{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,2]],"date-time":"2025-11-02T16:52:18Z","timestamp":1762102338016,"version":"3.37.3"},"reference-count":34,"publisher":"Springer Science and Business Media LLC","issue":"2","license":[{"start":{"date-parts":[[2019,1,26]],"date-time":"2019-01-26T00:00:00Z","timestamp":1548460800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Hardw Syst Secur"],"published-print":{"date-parts":[[2019,6]]},"DOI":"10.1007\/s41635-018-0061-2","type":"journal-article","created":{"date-parts":[[2019,1,26]],"date-time":"2019-01-26T00:02:41Z","timestamp":1548460961000},"page":"164-176","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":23,"title":["Machine Learning-Based EDoS Attack Detection Technique Using Execution Trace Analysis"],"prefix":"10.1007","volume":"3","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4024-4355","authenticated-orcid":false,"given":"Hossein","family":"Abbasi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Naser","family":"Ezzati-Jivan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martine","family":"Bellaiche","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chamseddine","family":"Talhi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Michel R.","family":"Dagenais","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,1,26]]},"reference":[{"key":"61_CR1","unstructured":"Geelan J (2009) Twenty-One Experts define cloud computing. Virtualization Journal"},{"key":"61_CR2","doi-asserted-by":"crossref","unstructured":"Bogdanoski MS, Risteski TA Analysis of the SYN Flood DoS Attack. Computer Network and Information Security 2013(MECS)","DOI":"10.5815\/ijcnis.2013.08.01"},{"key":"61_CR3","doi-asserted-by":"crossref","unstructured":"VivinSandar S, Shenai S (2012) Economic denial of sustainability (EDos) in cloud services using HTTP and XML based DDos attacks. International Journal of Computer Applications","DOI":"10.5120\/5807-8063"},{"key":"61_CR4","doi-asserted-by":"crossref","unstructured":"Mell P, Grance T (2011) The NIST definition of cloud computing. National Institute of Standards and Technology","DOI":"10.6028\/NIST.SP.800-145"},{"key":"61_CR5","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4419-6524-0","volume-title":"Handbook of Cloud Computing","author":"B Furht","year":"2010","unstructured":"Furht B, Escalante A (2010) Handbook of Cloud Computing. Springer, Berlin. 634"},{"issue":"1","key":"61_CR6","doi-asserted-by":"publisher","first-page":"32","DOI":"10.1109\/MITP.2011.117","volume":"14","author":"T Hsin-Yi","year":"2012","unstructured":"Hsin-Yi T, et al. (2012) Threat as a service?: virtualization\u2019s impact on cloud security. IT Professional 14 (1):32\u201337","journal-title":"IT Professional"},{"key":"61_CR7","doi-asserted-by":"crossref","unstructured":"Shea R, Jiangchuan L (2012) Understanding the impact of denial of service attacks on virtual machines. In: 2012 IEEE 20th international workshop on quality of service (IWQos)","DOI":"10.1109\/IWQoS.2012.6245975"},{"key":"61_CR8","doi-asserted-by":"crossref","unstructured":"Sqalli MH, Al-Haidari F, Salah K (2011) EDOs-shield - a two-steps mitigation technique against EDos attacks in cloud computing. In: 2011 Fourth IEEE international conference on utility and cloud computing (UCC)","DOI":"10.1109\/UCC.2011.17"},{"key":"61_CR9","doi-asserted-by":"crossref","unstructured":"Naresh Kumar M et al (2012) Mitigating economic denial of sustainability (EDoS) in cloud computing using in-cloud scrubber service. In: 2012 Fourth international conference on computational intelligence and communication networks (CICN)","DOI":"10.1109\/CICN.2012.149"},{"key":"61_CR10","doi-asserted-by":"crossref","unstructured":"Alosaimi W, Al-Begain K (2013) An enhanced economical denial of sustainability mitigation system for the cloud. In: 2013 Seventh international conference on next generation mobile apps services and technologies (NGMAST)","DOI":"10.1109\/NGMAST.2013.13"},{"key":"61_CR11","doi-asserted-by":"crossref","unstructured":"Masood M, et