{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,7,25]],"date-time":"2025-07-25T10:16:59Z","timestamp":1753438619560,"version":"3.28.0"},"reference-count":19,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016,6]]},"DOI":"10.1109\/cybersecpods.2016.7502344","type":"proceedings-article","created":{"date-parts":[[2016,8,12]],"date-time":"2016-08-12T00:33:28Z","timestamp":1470962008000},"page":"1-8","source":"Crossref","is-referenced-by-count":5,"title":["Correlating intrusion detection alerts on bot malware infections using neural network"],"prefix":"10.1109","author":[{"given":"Egon","family":"Kidmose","sequence":"first","affiliation":[]},{"given":"Matija","family":"Stevanovic","sequence":"additional","affiliation":[]},{"given":"Jens Myrup","family":"Pedersen","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.2002.1004372"},{"key":"ref11","first-page":"244","article-title":"Alert correlation for extracting attack strategies","volume":"3","author":"zhu","year":"2006","journal-title":"International Journal of Network Security"},{"key":"ref12","first-page":"12","article-title":"Bothunter: Detecting malware infection through ids-driven dialog correlation","author":"gu","year":"2007","journal-title":"Proceedings of 16th USENIX Security Symposium USENIX Association"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1162\/neco.1997.9.8.1735"},{"key":"ref14","first-page":"139","article-title":"Botminer: Clustering analysis of network traffic for protocol-and structure-independent botnet detection","volume":"5","author":"gu","year":"2008","journal-title":"USENIX Security Symposium"},{"key":"ref15","first-page":"226","article-title":"A density-based algorithm for discovering clusters in large spatial databases with noise","volume":"96","author":"ester","year":"1996","journal-title":"KDD"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.05.011"},{"key":"ref17","first-page":"410","article-title":"V-measure: A conditional entropy-based external cluster evaluation measure","volume":"7","author":"rosenberg","year":"2007","journal-title":"EMNLP-CoNLL"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-04444-1_15"},{"key":"ref19","article-title":"Botsniffer: Detecting botnet command and control channels in network traffic","author":"gu","year":"2008","journal-title":"Proceedings of the 15th Annual Network and Distributed System Security Symposium (NDSS'08)"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653738"},{"key":"ref3","article-title":"Itu study on the financial aspects of network security: Malware and spam","author":"bauer","year":"2008","journal-title":"International Telecommunication Union Tech Rep"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1016\/S1389-1286(99)00112-7"},{"key":"ref5","first-page":"229","article-title":"Snort: Lightweight intrusion detection for networks","volume":"99","author":"roesch","year":"1999","journal-title":"LISA"},{"key":"ref8","article-title":"Fusing a heterogeneous alert stream into scenarios","volume":"13","author":"dain","year":"2001","journal-title":"Proceedings of the 2001 ACM Workshop on Data Mining for Security Applications"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/CNSM.2010.5691262"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2012.07.021"},{"key":"ref1","article-title":"Eurograbber online banking scam netted $47 million","author":"messmer","year":"2012","journal-title":"Network World"},{"key":"ref9","doi-asserted-by":"crossref","first-page":"54","DOI":"10.1007\/3-540-45474-8_4","article-title":"Probabilistic alert correlation","author":"valdes","year":"2001","journal-title":"Recent Advances in Intrusion Detection"}],"event":{"name":"2016 International Conference On Cyber Security And Protection Of Digital Services (Cyber Security)","start":{"date-parts":[[2016,6,13]]},"location":"London, United Kingdom","end":{"date-parts":[[2016,6,14]]}},"container-title":["2016 International Conference On Cyber Security And Protection Of Digital Services (Cyber Security)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/7502239\/7502334\/07502344.pdf?arnumber=7502344","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,6,24]],"date-time":"2017-06-24T20:33:05Z","timestamp":1498336385000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7502344\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,6]]},"references-count":19,"URL":"https:\/\/doi.org\/10.1109\/cybersecpods.2016.7502344","relation":{},"subject":[],"published":{"date-parts":[[2016,6]]}}}