{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,11]],"date-time":"2026-02-11T02:07:21Z","timestamp":1770775641611,"version":"3.50.0"},"reference-count":145,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2022,10,14]],"date-time":"2022-10-14T00:00:00Z","timestamp":1665705600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2022,10,14]],"date-time":"2022-10-14T00:00:00Z","timestamp":1665705600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Cloud Comp"],"abstract":"<jats:title>Abstract<\/jats:title><jats:p>A datacentre stores information and manages data access in fast and reliable manner. Failure of datacentre operation is not an option and can be catastrophic. Internet of things (IoT) devices in datacentre can automate management tasks and reduce human intervention and error. IoT devices can be used to manage many datacentre routine tasks such as monitoring physical infrastructure, updating software and configuration, monitoring network traffic, and automating alerting reports to respective authorities. The physical and cyber security of the datacentre can be handled by IoT technology by intrusion detection methods. By 2025, more than 25 billion things will be connected to the internet network, therefore massive data will be generated by different heterogeneous sources, and powerful processing engines such as complex event processing (CEP) are needed to handle such a fast and continuous stream of big data. The integration of machine learning (ML) and deep learning (DL) can enhance CEP by introducing new features such as automated rule extraction and self-healing mechanism. This study aims to provide an overview of CEP, as well as its features and potential for integration with IoT applications and ML\/DL techniques. We provide a review of recent research works to highlight the capability and applicability of CEP technology to monitor physical facilities and cyber security in detail. This review also highlights several issues and challenges, and provides suggestions for future research. The highlighted insights and recommendations in this paper could raise efforts toward the development of future datacentres based on CEP technology.<\/jats:p>","DOI":"10.1186\/s13677-022-00338-x","type":"journal-article","created":{"date-parts":[[2022,10,14]],"date-time":"2022-10-14T10:02:59Z","timestamp":1665741779000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":22,"title":["Complex event processing for physical and cyber security in datacentres - recent progress, challenges and recommendations"],"prefix":"10.1186","volume":"11","author":[{"given":"Khaled A.","family":"Alaghbari","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohamad Hanif Md","family":"Saad","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Aini","family":"Hussain","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Muhammad Raisul","family":"Alam","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2022,10,14]]},"reference":[{"key":"338_CR1","doi-asserted-by":"publisher","first-page":"5622","DOI":"10.1109\/ACCESS.2019.2963061","volume":"8","author":"A Medina-Santiago","year":"2020","unstructured":"Medina-Santiago A et al (2020) Adaptive model IoT for monitoring in data centers. IEEE Access 8:5622\u20135634. https:\/\/doi.org\/10.1109\/ACCESS.2019.2963061","journal-title":"IEEE Access"},{"key":"338_CR2","doi-asserted-by":"publisher","first-page":"738","DOI":"10.1109\/GUCON.2018.8674939","volume-title":"2018 International Conference on Computing, Power and Communication Technologies (GUCON)","author":"G Mehta","year":"2018","unstructured":"Mehta G, Mittra G, Yadav VK (2018) Application of IoT to optimize data center operations. In: 2018 International Conference on Computing, Power and Communication Technologies (GUCON), pp 738\u2013742. https:\/\/doi.org\/10.1109\/GUCON.2018.8674939"},{"key":"338_CR3","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/IEMCON.2016.7746251","volume-title":"2016 IEEE 7th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON)","author":"A Roy","year":"2016","unstructured":"Roy A et al (2016) Energy-efficient data centers and smart temperature control system with IoT sensing. In: 2016 IEEE 7th Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON), pp 1\u20134. https:\/\/doi.org\/10.1109\/IEMCON.2016.7746251"},{"key":"338_CR4","doi-asserted-by":"publisher","first-page":"21","DOI":"10.1186\/s13677-018-0123-6","volume":"7","author":"M Elrawy","year":"2018","unstructured":"Elrawy M, Awad A, Hamed H (2018) Intrusion detection systems for IoT-based smart environments: a survey. J Cloud Comp 7:21. https:\/\/doi.org\/10.1186\/s13677-018-0123-6","journal-title":"J Cloud Comp"},{"key":"338_CR5","doi-asserted-by":"publisher","first-page":"28219","DOI":"10.1109\/ACCESS.2022.3157726","volume":"10","author":"KA Alaghbari","year":"2022","unstructured":"Alaghbari KA, Saad MHM, Hussain A, Alam MR (2022) Activities recognition, anomaly detection and next activity prediction based on neural networks in smart homes. IEEE Access 10:28219\u201328232. https:\/\/doi.org\/10.1109\/ACCESS.2022.3157726","journal-title":"IEEE Access"},{"issue":"1","key":"338_CR6","doi-asserted-by":"publisher","first-page":"44","DOI":"10.1109\/MSEC.2020.3013207","volume":"19","author":"G Amit","year":"2021","unstructured":"Amit G, Shabtai A, Elovici Y (2021) A self-healing mechanism for internet of things devices. IEEE Secur Priv 19(1):44\u201353. https:\/\/doi.org\/10.1109\/MSEC.2020.3013207","journal-title":"IEEE Secur Priv"},{"issue":"1","key":"338_CR7","first-page":"871","volume":"4","author":"AP Singh","year":"2007","unstructured":"Singh AP, Nigam S, Gupta NK (2007) A study of next generation wireless network 6G. IntJ Innov Res Comput Commun Eng 4(1):871\u2013874","journal-title":"IntJ Innov Res Comput Commun Eng"},{"key":"338_CR8","volume-title":"Rule representation, interchange and reasoning on the web. RuleML 2008. Lecture notes in computer science","author":"D Luckham","year":"2008","unstructured":"Luckham D (2008) The power of events: an introduction to complex event processing in distributed enterprise systems. In: Bassiliades N, Governatori G, Paschke A (eds) Rule representation, interchange and reasoning on the web. RuleML 2008. Lecture notes in computer science, vol 5321. Springer, Berlin, Heidelberg"},{"key":"338_CR9","volume-title":"Event processing for business: organizing the real-time enterprise","author":"D Luckham","year":"2011","unstructured":"Luckham D (2011) Event processing for business: organizing the real-time enterprise. Wiley ISBN: 978-0-470-53485-4"},{"issue":"1","key":"338_CR10","first-page":"66","volume":"6","author":"S Zeuch","year":"2020","unstructured":"Zeuch S et al (2020) Complex analytics beyond the cloud. Open J Internet Things 6(1):66\u201381","journal-title":"Open J Internet Things"},{"key":"338_CR11","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.envsoft.2015.12.015","volume":"78","author":"C Granell","year":"2016","unstructured":"Granell C, Havlik D, Schade S, Sabeur Z, Delaney C, Pielorz J et al (2016) Future Internet technologies for environmental applications. Environ Model