al. (2013) EDOs armor: a cost effective economic denial of sustainability attack mitigation framework for e-commerce applications in cloud environments. In: Multi topic conference (INMIC) 2013 16th International","DOI":"10.1109\/INMIC.2013.6731321"},{"key":"61_CR12","doi-asserted-by":"crossref","unstructured":"Baig ZA, Binbeshr F (2013) Controlled virtual resource access to mitigate economic denial of sustainability (EDos) attacks against cloud infrastructures. In: 2013 international conference on cloud computing and big data (CloudCom-Asia)","DOI":"10.1109\/CLOUDCOM-ASIA.2013.51"},{"key":"61_CR13","doi-asserted-by":"crossref","unstructured":"Al-Haidari F, Sqalli MH, Salah K (2012) Enhanced EDoS-Shield for mitigating EDoS attacks originating from spoofed IP addresses. In: 2012 IEEE 11th international conference on trust, security and privacy in computing and communications (TrustCom)","DOI":"10.1109\/TrustCom.2012.146"},{"key":"61_CR14","unstructured":"Koduru A, Neelakantam T, Bhanu SMS (2013) Detection of eco-nomic denial of sustainability using time spent on a web pagein cloud. In: 2013 IEEE international conference on cloudcomputing in emerging markets (CCEM), pp 1\u20134"},{"key":"61_CR15","unstructured":"NSFOCUS, Bandwidth Consumption DDoS Attacks and Mitigation Methods. 2013: NSFOCUS"},{"key":"61_CR16","unstructured":"http:\/\/en.wikipedia.org\/wiki\/Moving_average_Exponential_moving_average\n                    \n                  . 14 Oct 2014"},{"key":"61_CR17","unstructured":"Desnoyers M, Dagenais M (2008) LTTNg: tracing across execution layers, from the hypervisor to user-space. In: Proceedings of the Ottawa linux symposium"},{"key":"61_CR18","unstructured":"Defending Networks with Incomplete Information: A Machine Learning Approach. 2013, BlackHat Briefings"},{"key":"61_CR19","doi-asserted-by":"crossref","unstructured":"Subbulakshmi T et al (2011) Detection of DDos attacks using enhanced support vector machines with real time generated dataset. In: 2011 Third international conference on advanced computing (ICoAC)","DOI":"10.1109\/ICoAC.2011.6165212"},{"key":"61_CR20","doi-asserted-by":"crossref","unstructured":"Joshi B, Vijayan AS, Joshi BK (2012) Securing cloud computing environment against DDos attacks. In: 2012 international conference on computer communication and informatics (ICCCI)","DOI":"10.1109\/ICCCI.2012.6158817"},{"issue":"4","key":"61_CR21","doi-asserted-by":"publisher","first-page":"56","DOI":"10.1109\/SURV.2008.080406","volume":"10","author":"TTT Nguyen","year":"2008","unstructured":"Nguyen TTT, Armitage G (2008) A survey of techniques for internet traffic classification using machine learning. IEEE Commun Surv Tutorials 10(4):56\u201376","journal-title":"IEEE Commun Surv Tutorials"},{"issue":"18","key":"61_CR22","doi-asserted-by":"publisher","first-page":"3799","DOI":"10.1016\/j.ins.2007.03.025","volume":"177","author":"T Shon","year":"2007","unstructured":"Shon T, Moon J (2007) A hybrid machine learning approach to network anomaly detection. Inf Sci 177 (18):3799\u20133821","journal-title":"Inf Sci"},{"key":"61_CR23","unstructured":"Holmes G, Donkin A, Witten IH (1994) WEKA: a machine learning workbench. In: 1994 Proceedings of the 1994 Second Australian and New Zealand conference on intelligent information systems"},{"key":"61_CR24","doi-asserted-by":"publisher","first-page":"1697","DOI":"10.1007\/s00500-014-1250-8","volume":"18","author":"J Choi","year":"2014","unstructured":"Choi J, Choi C, Ko B, Kim P (2014) A method of DDos attack detection using HTTP packet pattern and rule engine in cloud computing environment. Soft Comput 18:1697\u20131703. \n                    https:\/\/code.google.com\/p\/httpflooder\/wiki\/Usage","journal-title":"Soft Comput"},{"key":"61_CR25","doi-asserted-by":"publisher","first-page":"1069","DOI":"10.1002\/cpe.3272 https:\/\/doi.org\/10.1002\/cpe.3272","volume":"27","author":"N Ezzati-Jivan","year":"2015","unstructured":"Ezzati-Jivan N, Dagenais MR (2015) Cube data model for multilevel statistics computation of live