{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,12]],"date-time":"2026-03-12T15:41:57Z","timestamp":1773330117396,"version":"3.50.1"},"reference-count":19,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1109\/csac.2003.1254328","type":"proceedings-article","created":{"date-parts":[[2004,7,8]],"date-time":"2004-07-08T16:05:44Z","timestamp":1089302744000},"page":"234-244","source":"Crossref","is-referenced-by-count":10,"title":["Collaborative intrusion detection system (CIDS): framework for accurate and efficient IDS"],"prefix":"10.1109","author":[{"family":"Yu-Sung Wu","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"family":"Bingrui Foo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"family":"Yongguo Mei","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"S.","family":"Bagchi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref10","article-title":"SourceForge.net: Project Info - The libpcap project","year":"0"},{"key":"ref11","article-title":"Bayes Net Toolbox for Matlab","author":"murphy","year":"0"},{"key":"ref12","article-title":"Tutorial on Bayesian Network Toolbox","author":"murphy","year":"0"},{"key":"ref13","first-page":"245","article-title":"Constructing Attack Scenarios through Correlation of Intrusion Alerts","author":"peng","year":"2002","journal-title":"Proceedings of the 9th ACM Conference on Computer & Communications Security (CCS 2002)"},{"key":"ref14","doi-asserted-by":"crossref","first-page":"633","DOI":"10.1109\/32.815323","article-title":"Experimenting with Quantitative Evaluation Tools for Monitoring Operational Security","volume":"25","author":"rodolphe","year":"1999","journal-title":"Journal of Software Engineering"},{"key":"ref15","article-title":"Snort - Lightweight Intrusion Detection for Networks","author":"roesch","year":"1999","journal-title":"Proc Usenix Lisa 99 Conf"},{"key":"ref16","article-title":"Apache OpenSSL Attack","year":"0"},{"key":"ref17","doi-asserted-by":"crossref","first-page":"105","DOI":"10.3233\/JCS-2002-101-205","article-title":"Practical Automated Detection of Stealthy Portscans","volume":"10","author":"staniford","year":"2002","journal-title":"Computers and Security Journal"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/366173.366187"},{"key":"ref19","doi-asserted-by":"crossref","first-page":"54","DOI":"10.1007\/3-540-45474-8_4","article-title":"Probabilistic alert correlation","author":"valdes","year":"2001","journal-title":"Proc of the 4th Int'l Symposium on Recent Advances in Intrusion Detection (RAID 2001)"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.2002.1004372"},{"key":"ref3","doi-asserted-by":"crossref","DOI":"10.1007\/3-540-39945-3_13","article-title":"LAMBDA: A Language to Model a Database for Detection of Attacks","author":"cuppens","year":"2000","journal-title":"Proc of the Third International Workshop on Recent Advances in Intrusion Detection (RAID 2000)"},{"key":"ref6","first-page":"177","article-title":"Models and Tools for Quantitative Assessment of Operational Security","author":"dacier","year":"1996","journal-title":"12th International Information Security Conference (IFIP\/SEC'96)"},{"key":"ref5","doi-asserted-by":"crossref","first-page":"319","DOI":"10.1007\/3-540-58618-0_72","article-title":"The Privilege Graph: an Extension to the Typed Access Matrix Model","volume":"875","author":"dacier","year":"1994","journal-title":"Lecture Notes in Computer Science"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1016\/S0140-3664(02)00037-3"},{"key":"ref7","first-page":"1","article-title":"Fusing a Heterogeneous Alert Stream into Scenarios","author":"dain","year":"2001","journal-title":"Proceeding of the 2001 ACM Workshop on Data Mining for Security Applications"},{"key":"ref2","article-title":"Apache Chunk Buffer Overflow Attack","year":"0"},{"key":"ref1","article-title":"Limiting Uncertainty in Intrusion Response","author":"carver","year":"2001","journal-title":"Proceedings of the 2001 IEEE Workshop on Information Assurance and Security United States Military Academy"},{"key":"ref9","article-title":"Avaya Labs Research - Projects: Libsafe","year":"0"}],"event":{"name":"19th Annual Computer Security Applications Conference, 2003.","location":"Las Vegas, Nevada, USA"},"container-title":["19th Annual Computer Security Applications Conference, 2003. Proceedings."],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx5\/8882\/28060\/01254328.pdf?arnumber=1254328","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2018,6,11]],"date-time":"2018-06-11T14:16:57Z","timestamp":1528726617000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/1254328\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"references-count":19,"URL":"https:\/\/doi.org\/10.1109\/csac.2003.1254328","relation":{},"subject":[]}}