Softw 78:1\u201315. https:\/\/doi.org\/10.1016\/j.envsoft.2015.12.015","journal-title":"Environ Model Softw"},{"key":"338_CR12","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.envsoft.2019.02.015","volume":"116","author":"AY Sun","year":"2019","unstructured":"Sun AY, Zhong Z, Jeong H, Yang Q (2019) Building complex event processing capability for intelligent environmental monitoring. Environ Model Softw 116:1\u20136. https:\/\/doi.org\/10.1016\/j.envsoft.2019.02.015","journal-title":"Environ Model Softw"},{"issue":"9","key":"338_CR13","doi-asserted-by":"publisher","first-page":"811","DOI":"10.1016\/j.compind.2011.08.003","volume":"62","author":"Y Huang","year":"2011","unstructured":"Huang Y, Williams BC, Zheng L (2011) Reactive model-based monitoring in RFID-enabled manufacturing. Comput Ind 62(9):811\u2013819. https:\/\/doi.org\/10.1016\/j.compind.2011.08.003","journal-title":"Comput Ind"},{"key":"338_CR14","doi-asserted-by":"publisher","first-page":"203","DOI":"10.1109\/Cybermatics_2018.2018.00064","volume-title":"Proc. IEEE Int. Conf. Internet Things (ICIOT)","author":"A Dhillon","year":"2018","unstructured":"Dhillon A, Majumdar S, St-Hilaire M, El-Haraki A (2018) MCEP: a mobile device based complex event processing system for remote healthcare. In: Proc. IEEE Int. Conf. Internet Things (ICIOT), pp 203\u2013210. https:\/\/doi.org\/10.1109\/Cybermatics_2018.2018.00064"},{"key":"338_CR15","doi-asserted-by":"publisher","first-page":"101865","DOI":"10.1109\/ACCESS.2019.2930313","volume":"7","author":"L Lan","year":"2019","unstructured":"Lan L, Shi R, Wang B, Zhang L, Jiang N (2019) A universal complex event processing mechanism based on edge computing for internet of things real-time monitoring. IEEE Access 7:101865\u2013101878. https:\/\/doi.org\/10.1109\/ACCESS.2019.2930313","journal-title":"IEEE Access"},{"issue":"2","key":"338_CR16","doi-asserted-by":"publisher","first-page":"101","DOI":"10.3233\/AIS-200555","volume":"12","author":"MHM Saad","year":"2020","unstructured":"Saad MHM, Sarker MR, Hussain A (2020) Application of complex event processing approaches for intelligent building development: a review. J Ambient Intell Smart Environ 12(2):101\u2013124. https:\/\/doi.org\/10.3233\/AIS-200555","journal-title":"J Ambient Intell Smart Environ"},{"key":"338_CR17","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/INFRKM.2018.8464787","volume-title":"2018 Fourth International Conference on Information Retrieval and Knowledge Management (CAMP)","author":"K Tawsif","year":"2018","unstructured":"Tawsif K, Hossen J, Raja JE, Jesmeen MZH, Arif EMH (2018) A review on complex event processing systems for big data. In: 2018 Fourth International Conference on Information Retrieval and Knowledge Management (CAMP), pp 1\u20136. https:\/\/doi.org\/10.1109\/INFRKM.2018.8464787"},{"key":"338_CR18","doi-asserted-by":"publisher","first-page":"1","DOI":"10.18417\/emisa.15.19\/INFRKM.2018.8464787","volume":"15","author":"J Wanner","year":"2019","unstructured":"Wanner J, Wissuchek C, Janiesch C (2019) Machine learning and complex event processing. A review of real-time data analytics for the industrial internet of things. Enterp Model Inf Syst Arch 15:1. Berlin: Gesellschaft f\u00fcr Informatik e.V.. (S. 1-27). https:\/\/doi.org\/10.18417\/emisa.15.19\/INFRKM.2018.8464787","journal-title":"Enterp Model Inf Syst Arch"},{"issue":"3","key":"338_CR19","doi-asserted-by":"publisher","first-page":"1646","DOI":"10.1109\/COMST.2020.2988293","volume":"22","author":"MA Al-Garadi","year":"2020","unstructured":"Al-Garadi MA, Mohamed A, Al-Ali AK, Du X, Ali I, Guizani M (2020) A survey of machine and deep learning methods for internet of things (IoT) security. IEEE Commun Surv Tutor 22(3):1646\u20131685. https:\/\/doi.org\/10.1109\/COMST.2020.2988293","journal-title":"IEEE Commun Surv Tutor"},{"key":"338_CR20","doi-asserted-by":"publisher","first-page":"59353","DOI":"10.1109\/ACCESS.2021.3073408","volume":"9","author":"N Mishra","year":"2021","unstructured":"Mishra N, Pandya S (2021) Internet of things applications, security challenges, attacks, intrusion detection, and future visions: a systematic review. IEEE Access 9:59353\u201359377. https:\/\/doi.org\/10.1109\/ACCESS.2021.3073408","journal-title":"IEEE Access"},{"issue":"3","key":"338_CR21","doi-asserted-by":"publisher","first-page":"2671","DOI":"10.1109\/COMST.2019.2896380","volume":"21","author":"N Chaabouni","year":"2019","unstructured":"Chaabouni N, Mosbah M, Zemmari A, Sauvignac C, Faruki P (2019) Network intrusion detection for IoT security based on learning techniques. IEEE Commun Surv Tutor 21(3):2671\u20132701. https:\/\/doi.org\/10.1109\/COMST.2019.2896380","journal-title":"IEEE Commun Surv Tutor"},{"key":"338_CR22","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1186\/s42400-019-0038-7","volume":"2","author":"A Khraisat","year":"2019","unstructured":"Khraisat A, Gondal I, Vamplew P et al (2019) Survey of intrusion detection systems: techniques, datasets and challenges. Cybersecur 2:20. https:\/\/doi.org\/10.1186\/s42400-019-0038-7","journal-title":"Cybersecur"},{"key":"338_CR23","unstructured":"Arora S, Gambheer R, Vohra M (2021) Design of secure IoT systems: a practical approach across industries. McGraw-Hill education, USA,\u00a0ISBN: 9781260463101"},{"key":"338_CR24","volume-title":"Monitoring physical threats in the data center, APC white paper","author":"C Cowan","year":"2006","unstructured":"Cowan C, Gaskins C (2006) Monitoring physical threats in the data center, APC white paper"},{"key":"338_CR25","doi-asserted-by":"publisher","first-page":"9324035","DOI":"10.1155\/2017\/9324035","volume":"2017","author":"P Sethi","year":"2017","unstructured":"Sethi P, Sarangi SR (2017) Internet of things: architectures, protocols, and applications. J Electr Comput Eng 2017:9324035, 25 pages. https:\/\/doi.org\/10.1155\/2017\/9324035","journal-title":"J Electr Comput Eng"},{"key":"338_CR26","doi-asserted-by":"publisher","first-page":"68","DOI":"10.1016\/j.adhoc.2014.12.006","volume":"28","author":"I Mashal","year":"2015","unstructured":"Mashal I, Alsaryrah O, Chung T-Y, Yang C-Z, Kuo W-H, Agrawal DP (2015) Choices for interaction with things on Internet and underlying issues. Ad Hoc Netw 28:68\u201390. https:\/\/doi.org\/10.1016\/j.adhoc.2014.12.006","journal-title":"Ad Hoc Netw"},{"key":"338_CR27","doi-asserted-by":"publisher","first-page":"V5-484","DOI":"10.1109\/ICACTE.2010.5579493","volume-title":"Proceedings of the 3rd International Conference on Advanced Computer Theory and Engineering (ICACTE\u201910)","author":"M Wu","year":"2010","unstructured":"Wu M, Lu T-J, Ling F-Y, Sun J, Du H-Y (2010) Research on the architecture of internet of things. In: Proceedings of the 3rd International Conference on Advanced Computer Theory and Engineering (ICACTE\u201910), vol 5. IEEE, Chengdu, pp V5-484\u2013V5-487. https:\/\/doi.org\/10.1109\/ICACTE.2010.5579493"},{"issue":"4","key":"338_CR28","doi-asserted-by":"publisher","first-page":"2347","DOI":"10.1109\/COMST.2015.2444095","volume":"17","author":"A Al-Fuqaha","year":"2015","unstructured":"Al-Fuqaha A, Guizani M, Mohammadi M et