{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:40:15Z","timestamp":1750308015785,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":19,"publisher":"ACM","license":[{"start":{"date-parts":[[2006,10,30]],"date-time":"2006-10-30T00:00:00Z","timestamp":1162166400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2006,10,30]]},"DOI":"10.1145\/1501434.1501455","type":"proceedings-article","created":{"date-parts":[[2009,2,4]],"date-time":"2009-02-04T13:02:04Z","timestamp":1233752524000},"page":"1-8","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Detecting low-profile scans in TCP anomaly event data"],"prefix":"10.1145","author":[{"given":"J.","family":"Treurniet","sequence":"first","affiliation":[{"name":"Defence R&D Canada -- Ottawa, Ottawa, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2006,10,30]]},"reference":[{"key":"e_1_3_2_1_1_1","first-page":"85","volume-title":"4th International Symposium, RAID 2001","author":"Debar H.","year":"2001"},{"key":"e_1_3_2_1_2_1","unstructured":"L. Ertoz E. Eilertson A. Lazarevic P. Tan J. Srivastava V. Kumar and P. Dokas. The MINDS - minnesota intrusion detection system. In H. Kargupta A. Joshi K. Sivakumar and Y. Yesha editors Data Mining: Next Generation Challenges and Future Directions chapter 11 pages 199--218. MIT\/AAAI Press 2004.  L. Ertoz E. Eilertson A. Lazarevic P. Tan J. Srivastava V. Kumar and P. Dokas. The MINDS - minnesota intrusion detection system. In H. Kargupta A. Joshi K. Sivakumar and Y. Yesha editors Data Mining: Next Generation Challenges and Future Directions chapter 11 pages 199--218. MIT\/AAAI Press 2004."},{"key":"e_1_3_2_1_3_1","unstructured":"Fyodor. Nmap (online) 2003. http:\/\/www.insecure.org\/nmap.  Fyodor. Nmap (online) 2003. http:\/\/www.insecure.org\/nmap."},{"volume-title":"Dalhousie University","year":"2006","author":"Gates C.","key":"e_1_3_2_1_4_1"},{"key":"e_1_3_2_1_5_1","unstructured":"M. Gr\u00e9goire and J. H. Lefebvre. The network traffic analysis toolbox. Technical report Defence R&D Canada -- Ottawa in preparation.  M. Gr\u00e9goire and J. H. Lefebvre. The network traffic analysis toolbox. Technical report Defence R&D Canada -- Ottawa in preparation."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/RISP.1990.63859"},{"volume-title":"New York","year":"1968","author":"Hennie F.","key":"e_1_3_2_1_8_1"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/382912.382923"},{"key":"e_1_3_2_1_11_1","unstructured":"S. Northcutt V. Irwin and B. Ralph. SHADOW (Online) 1998. Naval Surface Warfare Center Dahlgren Lab http:\/\/www.nswc.navy.mil\/ISSEC\/CID.  S. Northcutt V. Irwin and B. Ralph. SHADOW (Online) 1998. Naval Surface Warfare Center Dahlgren Lab http:\/\/www.nswc.navy.mil\/ISSEC\/CID."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/263105.263160"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/263105.263155"},{"key":"e_1_3_2_1_14_1","unstructured":"J. Postel. RFC 793: Transmission control protocol (online) 1981. http:\/\/www.rfc-editor.org\/rfc\/rfc793.txt.  J. Postel. RFC 793: Transmission control protocol (online) 1981. http:\/\/www.rfc-editor.org\/rfc\/rfc793.txt."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/DISCEX.2003.1194879"},{"key":"e_1_3_2_1_16_1","unstructured":"M. Roesch. Snort (online) 2003. http:\/\/www.snort.org.  M. Roesch. Snort (online) 2003. http:\/\/www.snort.org."},{"key":"e_1_3_2_1_17_1","unstructured":"savage@apostols.org. Queso (online) 2006. http:\/\/ftp.-cerias.purdue.edu\/pub\/tools\/unix\/scanners\/queso.  savage@apostols.org. Queso (online) 2006. http:\/\/ftp.-cerias.purdue.edu\/pub\/tools\/unix\/scanners\/queso."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.5555\/597917.597922"},{"volume-title":"Addison Wesley","year":"1994","author":"Stevens W. R.","key":"e_1_3_2_1_19_1"},{"volume-title":"Workshop on Statistical and Machine Learning Techniques in Computer Intrusion Detection","year":"2002","author":"Streilein W.","key":"e_1_3_2_1_20_1"},{"key":"e_1_3_2_1_21_1","unstructured":"Symantec Corporation. Symantec security response (online) 2006. http:\/\/www.symantec.com\/avcenter.  Symantec Corporation. Symantec security response (online) 2006. http:\/\/www.symantec.com\/avcenter."}],"event":{"name":"PST06: International Conference on Privacy, Security and Trust","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Markham Ontario Canada","acronym":"PST06"},"container-title":["Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1501434.1501455","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1501434.1501455","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T15:06:40Z","timestamp":1750259200000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1501434.1501455"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006,10,30]]},"references-count":19,"alternative-id":["10.1145\/1501434.1501455","10.1145\/1501434"],"URL":"https:\/\/doi.org\/10.1145\/1501434.1501455","relation":{},"subject":[],"published":{"date-parts":[[2006,10,30]]},"assertion":[{"value":"2006-10-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}