execution traces. Concurrency Computat Pract Exper 27:1069\u20131091. \n                    https:\/\/doi.org\/10.1002\/cpe.3272","journal-title":"Concurrency Computat Pract Exper"},{"issue":"8","key":"61_CR26","first-page":"1","volume":"5","author":"M Bogdanoski","year":"2013","unstructured":"Bogdanoski M, Suminoski T, Risteski A (2013) Analy-sis of the syn flood dos attack. International Journal of Computer Networkand Information Security (IJCNIS) 5(8):1\u201311","journal-title":"International Journal of Computer Networkand Information Security (IJCNIS)"},{"key":"61_CR27","doi-asserted-by":"crossref","unstructured":"Ceponis D, Goranin N (2018) Towards a robust method of datasetgeneration of malicious activity on a windows-based operating system foranomaly-based hids training","DOI":"10.22364\/bjmc.2018.6.3.01"},{"key":"61_CR28","unstructured":"Geetha K, Sreenath N (2014) Syn flooding attackidentification and analysis. In: 2014 International conference on information communication and embedded systems (ICICES), IEEE, pp 1\u20137"},{"key":"61_CR29","doi-asserted-by":"publisher","first-page":"e4069","DOI":"10.1002\/cpe.4069","volume":"29","author":"A Verge","year":"2017","unstructured":"Verge A, Ezzati-Jivan N, Dagenais MR (2017) Hardware-assisted software event tracing. Concurrency Computat: Pract Exper 29:e4069. \n                    https:\/\/doi.org\/10.1002\/cpe.4069","journal-title":"Concurrency Computat: Pract Exper"},{"key":"61_CR30","doi-asserted-by":"crossref","unstructured":"Nigam V, Jain S, Burse K (2014) Profile based scheme against ddosattack in wsn. In: 2014 Fourth international conference on communication systems and network technologies, pp 112\u2013116","DOI":"10.1109\/CSNT.2014.31"},{"key":"61_CR31","doi-asserted-by":"publisher","first-page":"e4068","DOI":"10.1002\/cpe.4068","volume":"29","author":"N Ezzati-Jivan","year":"2017","unstructured":"Ezzati-Jivan N, Dagenais M (2017) Multi-scale navigation of large trace data, a survey. Concurrency Computat: Pract Exper 29:e4068","journal-title":"Concurrency Computat: Pract Exper"},{"key":"61_CR32","unstructured":"Venkata Ramana V, Shilpa Choudary P, Dhone MB (2011) Analysis and study of application layer distributed denial of service attacks for popular websites. International Journal of Computer Science and Telecommunications, vol 2"},{"issue":"2","key":"61_CR33","doi-asserted-by":"publisher","first-page":"335","DOI":"10.1109\/JSYST.2012.2221998","volume":"7","author":"R Shea","year":"2013","unstructured":"Shea R, Liu J (2013) Performance of virtual machines under networked de-nial of service attacks: experiments and analysis. IEEE Syst J 7(2):335\u2013345","journal-title":"IEEE Syst J"},{"key":"61_CR34","unstructured":"Ye C, Zheng K (2011) Detection of application layer distributeddenial of service. In: 2011 International conference on computer science and network technology (ICCSNT), vol 1. IEEE, pp 310\u2013314"}],"container-title":["Journal of Hardware and Systems Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s41635-018-0061-2.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s41635-018-0061-2\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s41635-018-0061-2.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,1,25]],"date-time":"2020-01-25T19:23:51Z","timestamp":1579980231000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s41635-018-0061-2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,1,26]]},"references-count":34,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2019,6]]}},"alternative-id":["61"],"URL":"https:\/\/doi.org\/10.1007\/s41635-018-0061-2","relation":{},"ISSN":["2509-3428","2509-3436"],"issn-type":[{"type":"print","value":"2509-3428"},{"type":"electronic","value":"2509-3436"}],"subject":[],"published":{"date-parts":[[2019,1,26]]},"assertion":[{"value":"3 August 2018","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"13 December 2018","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"26 January 2019","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}