al (2015) Internet of things: a survey on enabling technologies, protocols, and applications. IEEE Commun Surv Tutor 17(4):2347\u20132376. https:\/\/doi.org\/10.1109\/COMST.2015.2444095","journal-title":"IEEE Commun Surv Tutor"},{"key":"338_CR29","doi-asserted-by":"publisher","first-page":"257","DOI":"10.1109\/FIT.2012.53","volume-title":"IEEE 10th international conference on frontiers of information technology","author":"R Khan","year":"2012","unstructured":"Khan R, Khan SU, Zaheer R et al (2012) Future internet: the internet of things architecture, possible applications and key challenges. In: IEEE 10th international conference on frontiers of information technology, pp 257\u2013260. https:\/\/doi.org\/10.1109\/FIT.2012.53"},{"key":"338_CR30","unstructured":"Iqbal MA, Hussain S, Xing H, Imran MA (2020) Enabling the internet of things: fundamentals, design and applications, 1st edn. IEEE press, Wiley, Hoboken, ISBN: 978-1-119-70125-5"},{"key":"338_CR31","doi-asserted-by":"publisher","first-page":"68","DOI":"10.1109\/PEEIC.2018.8665632","volume-title":"IEEE International Conference on Power Energy, Environment and Intelligent Control (PEEIC)","author":"NM Kumar","year":"2018","unstructured":"Kumar NM, Dash A, Singh NK (2018) Internet of things (IoT): an opportunity for energy-food-water nexus. In: IEEE International Conference on Power Energy, Environment and Intelligent Control (PEEIC), pp 68\u201372. https:\/\/doi.org\/10.1109\/PEEIC.2018.8665632"},{"key":"338_CR32","doi-asserted-by":"publisher","first-page":"109","DOI":"10.1016\/j.procs.2018.05.170","volume":"132","author":"NM Kumar","year":"2018","unstructured":"Kumar NM, Mallick PK (2018) The internet of things: insights into the building blocks, component interactions, and architecture layers. Procedia Comput Sci 132:109\u2013117. https:\/\/doi.org\/10.1016\/j.procs.2018.05.170","journal-title":"Procedia Comput Sci"},{"key":"338_CR33","doi-asserted-by":"publisher","unstructured":"Sarker IH, Khan AI, Abushark YB et al (2022) Internet of things (IoT) security intelligence: a comprehensive overview, machine learning solutions and research directions. Mobile Netw Appl. https:\/\/doi.org\/10.1007\/s11036-022-01937-3","DOI":"10.1007\/s11036-022-01937-3"},{"key":"338_CR34","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/WCSP.2012.6542861","volume-title":"2012 International Conference on Wireless Communications and Signal Processing (WCSP)","author":"Y Wang","year":"2012","unstructured":"Wang Y, Cao K (2012) Context-aware complex event processing for event cloud in internet of things. In: 2012 International Conference on Wireless Communications and Signal Processing (WCSP), pp 1\u20136. https:\/\/doi.org\/10.1109\/WCSP.2012.6542861"},{"key":"338_CR35","doi-asserted-by":"publisher","first-page":"82721","DOI":"10.1109\/ACCESS.2019.2924045","volume":"7","author":"V Hassija","year":"2019","unstructured":"Hassija V, Chamola V, Saxena V, Jain D, Goyal P, Sikdar B (2019) A survey on IoT security: application areas, security threats, and solution architectures. IEEE Access 7:82721\u201382743. https:\/\/doi.org\/10.1109\/ACCESS.2019.2924045","journal-title":"IEEE Access"},{"key":"338_CR36","unstructured":"Chatterjee J, Das A, Ghosh S, Das MK, Bag R (2020) Chapter 8: a review of cyber attack analysis and security aspect of IoT-enabled technologies. In: IoT: security and privacy paradigm. CRC Press, Taylor & Francis Group, p 159, Boca Raton, FL, United States"},{"key":"338_CR37","doi-asserted-by":"publisher","first-page":"649","DOI":"10.3390\/e22060649","volume":"22","author":"S Siboni","year":"2020","unstructured":"Siboni S, Cohen A (2020) Anomaly detection for individual sequences with applications in identifying malicious tools. Entropy 22:649. https:\/\/doi.org\/10.3390\/e22060649","journal-title":"Entropy"},{"issue":"2","key":"338_CR38","doi-asserted-by":"publisher","first-page":"378","DOI":"10.1016\/j.comnet.2012.07.021","volume":"57","author":"SS Silva","year":"2013","unstructured":"Silva SS, Silva RM, Pinto RC, Salles RM (2013) Botnets: a survey. Comput Netw 57(2):378\u2013403. https:\/\/doi.org\/10.1016\/j.comnet.2012.07.021","journal-title":"Comput Netw"},{"key":"338_CR39","doi-asserted-by":"publisher","first-page":"891","DOI":"10.1109\/GLOCOM.2012.6503226","volume-title":"Global Communications Conference (GLOBECOM), 2012 IEEE","author":"FH Abbasi","year":"2012","unstructured":"Abbasi FH, Harris RJ, Moretti G, Haider A, Anwar N (2012) Classification of malicious network streams using honeynets. In: Global Communications Conference (GLOBECOM), 2012 IEEE. IEEE, pp 891\u2013897. https:\/\/doi.org\/10.1109\/GLOCOM.2012.6503226"},{"issue":"5","key":"338_CR40","doi-asserted-by":"publisher","first-page":"1571","DOI":"10.1109\/JIOT.2017.2712672","volume":"4","author":"A Akbar","year":"2017","unstructured":"Akbar A, Khan A, Carrez F, Moessner K (2017) Predictive analytics for complex IoT data streams. IEEE Internet Things J 4(5):1571\u20131582. https:\/\/doi.org\/10.1109\/JIOT.2017.2712672","journal-title":"IEEE Internet Things J"},{"key":"338_CR41","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2187671.2187677","volume":"44","author":"G Cugola","year":"2012","unstructured":"Cugola G, Margara A (2012) Processing flows of information: from data stream to complex event processing. ACM Comput Surv 44:1\u201362. https:\/\/doi.org\/10.1145\/2187671.2187677","journal-title":"ACM Comput Surv"},{"key":"338_CR42","unstructured":"Esper, https:\/\/www.espertech.com\/esper. Accessed 20 Sept 2022"},{"key":"338_CR43","doi-asserted-by":"crossref","unstructured":"Siddhi CEP engine, https:\/\/siddhi.io\/en\/v5.1\/docs\/. Accessed 29 July 2022","DOI":"10.33552\/OJCAM.2021.05.000618"},{"key":"338_CR44","unstructured":"Saad MHM (2017) Pemprosesan Peristiwa Kompleks Untuk Aplikasi Sistem Kejuruteraan Pintar, PhD. Thesis, Universiti Kebangsaan Malaysia, Malaysia"},{"key":"338_CR45","doi-asserted-by":"publisher","unstructured":"Shahad RA, Saad MHM, Hussain A (2018) Activity recognition for smart building application using complex event processing approach. Int J Adv Sci Eng Inf Technol 8(2). https:\/\/doi.org\/10.18517\/ijaseit.8.2.2575","DOI":"10.18517\/ijaseit.8.2.2575"},{"issue":"2","key":"338_CR46","doi-asserted-by":"publisher","first-page":"55","DOI":"10.1016\/j.intcom.2012.01.003","volume":"24","author":"K Wongsuphasawat","year":"2012","unstructured":"Wongsuphasawat K, Plaisant C, Taieb-Maimon M, Shneiderman B (2012) Querying event sequences by exact match or similarity search: design and empirical evaluation. Interact Comput 24(2):55\u201368. https:\/\/doi.org\/10.1016\/j.intcom.2012.01.003","journal-title":"Interact Comput"},{"issue":"1","key":"338_CR47","first-page":"81","volume":"36","author":"MJ Merigo","year":"2012","unstructured":"Merigo MJ, Gil-lafuente AM (2012) Decision-making techniques with similarity measures and OWA operators. Stat Oper Res Trans 36(1):81\u2013102 https:\/\/raco.cat\/index.php\/SORT\/article\/view\/254885","journal-title":"Stat Oper Res Trans"},{"key":"338_CR48","unstructured":"Moen P (2000) Attribute, event sequence and event type similarity