{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,20]],"date-time":"2025-09-20T19:09:58Z","timestamp":1758395398588,"version":"3.28.0"},"reference-count":21,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,10,18]],"date-time":"2023-10-18T00:00:00Z","timestamp":1697587200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,10,18]],"date-time":"2023-10-18T00:00:00Z","timestamp":1697587200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,10,18]]},"DOI":"10.1109\/ccci58712.2023.10290797","type":"proceedings-article","created":{"date-parts":[[2023,10,30]],"date-time":"2023-10-30T18:48:42Z","timestamp":1698691722000},"page":"1-10","source":"Crossref","is-referenced-by-count":2,"title":["Outlier-based Anomaly Detection in Firewall Logs"],"prefix":"10.1109","author":[{"given":"Xiu-Ru","family":"Liang","sequence":"first","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Huei-Tang","family":"Li","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chiung-Ying","family":"Huang","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wei-An","family":"Chen","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yi-Feng","family":"Chen","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhi-Jia","family":"Gao","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Meng-Wei","family":"Sun","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hao-Cheng","family":"Chia","sequence":"additional","affiliation":[{"name":"Acer Cyber Security Inc,Department of Development and Innovation Service,Taipei,Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"doi-asserted-by":"publisher","key":"ref13","DOI":"10.1145\/3371676.3371705"},{"doi-asserted-by":"publisher","key":"ref12","DOI":"10.1145\/3028842.3028867"},{"year":"2013","journal-title":"TrendMicro Inc Lateral movement How do threat actors move deeper into your network?","key":"ref15"},{"key":"ref14","first-page":"37","article-title":"Unsupervised Identification of Abnormal Nodes and Edges in Graphs","volume":"15","author":"senaratne","year":"2022","journal-title":"J Data and Information Quality"},{"doi-asserted-by":"publisher","key":"ref20","DOI":"10.1007\/978-3-319-14142-8_8"},{"key":"ref11","article-title":"A Flow-based Method for Abnormal Network Traffic Detection","author":"kim","year":"2004","journal-title":"2004 IEEE\/IFIP Network Operations and Management Symposium (IEEE Cat No 04CH37507) IEEE"},{"doi-asserted-by":"publisher","key":"ref10","DOI":"10.1109\/NOMS.2004.1317855"},{"doi-asserted-by":"publisher","key":"ref21","DOI":"10.1145\/375663.375668"},{"key":"ref2","article-title":"A Pattern-Matching Model for Intrusion Detection","author":"kumar","year":"1994","journal-title":"National Computer Security Conference"},{"doi-asserted-by":"publisher","key":"ref1","DOI":"10.1109\/TSE.1987.232894"},{"doi-asserted-by":"publisher","key":"ref17","DOI":"10.1109\/SRDS.2017.31"},{"doi-asserted-by":"publisher","key":"ref16","DOI":"10.1109\/SRDS.2016.014"},{"doi-asserted-by":"publisher","key":"ref19","DOI":"10.1145\/3339252.3339254"},{"doi-asserted-by":"publisher","key":"ref18","DOI":"10.1109\/TII.2019.2907754"},{"doi-asserted-by":"publisher","key":"ref8","DOI":"10.1109\/ACCESS.2020.2973023"},{"doi-asserted-by":"publisher","key":"ref7","DOI":"10.1145\/1281192.1281219"},{"doi-asserted-by":"publisher","key":"ref9","DOI":"10.1109\/ACCESS.2022.3197651"},{"doi-asserted-by":"publisher","key":"ref4","DOI":"10.1145\/586143.586146"},{"doi-asserted-by":"publisher","key":"ref3","DOI":"10.1145\/637201.637210"},{"doi-asserted-by":"publisher","key":"ref6","DOI":"10.1109\/TSP.2003.814797"},{"doi-asserted-by":"publisher","key":"ref5","DOI":"10.1145\/952589.952601"}],"event":{"name":"2023 International Conference on Communications, Computing, Cybersecurity, and Informatics (CCCI)","start":{"date-parts":[[2023,10,18]]},"location":"Chongqing, China","end":{"date-parts":[[2023,10,20]]}},"container-title":["2023 International Conference on Communications, Computing, Cybersecurity, and Informatics (CCCI)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10290136\/10290139\/10290797.pdf?arnumber=10290797","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,11,27]],"date-time":"2023-11-27T19:20:38Z","timestamp":1701112838000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10290797\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10,18]]},"references-count":21,"URL":"https:\/\/doi.org\/10.1109\/ccci58712.2023.10290797","relation":{},"subject":[],"published":{"date-parts":[[2023,10,18]]}}}