{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,17]],"date-time":"2026-03-17T22:46:38Z","timestamp":1773787598979,"version":"3.50.1"},"reference-count":17,"publisher":"Emerald","issue":"3","license":[{"start":{"date-parts":[[2016,7,11]],"date-time":"2016-07-11T00:00:00Z","timestamp":1468195200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["ICS"],"published-print":{"date-parts":[[2016,7,11]]},"abstract":"\nPurpose<\/jats:title>\nThis paper aims to propose and evaluate an intrusion sensitivity (IS)-based approach regarding the detection of pollution attacks in collaborative intrusion detection networks (CIDNs) based on the observation that each intrusion detection system may have different levels of sensitivity in detecting specific types of intrusions.<\/jats:p>\n<\/jats:sec>\n\nDesign\/methodology\/approach<\/jats:title>\nIn this work, the authors first introduce their adopted CIDN framework and a newly designed aggregation component, which aims to collect feedback, aggregate alarms and identify important alarms. The authors then describe the details of trust computation and alarm aggregation.<\/jats:p>\n<\/jats:sec>\n\nFindings<\/jats:title>\nThe evaluation on the simulated pollution attacks indicates that the proposed approach is more effective in detecting malicious nodes and reducing the negative impact on alarm aggregation as compared to similar approaches.<\/jats:p>\n<\/jats:sec>\n\nResearch limitations\/implications<\/jats:title>\nMore efforts can be made in improving the mapping of the satisfaction level, enhancing the allocation, evaluation and update of IS and evaluating the trust models in a large-scale network.<\/jats:p>\n<\/jats:sec>\n\nPractical implications<\/jats:title>\nThis work investigates the effect of the proposed IS-based approach in defending against pollution attacks. The results would be of interest for security specialists in deciding whether to implement such a mechanism for enhancing CIDNs.<\/jats:p>\n<\/jats:sec>\n\nOriginality\/value<\/jats:title>\nThe experimental results demonstrate that the proposed approach is more effective in decreasing the trust values of malicious nodes and reducing the impact of pollution attacks on the accuracy of alarm aggregation as compare to similar approaches.<\/jats:p>\n<\/jats:sec>","DOI":"10.1108\/ics-12-2014-0077","type":"journal-article","created":{"date-parts":[[2016,7,6]],"date-time":"2016-07-06T07:28:41Z","timestamp":1467790121000},"page":"265-276","source":"Crossref","is-referenced-by-count":40,"title":["Enhancing collaborative intrusion detection networks using intrusion sensitivity in detecting pollution attacks"],"prefix":"10.1108","volume":"24","author":[{"given":"Wenjuan","family":"Li","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Weizhi","family":"Meng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"issue":"8","key":"key2020121422174581700_ref001","first-page":"1920","article-title":"The system design of a node of P2P networks for intrusion detection","volume":"8","year":"2013","journal-title":"Journal of Networks"},{"key":"key2020121422174581700_ref002","first-page":"692","article-title":"A trust- aware, P2P-based overlay for intrusion detection","year":"2006"},{"key":"key2020121422174581700_ref003","first-page":"109","article-title":"Trust management for host-based collaborative intrusion detection","year":"2008"},{"key":"key2020121422174581700_ref004","first-page":"33","article-title":"Robust and scalable trust management for collaborative intrusion detection","year":"2009"},{"key":"key2020121422174581700_ref005","first-page":"259","article-title":"Detecting anomalous and unknown intrusions against programs","year":"1998"},{"issue":"3","key":"key2020121422174581700_ref006","doi-asserted-by":"crossref","first-page":"146","DOI":"10.1109\/MCOM.2012.6163595","article-title":"Statistical analysis of false positives and false negatives from real traffic with intrusion detection\/prevention systems","volume":"50","year":"2012","journal-title":"IEEE Communications Magazine"},{"issue":"1","key":"key2020121422174581700_ref007","doi-asserted-by":"crossref","first-page":"41","DOI":"10.1109\/TDSC.2007.9","article-title":"Hybrid intrusion detection with weighted signature generation over anomalous internet episodes","volume":"4","year":"2007","journal-title":"IEEE Transactions on Dependable and Secure Computing"},{"key":"key2020121422174581700_ref008","first-page":"226","article-title":"Indra: a peer-to-peer approach to network intrusion detection and prevention","volume-title":"Proceedings of the 12th IEEE International Workshops on Enabling TechnologiesWashington, DC","year":"2003"},{"key":"key2020121422174581700_ref009","first-page":"518","article-title":"Enhancing trust evaluation using intrusion sensitivity in collaborative intrusion detection networks: feasibility and challenges","year":"2013"},{"key":"key2020121422174581700_ref010","first-page":"61","article-title":"Design of intrusion sensitivity-based trust management model for collaborative intrusion detection networks","year":"2014"},{"issue":"10","key":"key2020121422174581700_ref011","doi-asserted-by":"crossref","first-page":"1944","DOI":"10.1109\/TPDS.2012.26","article-title":"Scalable feedback aggregating (SFA) overlay for large-scale P2P trust management","volume":"23","year":"2012","journal-title":"IEEE Transactions on Parallel and Distributed Systems"},{"key":"key2020121422174581700_ref012","first-page":"115","article-title":"Towards scalable and robust distributed intrusion alert fusion with good load balancing","year":"2006"},{"key":"key2020121422174581700_ref013","first-page":"1","article-title":"Botgrep: finding P2P bots with structured graph analysis","year":"2010"},{"key":"key2020121422174581700_ref014","first-page":"229","article-title":"Snort: lightweight intrusion detection for networks","year":"1999"},{"key":"key2020121422174581700_ref015","first-page":"800","volume-title":"Guide to Intrusion Detection and Prevention Systems (IDPS)","year":"2007"},{"key":"key2020121422174581700_ref016","unstructured":"Symantec Corp (2012), \u201cInternet Security Threat Report\u201d, Vol. 16, available at: www.symantec.com\/business\/threatreport\/index.jsp"},{"key":"key2020121422174581700_ref017","first-page":"234","article-title":"Collaborative intrusion detection system (CIDS): a framework for accurate and efficient IDS","year":"2003"}],"container-title":["Information & Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/www.emeraldinsight.com\/doi\/full-xml\/10.1108\/ICS-12-2014-0077","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-12-2014-0077\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-12-2014-0077\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,25]],"date-time":"2025-07-25T01:23:24Z","timestamp":1753406604000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/24\/3\/265-276\/106497"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,7,11]]},"references-count":17,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2016,7,11]]}},"alternative-id":["10.1108\/ICS-12-2014-0077"],"URL":"https:\/\/doi.org\/10.1108\/ics-12-2014-0077","relation":{},"ISSN":["2056-4961"],"issn-type":[{"value":"2056-4961","type":"print"}],"subject":[],"published":{"date-parts":[[2016,7,11]]}}}