notions for data mining. PhD thesis, Dept. of Computer Science, University of Helsinki, Finland"},{"key":"338_CR49","doi-asserted-by":"publisher","first-page":"193","DOI":"10.1145\/3448016.3457245","volume-title":"Proc. 35th SIGMOD Int. Conf. Manag. data","author":"Y Mei","year":"2009","unstructured":"Mei Y, Madden S (2009) ZStream: a cost-based query processor for adaptively detecting composite events categories and subject descriptors. In: Proc. 35th SIGMOD Int. Conf. Manag. data, pp 193\u2013206. https:\/\/doi.org\/10.1145\/3448016.3457245"},{"key":"338_CR50","first-page":"490","volume-title":"Proc. 21st Int. Conf. Very Large Databases","author":"R Agrawal","year":"1995","unstructured":"Agrawal R, Lin K, Sawhney HS, Shim K (1995) Fast similarity search in the presence of noise, scaling, and translation in time-series databases. In: Proc. 21st Int. Conf. Very Large Databases, pp 490\u2013501"},{"key":"338_CR51","first-page":"544","volume-title":"Complex event processing in smart homes, no. 3","author":"KS Pooja","year":"2015","unstructured":"Pooja KS, Chandrashekar KT, Thungamani M, Gireesh Babu CN, Is AW, Home AS (2015) Complex event processing in smart homes, no. 3, pp 544\u2013550 ISSN: 2395-3470"},{"key":"338_CR52","doi-asserted-by":"publisher","first-page":"185","DOI":"10.1109\/APSCC.2014.38","volume-title":"2014 Asia-Pacific services computing conference","author":"M Xu","year":"2014","unstructured":"Xu M, Liu Z, Li J (2014) Tree-structured network based hierarchical complex event processing in wireless sensor networks. In: 2014 Asia-Pacific services computing conference, pp 185\u2013190. https:\/\/doi.org\/10.1109\/APSCC.2014.38"},{"key":"338_CR53","doi-asserted-by":"publisher","unstructured":"Xiao F, Zhan C, Lai H, Tao L, Qu Z (2017) New parallel processing strategies in complex event processing systems with data streams. Int J Distrib Sens Netw. https:\/\/doi.org\/10.1177\/1550147717728626","DOI":"10.1177\/1550147717728626"},{"key":"338_CR54","first-page":"69","volume-title":"25th GI-workshop on foundations of databases","author":"O Saleh","year":"2013","unstructured":"Saleh O (2013) Complex event processing in wireless sensor networks. In: 25th GI-workshop on foundations of databases, pp 69\u201374"},{"key":"338_CR55","doi-asserted-by":"publisher","first-page":"102824","DOI":"10.1016\/j.cose.2022.102824","volume":"120","author":"M Lima","year":"2022","unstructured":"Lima M, Lima R, Lins F, Bonfim M (2022) Beholder \u2013 A CEP-based intrusion detection and prevention systems for IoT environments. Comput Secur 120:102824. https:\/\/doi.org\/10.1016\/j.cose.2022.102824","journal-title":"Comput Secur"},{"key":"338_CR56","doi-asserted-by":"publisher","first-page":"226","DOI":"10.1109\/ICMTMA.2014.57","volume-title":"2014 sixth international conference on measuring technology and mechatronics automation","author":"C Jun","year":"2014","unstructured":"Jun C, Chi C (2014) Design of complex event-processing IDS in internet of things. In: 2014 sixth international conference on measuring technology and mechatronics automation, pp 226\u2013229. https:\/\/doi.org\/10.1109\/ICMTMA.2014.57"},{"key":"338_CR57","doi-asserted-by":"publisher","first-page":"273","DOI":"10.1109\/IoTDI.2018.00036","volume-title":"2018 IEEE\/ACM Third International Conference on Internet-of-Things Design and Implementation (IoTDI)","author":"A Marques da Silva Cardoso","year":"2018","unstructured":"Marques da Silva Cardoso A, Fernandes Lopes R, Soares Teles A, Benedito Veras Magalh\u00e3es F (2018) Real-time DDoS detection based on complex event processing for IoT. In: 2018 IEEE\/ACM Third International Conference on Internet-of-Things Design and Implementation (IoTDI), pp 273\u2013274. https:\/\/doi.org\/10.1109\/IoTDI.2018.00036"},{"key":"338_CR58","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/INFOCOMTECH.2017.8340593","volume-title":"2017 Conference on Information and Communication Technology (CICT)","author":"R Raj","year":"2017","unstructured":"Raj R, Sahu RK, Chaudhary B, Prasad BR, Agarwal S (2017) Real time complex event processing and analytics for smart building. In: 2017 Conference on Information and Communication Technology (CICT), pp 1\u20136. https:\/\/doi.org\/10.1109\/INFOCOMTECH.2017.8340593"},{"key":"338_CR59","doi-asserted-by":"publisher","first-page":"148","DOI":"10.1109\/ICSGCE.2015.7454287","volume-title":"2015 International Conference on Smart Grid and Clean Energy Technologies (ICSGCE)","author":"FAA Alseiari","year":"2015","unstructured":"Alseiari FAA, Aung Z (2015) Real-time anomaly-based distributed intrusion detection systems for advanced metering infrastructure utilizing stream data mining. In: 2015 International Conference on Smart Grid and Clean Energy Technologies (ICSGCE). IEEE, Offenburg, pp 148\u2013153. https:\/\/doi.org\/10.1109\/ICSGCE.2015.7454287"},{"key":"338_CR60","doi-asserted-by":"publisher","first-page":"238","DOI":"10.1109\/ICSGRC53186.2021.9515261","volume-title":"2021 IEEE 12th Control and System Graduate Research Colloquium (ICSGRC)","author":"KA Alaghbari","year":"2021","unstructured":"Alaghbari KA, Hanif Md Saad M, Hussain A, Othman RA, Alam MR (2021) A comparison of sequential prediction algorithms in IoT enabled smart environments. In: 2021 IEEE 12th Control and System Graduate Research Colloquium (ICSGRC), pp 238\u2013243. https:\/\/doi.org\/10.1109\/ICSGRC53186.2021.9515261"},{"issue":"1","key":"338_CR61","doi-asserted-by":"publisher","first-page":"83","DOI":"10.17576\/jkukm-2018-30(1)","volume":"30","author":"RA Shahad","year":"2018","unstructured":"Shahad RA, Ibrahim MF, Xian EL, Hussain A, Saad MHM (2018) Suspicious loitering detection from annotated CCTV feed using CEP based approach. Jurnal Kejuruteraan 30(1):83\u201391. https:\/\/doi.org\/10.17576\/jkukm-2018-30(1)","journal-title":"Jurnal Kejuruteraan"},{"key":"338_CR62","doi-asserted-by":"publisher","DOI":"10.48550\/arXiv.1404.7551","volume-title":"A Complex event processing approach for crisis management systems, computer science, ArXiv preprint","author":"ML Itria","year":"2014","unstructured":"Itria ML, Daidone A, Ceccarelli A (2014) A Complex event processing approach for crisis management systems, computer science, ArXiv preprint. https:\/\/doi.org\/10.48550\/arXiv.1404.7551"},{"key":"338_CR63","unstructured":"Complex event example, https:\/\/developer.hpe.com\/blog\/better-complex-event-processing-at-scale-using-a-microservices-based-str\/. Accessed 17 Sept 2021"},{"key":"338_CR64","unstructured":"LaPiedra J (2002) The Information Security Process Prevention, Detection and Response, global information assurance certification paper, SANS institute, Maryland, United States"},{"key":"338_CR65","unstructured":"Modern datacentre example, https:\/\/www.black-box.eu\/en-int\/page\/43877\/Resources\/technical\/Black-Box-Explains\/lan\/What-is-Server-Room-Environmental-Monitoring. Accessed 14 Mar 2022"},{"key":"338_CR66","doi-asserted-by":"publisher","first-page":"204","DOI":"10.2197\/ipsjjip.28.204","volume":"28","author":"T Yamanoue","year":"2020","unstructured":"Yamanoue T (2020) Monitoring of servers and server rooms