{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2023,8,22]],"date-time":"2023-08-22T14:36:22Z","timestamp":1692714982161},"reference-count":15,"publisher":"Elsevier BV","issue":"7","license":[{"start":{"date-parts":[[1995,1,1]],"date-time":"1995-01-01T00:00:00Z","timestamp":788918400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Computers & Security"],"published-print":{"date-parts":[[1995,1]]},"DOI":"10.1016\/0167-4048(95)00017-8","type":"journal-article","created":{"date-parts":[[2002,7,26]],"date-time":"2002-07-26T03:00:13Z","timestamp":1027652413000},"page":"621-631","source":"Crossref","is-referenced-by-count":12,"title":["Setting optimal intrusion-detection thresholds"],"prefix":"10.1016","volume":"14","author":[{"given":"B.C.","family":"Soh","sequence":"first","affiliation":[]},{"given":"T.S.","family":"Dillon","sequence":"additional","affiliation":[]}],"member":"78","reference":[{"key":"10.1016\/0167-4048(95)00017-8_BIB1","doi-asserted-by":"crossref","first-page":"886","DOI":"10.1109\/32.241771","article-title":"Statistical foundations of audit trail analysis for the detection of computer misuse","volume":"SE-19","author":"Helman","year":"1993","journal-title":"IEEE Trans. on Software Engg."},{"key":"10.1016\/0167-4048(95)00017-8_BIB2","doi-asserted-by":"crossref","first-page":"222","DOI":"10.1109\/TSE.1987.232894","article-title":"An intrusion-detection model","volume":"SE-13","author":"Denning","year":"1987","journal-title":"IEEE Trans. on Software Engg."},{"key":"10.1016\/0167-4048(95)00017-8_BIB3","doi-asserted-by":"crossref","first-page":"484","DOI":"10.1145\/42411.42412","article-title":"Stalking the wily hacker","volume":"31","author":"Stoll","year":"1988","journal-title":"Communications of the ACM"},{"key":"10.1016\/0167-4048(95)00017-8_BIB4","doi-asserted-by":"crossref","first-page":"347","DOI":"10.1016\/0167-4048(92)90175-Q","article-title":"Intrusion detection: its role and validation","volume":"11","author":"Liepins","year":"1992","journal-title":"Computers & Security"},{"key":"10.1016\/0167-4048(95)00017-8_BIB5","article-title":"Trusted Computer System Evaluation Criteria","author":"DoD (U.S. Dept. of Defense)","year":"1985","journal-title":"DoD5200.28-STD"},{"key":"10.1016\/0167-4048(95)00017-8_BIB6","series-title":"The 7th Intrusion Detection Workshop","article-title":"Research, standards and policy directions for network auditing","author":"Schaen","year":"1991"},{"key":"10.1016\/0167-4048(95)00017-8_BIB7","article-title":"A real-time intrusion-detection expert system (IDES)","author":"Lunt","year":"1992"},{"key":"10.1016\/0167-4048(95)00017-8_BIB8","series-title":"Proc. 1990 IEEE Symp. on Research in Security and Privacy","first-page":"296","article-title":"A network security monitor","author":"Heberlein","year":"1990"},{"key":"10.1016\/0167-4048(95)00017-8_BIB9","series-title":"Proc. 11th National Computer Security Conference","article-title":"Automated audit trail analysis and intrusion detection: a survey","author":"Lunt","year":"1988"},{"key":"10.1016\/0167-4048(95)00017-8_BIB10","article-title":"The Internet Worm Incident","author":"Spafford","year":"1991"},{"key":"10.1016\/0167-4048(95)00017-8_BIB11","series-title":"Practical UNIX Security","author":"Garfinkel","year":"1992"},{"key":"10.1016\/0167-4048(95)00017-8_BIB12","series-title":"Computers under Attack: Intruders, Worms, and Viruses","first-page":"150","article-title":"The West German hacker incident and other intrusions","author":"Mandell","year":"1990"},{"key":"10.1016\/0167-4048(95)00017-8_BIB13","doi-asserted-by":"crossref","first-page":"700","DOI":"10.1145\/63526.63529","article-title":"Password cracking: a game of wits","volume":"32","author":"Seeley","year":"1989","journal-title":"Communications of the ACM"},{"key":"10.1016\/0167-4048(95)00017-8_BIB14","series-title":"Probability and Statistics with Reliability, Queuing, and Computer Science Applications","author":"Trivedi","year":"1982"},{"key":"10.1016\/0167-4048(95)00017-8_BIB15","series-title":"Queueing Systems, Volume 1: Theory","author":"Kleinrock","year":"1975"}],"container-title":["Computers & Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:0167404895000178?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:0167404895000178?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2019,4,14]],"date-time":"2019-04-14T01:27:29Z","timestamp":1555205249000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/0167404895000178"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[1995,1]]},"references-count":15,"journal-issue":{"issue":"7","published-print":{"date-parts":[[1995,1]]}},"alternative-id":["0167404895000178"],"URL":"https:\/\/doi.org\/10.1016\/0167-4048(95)00017-8","relation":{},"ISSN":["0167-4048"],"issn-type":[{"value":"0167-4048","type":"print"}],"subject":[],"published":{"date-parts":[[1995,1]]}}}