pau G (2020b) Netflow monitoring and cyberattack detection using deep learning with Ceph. IEEE Access 8:7842\u20137850","journal-title":"IEEE Access"},{"issue":"11","key":"3715_CR33","doi-asserted-by":"publisher","first-page":"2528","DOI":"10.3390\/s19112528","volume":"19","author":"Y Yang","year":"2019","unstructured":"Yang Y, Zheng K, Wu C, Yang Y (2019d) Improving the classification effectiveness of intrusion detection by using improved conditional variational autoencoder and deep neural network. Sensors 19(11):2528","journal-title":"Sensors"}],"container-title":["The Journal of Supercomputing"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11227-021-03715-6.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s11227-021-03715-6\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11227-021-03715-6.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,9,8]],"date-time":"2021-09-08T09:13:14Z","timestamp":1631092394000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s11227-021-03715-6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,3,16]]},"references-count":33,"journal-issue":{"issue":"10","published-print":{"date-parts":[[2021,10]]}},"alternative-id":["3715"],"URL":"https:\/\/doi.org\/10.1007\/s11227-021-03715-6","relation":{},"ISSN":["0920-8542","1573-0484"],"issn-type":[{"value":"0920-8542","type":"print"},{"value":"1573-0484","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,3,16]]},"assertion":[{"value":"25 February 2021","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"16 March 2021","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}