by IoT system that can configure and control its terminal sensors behind a NAT using a Wiki Page on the internet. J Inf Process 28:204\u2013213. https:\/\/doi.org\/10.2197\/ipsjjip.28.204","journal-title":"J Inf Process"},{"key":"338_CR67","unstructured":"PukiWiki, https:\/\/en.wikipedia.org\/wiki\/PukiWiki. Accessed 7 Sept 2021"},{"issue":"2","key":"338_CR68","doi-asserted-by":"publisher","first-page":"237","DOI":"10.2197\/ipsjjip.21.237","volume":"21","author":"T Yamanoue","year":"2013","unstructured":"Yamanoue T, Oda K, Shimozono K (2013) A malicious bot capturing system using a beneficial bot and Wiki. J Inf Process 21(2):237\u2013245. https:\/\/doi.org\/10.2197\/ipsjjip.21.237","journal-title":"J Inf Process"},{"key":"338_CR69","doi-asserted-by":"publisher","unstructured":"Kaya M, Kaya YC (2017) Complex event processing using IoT devices based on Arduino. Int J Cloud Comput Serv Arch 7(6). https:\/\/doi.org\/10.5121\/ijccsa.2017.7602","DOI":"10.5121\/ijccsa.2017.7602"},{"key":"338_CR70","doi-asserted-by":"publisher","DOI":"10.5281\/zenodo.2528454","volume-title":"Proceedings of undergraduate research 2018, Bangi, Selangor, Malaysia","author":"SR Amru","year":"2018","unstructured":"Amru SR, Saad MHM, Kamal N, Hussain A (2018) Real time event detection for intelligent building surveillance system application. In: Proceedings of undergraduate research 2018, Bangi, Selangor, Malaysia. https:\/\/doi.org\/10.5281\/zenodo.2528454"},{"key":"338_CR71","doi-asserted-by":"publisher","first-page":"37","DOI":"10.1007\/s11518-018-5393-5","volume":"28","author":"V Mijovi\u0107","year":"2019","unstructured":"Mijovi\u0107 V, Toma\u0161evi\u0107 N, Janev V et al (2019) Emergency management in critical infrastructures: a complex-event-processing paradigm. J Syst Sci Syst Eng 28:37\u201362. https:\/\/doi.org\/10.1007\/s11518-018-5393-5","journal-title":"J Syst Sci Syst Eng"},{"issue":"3","key":"338_CR72","doi-asserted-by":"publisher","first-page":"15","DOI":"10.1145\/1541880.1541882","volume":"41","author":"V Chandola","year":"2009","unstructured":"Chandola V, Banerjee A, Kumar V (2009) Anomaly detection: a survey. ACM Comput Surv 41(3):15. https:\/\/doi.org\/10.1145\/1541880.1541882","journal-title":"ACM Comput Surv"},{"issue":"1","key":"338_CR73","doi-asserted-by":"publisher","first-page":"303","DOI":"10.1109\/SURV.2013.052213.00046","volume":"16","author":"MH Bhuyan","year":"2014","unstructured":"Bhuyan MH, Bhattacharyya DK, Kalita JK (2014) Network anomaly detection: methods, systems and tools. IEEE Commun Surv Tutor 16(1):303\u2013336. https:\/\/doi.org\/10.1109\/SURV.2013.052213.00046","journal-title":"IEEE Commun Surv Tutor"},{"key":"338_CR74","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-15-0146-3_76","volume-title":"Inventive communication and computational technologies. Lecture notes in networks and systems","author":"KN Lakshmi","year":"2020","unstructured":"Lakshmi KN, Neema N, Mohammed Muddasir N, Prashanth MV (2020) Anomaly detection techniques in data mining\u2014a review. In: Ranganathan G, Chen J, Rocha \u00c1 (eds) Inventive communication and computational technologies. Lecture notes in networks and systems, vol 89. Springer, Singapore. https:\/\/doi.org\/10.1007\/978-981-15-0146-3_76"},{"issue":"4","key":"338_CR75","doi-asserted-by":"publisher","first-page":"1643","DOI":"10.1109\/TSG.2013.2294473","volume":"5","author":"J Hong","year":"2014","unstructured":"Hong J, Liu C, Govindarasu M (2014) Integrated anomaly detection for cyber security of the substations. IEEE Trans Smart Grid 5(4):1643\u20131653. https:\/\/doi.org\/10.1109\/TSG.2013.2294473","journal-title":"IEEE Trans Smart Grid"},{"key":"338_CR76","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1016\/j.jnca.2016.10.015","volume":"77","author":"P Mishra","year":"2017","unstructured":"Mishra P, Pilli ES, Varadharajan V, Tupakula U (2017) Intrusion detection techniques in cloud environment: a survey. J Netw Comput Appl 77:18\u201347. https:\/\/doi.org\/10.1016\/j.jnca.2016.10.015","journal-title":"J Netw Comput Appl"},{"key":"338_CR77","volume-title":"Data mining: concepts and techniques","year":"2012","unstructured":"Han J, Kamber M, Pei J (eds) (2012) Data mining: concepts and techniques. Morgan Kaufmann, Boston"},{"key":"338_CR78","doi-asserted-by":"publisher","first-page":"46","DOI":"10.1016\/j.procs.2015.09.145","volume":"61","author":"S Duque","year":"2015","unstructured":"Duque S, bin Omar MN (2015) Using data mining algorithms for developing a model for intrusion detection system (IDS). Procedia Comput Sci 61:46\u201351. https:\/\/doi.org\/10.1016\/j.procs.2015.09.145","journal-title":"Procedia Comput Sci"},{"key":"338_CR79","doi-asserted-by":"publisher","first-page":"127","DOI":"10.1016\/j.future.2013.06.027","volume":"37","author":"W Feng","year":"2014","unstructured":"Feng W, Zhang Q, Hu G, Huang JX (2014) Mining network data for intrusion detection through combining SVMs with ant colony networks. Futur Gener Comput Syst 37:127\u2013140. https:\/\/doi.org\/10.1016\/j.future.2013.06.027","journal-title":"Futur Gener Comput Syst"},{"key":"338_CR80","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-0-387-88735-7","volume-title":"Machine learning in cyber trust: security, privacy, and reliability","author":"PS Yu","year":"2009","unstructured":"Yu PS, Tsia JJ (2009) Machine learning in cyber trust: security, privacy, and reliability, 1st edn. Springer US, Springer-Verlag US, pp 1\u2013362. https:\/\/doi.org\/10.1007\/978-0-387-88735-7","edition":"1"},{"issue":"2","key":"338_CR81","doi-asserted-by":"publisher","first-page":"391","DOI":"10.1007\/s10844-015-0387-y","volume":"46","author":"L Nishani","year":"2016","unstructured":"Nishani L, Biba M (2016) Machine learning for intrusion detection in MANET: a state-of-the-art survey. J Intell Inf Syst 46(2):391\u2013407. https:\/\/doi.org\/10.1007\/s10844-015-0387-y","journal-title":"J Intell Inf Syst"},{"key":"338_CR82","doi-asserted-by":"publisher","first-page":"784","DOI":"10.1016\/j.procs.2015.08.238","volume":"60","author":"N Namdev","year":"2015","unstructured":"Namdev N, Agrawal S, Silkari S (2015) Recent advancement in machine learning based internet traffic classification. Procedia Comput Sci 60:784\u2013791. https:\/\/doi.org\/10.1016\/j.procs.2015.08.238","journal-title":"Procedia Comput Sci"},{"key":"338_CR83","unstructured":"Tan P-N, Steinbach M, Karpatne A, Kumar V (2018) Introduction to data mining, 2nd edn. Pearson, Hudson Street, NY, USA"},{"issue":"5","key":"338_CR84","doi-asserted-by":"publisher","first-page":"3447","DOI":"10.3390\/s90503447","volume":"9","author":"SO Amin","year":"2009","unstructured":"Amin SO, Siddiqui MS, Hong CS, Lee S (2009) RIDES: robust intrusion detection system for ip-based ubiquitous sensor networks. Sensors 9(5):3447. https:\/\/doi.org\/10.3390\/s90503447","journal-title":"Sensors"},{"key":"338_CR85","doi-asserted-by":"publisher","unstructured":"Muzammil MJ, Qazi S, Ali T (2013) Comparative analysis of classification algorithms performance for statistical based intrusion detection system. In: 2013 3rd IEEE International Conference on