{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,3]],"date-time":"2024-09-03T20:59:15Z","timestamp":1725397155342},"reference-count":16,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011,11]]},"DOI":"10.1109\/milcom.2011.6127462","type":"proceedings-article","created":{"date-parts":[[2012,3,1]],"date-time":"2012-03-01T11:34:31Z","timestamp":1330601671000},"page":"1195-1200","source":"Crossref","is-referenced-by-count":0,"title":["A distributed network-sensor based intrusion detection framework in enterprise networks"],"prefix":"10.1109","author":[{"family":"Difan Zhang","sequence":"first","affiliation":[]},{"given":"Wei","family":"Yu","sequence":"additional","affiliation":[]},{"given":"Rommie","family":"Hardy","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"15","article-title":"Mining anomalies using traffic feature distribution","author":"lakhina","year":"0","journal-title":"ACM SIGCOMM Philadelphia PA August 2005"},{"key":"16","article-title":"Polymorphic blending attacks","author":"perdisci","year":"0","journal-title":"Proceedings of the 15-th USENIX Security Symposium (SECURITY) Vancouver B C August 2006"},{"key":"13","article-title":"Botnet detection: Countering the largest security threat","author":"strayer","year":"2008","journal-title":"Book Chapter - Botnet Detection Based on Network Behavior"},{"key":"14","first-page":"59","author":"ramsbrock","year":"2008","journal-title":"A First Step Towards Live Botmaster Traceback"},{"key":"11","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.12"},{"key":"12","article-title":"Jackstraws: Picking command and control connections from bot traffic","author":"jacob","year":"0","journal-title":"Proceedings of the 13th USENIX Security Symposium (SECURITY) San Francisco August 2011"},{"key":"3","doi-asserted-by":"publisher","DOI":"10.1109\/TPDS.2009.161"},{"key":"2","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653666"},{"key":"1","article-title":"Network centric warfare","author":"alberts","year":"2010","journal-title":"CCRP"},{"key":"10","doi-asserted-by":"publisher","DOI":"10.1145\/1180405.1180412"},{"key":"7","doi-asserted-by":"publisher","DOI":"10.1109\/MSECP.2003.1219056"},{"key":"6","doi-asserted-by":"publisher","DOI":"10.17487\/rfc2616"},{"key":"5","doi-asserted-by":"publisher","DOI":"10.1145\/1014052.1014105"},{"key":"4","article-title":"Exploiting temporal persistence to detect covert botnet channels","author":"giroire","year":"0","journal-title":"Proceeding of RAID 2009"},{"journal-title":"Binary Text Scan","year":"0","key":"9"},{"journal-title":"Was Stuxnet Built to Attack Iran's Nuclear Program?","year":"2010","author":"mcmillan","key":"8"}],"event":{"name":"MILCOM 2011 - 2011 IEEE Military Communications Conference","start":{"date-parts":[[2011,11,7]]},"location":"Baltimore, MD, USA","end":{"date-parts":[[2011,11,10]]}},"container-title":["2011 - MILCOM 2011 Military Communications Conference"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx5\/6111660\/6127424\/06127462.pdf?arnumber=6127462","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,3,21]],"date-time":"2017-03-21T10:40:01Z","timestamp":1490092801000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/6127462\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,11]]},"references-count":16,"URL":"https:\/\/doi.org\/10.1109\/milcom.2011.6127462","relation":{},"subject":[],"published":{"date-parts":[[2011,11]]}}}