Computer, Control and Communication (IC4), Karachi, pp 1\u20136. https:\/\/doi.org\/10.1109\/IC4.2013.6653738","DOI":"10.1109\/IC4.2013.6653738"},{"issue":"1","key":"338_CR86","doi-asserted-by":"publisher","first-page":"130","DOI":"10.1109\/TSMCC.2010.2050685","volume":"41","author":"S Mabu","year":"2011","unstructured":"Mabu S, Chen C, Lu N, Shimada K, Hirasawa K (2011) An intrusion-detection model based on fuzzy class-association-rule mining using genetic network programming. IEEE Trans Syst Man Cybern Part C Appl Rev 41(1):130\u2013139. https:\/\/doi.org\/10.1109\/TSMCC.2010.2050685","journal-title":"IEEE Trans Syst Man Cybern Part C Appl Rev"},{"issue":"3","key":"338_CR87","doi-asserted-by":"publisher","first-page":"688","DOI":"10.1109\/TFUZZ.2014.2322385","volume":"23","author":"M Moshtaghi","year":"2015","unstructured":"Moshtaghi M, Bezdek JC, Leckie C, Karunasekera S, Palaniswami M (2015) Evolving fuzzy rules for anomaly detection in data streams. IEEE Trans Fuzzy Syst 23(3):688\u2013700. https:\/\/doi.org\/10.1109\/TFUZZ.2014.2322385","journal-title":"IEEE Trans Fuzzy Syst"},{"key":"338_CR88","doi-asserted-by":"publisher","first-page":"67","DOI":"10.1145\/1978582.1978597","volume-title":"Proceedings of the 13th European Workshop on Dependable Computing EWDC \u201811, ACM New York","author":"L Aniello","year":"2011","unstructured":"Aniello L, Lodi G, Baldoni R (2011) Inter-domain stealthy port scan detection through complex event processing. In: Proceedings of the 13th European Workshop on Dependable Computing EWDC \u201811, ACM New York, pp 67\u201372. https:\/\/doi.org\/10.1145\/1978582.1978597"},{"key":"338_CR89","volume-title":"7th International Conference on Network and Service Management (CNSM)","author":"S Cheng","year":"2011","unstructured":"Cheng S, Cheng Z, Luan Z, Qian D (2011) NEPnet: a scalable monitoring system for anomaly detection of network service. In: 7th International Conference on Network and Service Management (CNSM)"},{"key":"338_CR90","first-page":"204","volume-title":"Proceedings of the ninth advanced international conference on telecommunications","author":"R Gad","year":"2013","unstructured":"Gad R, Kappes M, Boubeta-Puig J, Medina-Bulo I (2013) Employing the CEP paradigm for network analysis and surveillance. In: Proceedings of the ninth advanced international conference on telecommunications. IARIA, Rome, pp 204\u2013210"},{"key":"338_CR91","doi-asserted-by":"publisher","first-page":"187","DOI":"10.1109\/ICACC.2014.52","volume-title":"2014 fourth international conference on advances in computing and communications","author":"K Jayan","year":"2014","unstructured":"Jayan K, Rajan AK (2014) Preprocessor for complex event processing system in network security. In: 2014 fourth international conference on advances in computing and communications, pp 187\u2013189. https:\/\/doi.org\/10.1109\/ICACC.2014.52"},{"key":"338_CR92","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/ICSCN.2015.7219827","volume-title":"2015 3rd International Conference on Signal Processing, Communication and Networking (ICSCN)","author":"R Mohan","year":"2015","unstructured":"Mohan R, Vaidehi V, Ajay Krishna A, Mahalakshmi M, Chakkaravarthy SS (2015) Complex event processing based hybrid intrusion detection system. In: 2015 3rd International Conference on Signal Processing, Communication and Networking (ICSCN), pp 1\u20136. https:\/\/doi.org\/10.1109\/ICSCN.2015.7219827"},{"key":"338_CR93","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/AQTR.2016.7501296","volume-title":"2016 IEEE international conference on automation, quality and testing, robotics (AQTR)","author":"L Vegh","year":"2016","unstructured":"Vegh L, Miclea L (2016) Complex event processing for attack detection in a cyber-physical system. In: 2016 IEEE international conference on automation, quality and testing, robotics (AQTR), pp 1\u20136. https:\/\/doi.org\/10.1109\/AQTR.2016.7501296"},{"key":"338_CR94","doi-asserted-by":"publisher","first-page":"118","DOI":"10.1109\/ICICCS51141.2021.9432102","volume-title":"2021 5th International Conference on Intelligent Computing and Control Systems (ICICCS)","author":"BSK Devi","year":"2021","unstructured":"Devi BSK, Subbulakshmi T (2021) Cloud DDoS detection and defense system using complex event processing. In: 2021 5th International Conference on Intelligent Computing and Control Systems (ICICCS), pp 118\u2013128. https:\/\/doi.org\/10.1109\/ICICCS51141.2021.9432102"},{"key":"338_CR95","volume-title":"Event-driven architecture: how SOA enables the real time enterprise","author":"H Taylor","year":"2009","unstructured":"Taylor H, Yochem A, Phillips L, Martinez F (2009) Event-driven architecture: how SOA enables the real time enterprise. Addison-Wesley Professional, Boston ISBN: 9780321591388"},{"key":"338_CR96","doi-asserted-by":"publisher","first-page":"231","DOI":"10.1007\/978-3-030-31703-4_16","volume-title":"Cyber security: the lifeline of information and communication technology","author":"R Prasad","year":"2020","unstructured":"Prasad R, Rohokale V (2020) Artificial intelligence and machine learning in cyber security. In: Cyber security: the lifeline of information and communication technology. Springer, New York, pp 231\u2013247. https:\/\/doi.org\/10.1007\/978-3-030-31703-4_16"},{"key":"338_CR97","doi-asserted-by":"publisher","first-page":"151","DOI":"10.1109\/ISPASS.2019.00028","volume-title":"Paper presented at: Proceedings of the IEEE International Symposium on Performance Analysis of Systems and Software (ISPASS)","author":"J Lew","year":"2019","unstructured":"Lew J, Shah DA, Pati S et al (2019) Analyzing machine learning workloads using a detailed GPU simulator. In: Paper presented at: Proceedings of the IEEE International Symposium on Performance Analysis of Systems and Software (ISPASS). IEEE, Madison, pp 151\u2013152. https:\/\/doi.org\/10.1109\/ISPASS.2019.00028"},{"issue":"1","key":"338_CR98","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1186\/s40537-014-0007-7","volume":"2","author":"MM Najafabadi","year":"2015","unstructured":"Najafabadi MM, Villanustre F, Khoshgoftaar TM, Seliya N, Wald R, Muharemagic E (2015) Deep learning applications and challenges in big data analytics. J Big Data 2(1):1. https:\/\/doi.org\/10.1186\/s40537-014-0007-7","journal-title":"J Big Data"},{"issue":"1","key":"338_CR99","doi-asserted-by":"publisher","first-page":"e4150","DOI":"10.1002\/ett.4150","volume":"32","author":"Z Ahmad","year":"2021","unstructured":"Ahmad Z, Shahid Khan A, Wai Shiang C, Abdullah J, Ahmad F (2021) Network intrusion detection system: a systematic study of machine learning and deep learning approaches. Trans Emerging Tel Tech 32(1):e4150. https:\/\/doi.org\/10.1002\/ett.4150","journal-title":"Trans Emerging Tel Tech"},{"key":"338_CR100","doi-asserted-by":"publisher","first-page":"205","DOI":"10.1007\/s42979-021-00516-9","volume":"2","author":"J Shareena","year":"2021","unstructured":"Shareena J, Ramdas A, Haripriya AP et al (2021) Intrusion detection system for IOT botnet attacks using deep learning. SN Comput Sci 2:205. https:\/\/doi.org\/10.1007\/s42979-021-00516-9","journal-title":"SN Comput Sci"},{"issue":"5","key":"338_CR101","doi-asserted-by":"publisher","first-page":"9042","DOI":"10.1109\/JIOT.2019.2926365","volume":"6","author":"E Anthi","year":"2019","unstructured":"Anthi E, Williams L, S\u0142owi\u0144ska M, Theodorakopoulos G, Burnap P (2019) A supervised intrusion detection system for smart home IoT devices. IEEE Internet Things J 6(5):9042\u20139053. https:\/\/doi.org\/10.1109\/JIOT.2019.2926365","journal-title":"IEEE Internet Things J"},{"key":"338_CR102","doi-asserted-by":"publisher","DOI":"10.48550\/arXiv.1709.04647","volume-title":"Detection of unauthorized IoT devices using machine learning techniques","author":"Y Meidan","year":"2017","unstructured":"Meidan Y, Bohadana M, Shabtai A, Ochoa M, Tippenhauer NO, Guarnizo JD, Elovici Y (2017), arXiv preprint) Detection of unauthorized IoT devices using machine learning techniques. https:\/\/doi.org\/10.48550\/arXiv.1709.04647"},{"key":"338_CR103","doi-asserted-by":"publisher","first-page":"29","DOI":"10.1109\/SPW.2018.00013","volume-title":"IEEE security and privacy workshops (SPW)","author":"R Doshi","year":"2018","unstructured":"Doshi R, Apthorpe N, Feamster N (2018) Machine learning DDoS detection for consumer internet of things devices. In: IEEE security and privacy workshops (SPW). IEEE, pp 29\u201335. https:\/\/doi.org\/10.1109\/SPW.2018.00013"},{"issue":"3","key":"338_CR104","doi-asserted-by":"publisher","first-page":"12","DOI":"10.1109\/MPRV.2018.03367731","volume":"17","author":"Y Meidan","year":"2018","unstructured":"Meidan Y, Bohadana M, Mathov Y, Mirsky Y, Shabtai A, Breitenbacher D, Elovici Y (2018) N-BaIoT network-based detection of IoT botnet attacks using deep autoencoders. IEEE Pervasive Comput 17(3):12\u201322. https:\/\/doi.org\/10.1109\/MPRV.2018.03367731","journal-title":"IEEE Pervasive Comput"},{"key":"338_CR105","doi-asserted-by":"publisher","unstructured":"Yuan X, Li C, Li X (2017) Deep defense: identifying DDoS attack via deep learning. In: 2017 IEEE international conference on smart computing (SMARTCOMP), Hong Kong, pp 1\u20138. https:\/\/doi.org\/10.1109\/SMARTCOMP.2017.7946998","DOI":"10.1109\/SMARTCOMP.2017.7946998"},{"key":"338_CR106","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/GLOBECOM38437.2019.9014337","volume-title":"IEEE global communications conference (GLOBECOM), 2019","author":"O Ibitoye","year":"2019","unstructured":"Ibitoye O, Shafiq O, Matrawy A (2019) Analyzing adversarial attacks against deep learning for intrusion detection in IoT networks. In: IEEE global communications conference (GLOBECOM), 2019, pp 1\u20136. https:\/\/doi.org\/10.1109\/GLOBECOM38437.2019.9014337"},{"key":"338_CR107","doi-asserted-by":"publisher","first-page":"1977","DOI":"10.3390\/s19091977","volume":"19","author":"G Thamilarasu","year":"2019","unstructured":"Thamilarasu G, Chawla S (2019) Towards deep-learning-driven intrusion detection for the internet of things. Sensors 19:1977. https:\/\/doi.org\/10.3390\/s19091977","journal-title":"Sensors"},{"key":"338_CR108","doi-asserted-by":"publisher","first-page":"105881","DOI":"10.1016\/j.knosys.2020.105881","volume":"198","author":"A Alakari","year":"2020","unstructured":"Alakari A, Li KF, Gebali F (2020) A situation refinement model for complex event processing. Knowl-Based Syst 198:105881. https:\/\/doi.org\/10.1016\/j.knosys.2020.105881","journal-title":"Knowl-Based Syst"},{"key":"338_CR109","doi-asserted-by":"publisher","first-page":"47","DOI":"10.1145\/2611286.2611289","volume-title":"Proceedings of the 8th ACM international conference on distributed event-based systems","author":"A Margara","year":"2014","unstructured":"Margara A, Cugola G, Tamburrelli G (2014) Learning from the past: automated rule generation for complex event processing. In: Proceedings of the 8th ACM international conference on distributed event-based systems, pp 47\u201358. https:\/\/doi.org\/10.1145\/2611286.2611289"},{"key":"338_CR110","doi-asserted-by":"publisher","first-page":"8563","DOI":"10.1007\/s11227-020-03603-5","volume":"8","author":"MU Simsek","year":"2021","unstructured":"Simsek MU, Yildirim F, Ozdemir S (2021) A deep learning-based CEP rule extraction framework for IoT data. J Supercomput 8:8563\u20138592. https:\/\/doi.org\/10.1007\/s11227-020-03603-5","journal-title":"J Supercomput"},{"key":"338_CR111","doi-asserted-by":"publisher","first-page":"395","DOI":"10.1016\/j.procs.2015.09.168","volume":"61","author":"N Mehdiyev","year":"2015","unstructured":"Mehdiyev N, Krumeich J, Enke D, Werth D, Loos P (2015) Determination of rule patterns in complex event processing using machine learning techniques. Procedia Comput Sci 61:395\u2013401. https:\/\/doi.org\/10.1016\/j.procs.2015.09.168","journal-title":"Procedia Comput Sci"},{"issue":"1","key":"338_CR112","doi-asserted-by":"publisher","first-page":"63","DOI":"10.1023\/A:1022631118932","volume":"11","author":"RC Holte","year":"1993","unstructured":"Holte RC (1993) Very simple classification rules perform well on most commonly used datasets. Mach Learn 11(1):63\u201390. https:\/\/doi.org\/10.1023\/A:1022631118932","journal-title":"Mach Learn"},{"key":"338_CR113","doi-asserted-by":"publisher","DOI":"10.1016\/B978-1-55860-377-6.50023-2","volume-title":"Proceedings of the twelfth international conference on machine learning","author":"WW Cohen","year":"1995","unstructured":"Cohen WW (1995) Fast effective rule induction. In: Proceedings of the twelfth international conference on machine learning. https:\/\/doi.org\/10.1016\/B978-1-55860-377-6.50023-2"},{"key":"338_CR114","first-page":"144","volume-title":"ICML \u201898: Proceedings of the Fifteenth International Conference on Machine Learning","author":"E Frank","year":"1998","unstructured":"Frank E, Witten IH (1998) Generating accurate rule sets without global optimization. In: ICML \u201898: Proceedings of the Fifteenth International Conference on Machine Learning, pp 144\u2013151"},{"key":"338_CR115","volume-title":"Instance-based learning: nearest neighbour with generalisation. Working paper series","author":"B Martin","year":"1995","unstructured":"Martin B (1995) Instance-based learning: nearest neighbour with generalisation. Working paper series. University of Waikato Hamilton, New Zealand https:\/\/hdl.handle.net\/10289\/1095"},{"issue":"3","key":"338_CR116","doi-asserted-by":"publisher","first-page":"211","DOI":"10.1007\/BF00962234","volume":"5","author":"BR Gaines","year":"1995","unstructured":"Gaines BR, Compton P (1995) Induction of ripple-down rules applied to modeling large databases. J Intell Inf Syst 5(3):211\u2013228. https:\/\/doi.org\/10.1007\/BF00962234","journal-title":"J Intell Inf Syst"},{"key":"338_CR117","first-page":"318","volume-title":"Proceedings of Twenty-First International Florida Artificial Intelligence Research Society Conference","author":"M Hall","year":"2008","unstructured":"Hall M, Frank E (2008) Combining naive bayes and decision tables. In: Wilson DL, Chad H (eds) Proceedings of Twenty-First International Florida Artificial Intelligence Research Society Conference. AAAI Press, Coconut Grove, pp 318\u2013319 https:\/\/hdl.handle.net\/10289\/1773"},{"key":"338_CR118","doi-asserted-by":"publisher","first-page":"158","DOI":"10.1145\/3093742.3093917","volume-title":"Proceedings of the 11th ACM international conference on distributed and event-based systems","author":"R Mousheimish","year":"2017","unstructured":"Mousheimish R, Taher Y, Zeitouni K (2017) Automatic learning of predictive CEP rules: bridging the gap between data mining and complex event processing. In: Proceedings of the 11th ACM international conference on distributed and event-based systems, pp 158\u2013169. https:\/\/doi.org\/10.1145\/3093742.3093917"},{"key":"338_CR119","doi-asserted-by":"publisher","first-page":"947","DOI":"10.1145\/1557019.1557122","volume-title":"Proceedings of the 15th ACM SIGKDD international conference on Knowledge discovery and data mining","author":"L Ye","year":"2009","unstructured":"Ye L, Keogh E (2009) Time series shapelets: a new primitive for data mining. In: Proceedings of the 15th ACM SIGKDD international conference on Knowledge discovery and data mining. ACM, pp 947\u2013956. https:\/\/doi.org\/10.1145\/1557019.1557122"},{"key":"338_CR120","volume-title":"Generalized feature extraction for structural pattern recognition in time-series data. Technical report","author":"RT Olszewski","year":"2001","unstructured":"Olszewski RT (2001) Generalized feature extraction for structural pattern recognition in time-series data. Technical report. DTIC Document, Carnegie Mellon University ISBN: 978-0-493-53871-6"},{"key":"338_CR121","volume-title":"UCI machine learning repository","author":"K Bache","year":"2013","unstructured":"Bache K, Lichman M (2013) UCI machine learning repository. University of California, Irvine http:\/\/archive.ics.uci.edu\/ml"},{"key":"338_CR122","doi-asserted-by":"publisher","first-page":"100","DOI":"10.1016\/j.future.2016.02.011","volume":"66","author":"OJ Lee","year":"2017","unstructured":"Lee OJ, Jung JE (2017) Sequence clustering-based automated rule generation for adaptive complex event processing. Futur Gener Comput Syst 66:100\u2013109. https:\/\/doi.org\/10.1016\/j.future.2016.02.011","journal-title":"Futur Gener Comput Syst"},{"key":"338_CR123","doi-asserted-by":"publisher","first-page":"113251","DOI":"10.1016\/j.eswa.2020.113251","volume":"149","author":"J Rold\u00e1n","year":"2020","unstructured":"Rold\u00e1n J, Boubeta-Puig J, Mart\u00ednez JL, Ortiz G (2020) Integrating complex event processing and machine learning: an intelligent architecture for detecting IoT security attacks. Expert Syst Appl 149:113251. https:\/\/doi.org\/10.1016\/j.eswa.2020.113251","journal-title":"Expert Syst Appl"},{"key":"338_CR124","doi-asserted-by":"publisher","first-page":"97","DOI":"10.1016\/j.knosys.2015.06.021","volume":"89","author":"J Boubeta-Puig","year":"2015","unstructured":"Boubeta-Puig J, Ortiz G, Medina-Bulo I (2015) MEdit4CEP: a model-driven solution for real-time decision making in SOA 2.0. Knowl-Based Syst 89:97\u2013112. https:\/\/doi.org\/10.1016\/j.knosys.2015.06.021","journal-title":"Knowl-Based Syst"},{"issue":"2","key":"338_CR125","doi-asserted-by":"publisher","first-page":"248","DOI":"10.1177\/0020720918819247","volume":"58","author":"M Xi","year":"2021","unstructured":"Xi M, Lingyu N, Jiapeng S (2021) Research on urban anti-terrorism intelligence perception system from the perspective of Internet of things application. Int J Electr Eng Educ 58(2):248\u2013257. https:\/\/doi.org\/10.1177\/0020720918819247","journal-title":"Int J Electr Eng Educ"},{"key":"338_CR126","doi-asserted-by":"publisher","first-page":"1919","DOI":"10.1109\/SMC52423.2021.9658711","volume-title":"2021 IEEE International Conference on Systems, Man, and Cybernetics (SMC)","author":"J Rold\u00e1n-G\u00f3mez","year":"2021","unstructured":"Rold\u00e1n-G\u00f3mez J, Boubeta-Puig J, Castelo G\u00f3mez JM, Carrillo-Mond\u00e9jar J, Mart\u00ednez Mart\u00ednez JL (2021) Attack pattern recognition in the internet of things using complex event processing and machine learning. In: 2021 IEEE International Conference on Systems, Man, and Cybernetics (SMC), pp 1919\u20131926. https:\/\/doi.org\/10.1109\/SMC52423.2021.9658711"},{"key":"338_CR127","doi-asserted-by":"publisher","first-page":"e787, 1\u201335","DOI":"10.7717\/peerj-cs.787","volume":"7","author":"J Rold\u00e1n-G\u00f3mez","year":"2021","unstructured":"Rold\u00e1n-G\u00f3mez J, Boubeta-Puig J, Pachacama-Castillo G, Ortiz G, Mart\u00ednez JL (2021) Detecting security attacks in cyber-physical systems: a comparison of Mule and WSO2 intelligent IoT architectures. PeerJ Comput Sci 7:e787, 1\u201335. https:\/\/doi.org\/10.7717\/peerj-cs.787","journal-title":"PeerJ Comput Sci"},{"key":"338_CR128","doi-asserted-by":"publisher","first-page":"13","DOI":"10.1007\/s41060-016-0029-7","volume":"2","author":"Z Milosevic","year":"2016","unstructured":"Milosevic Z, Chen W, Berry A, Rabhi FA (2016) An open architecture for event-based analytics. Int J Data Sci Anal 2:13\u201327. https:\/\/doi.org\/10.1007\/s41060-016-0029-7","journal-title":"Int J Data Sci Anal"},{"key":"338_CR129","unstructured":"R: the R project for statistical computing. http:\/\/www.r-project.org\/. Accessed 1 Aug 2022"},{"key":"338_CR130","unstructured":"Azure. https:\/\/azure.microsoft.com\/en-us\/documentation\/articles\/stream-analytics-introduction\/. Accessed 1 Aug 2022"},{"key":"338_CR131","volume-title":"Architectural styles and the design of network-based software architectures","author":"RT Fielding","year":"2000","unstructured":"Fielding RT (2000) Architectural styles and the design of network-based software architectures, PhD thesis. University of California, Irvine"},{"issue":"10","key":"338_CR132","doi-asserted-by":"publisher","first-page":"1808","DOI":"10.1016\/j.camwa.2013.06.032","volume":"66","author":"YH Wang","year":"2013","unstructured":"Wang YH, Cao K, Zhang XM (2013) Complex event processing over distributed probabilistic event streams. Comput Math Appl 66(10):1808\u20131821. https:\/\/doi.org\/10.1016\/j.camwa.2013.06.032","journal-title":"Comput Math Appl"},{"key":"338_CR133","doi-asserted-by":"publisher","DOI":"10.1109\/MDMW.2008.12","volume-title":"Proceedings of the data engineering workshop","author":"Z Shen","year":"2008","unstructured":"Shen Z, Kawashima H, Kitagawa H (2008) Probabilistic event stream processing with lineage. In: Proceedings of the data engineering workshop. https:\/\/doi.org\/10.1109\/MDMW.2008.12"},{"key":"338_CR134","doi-asserted-by":"publisher","first-page":"361","DOI":"10.1109\/APWeb.2010.56","volume-title":"2010 12th International Asia-Pacific Web Conference","author":"X Chuanfei","year":"2010","unstructured":"Chuanfei X, Shukuan L, Lei W, Jianzhong Q (2010) Complex event detection in probabilistic stream. In: 2010 12th International Asia-Pacific Web Conference, pp 361\u2013363. https:\/\/doi.org\/10.1109\/APWeb.2010.56"},{"key":"338_CR135","doi-asserted-by":"publisher","first-page":"521","DOI":"10.1109\/3PGCIC.2010.89","volume-title":"Proceedings of the fifth international conference on P2P, parallel, grid, cloud and internet computing","author":"H Kawashima","year":"2010","unstructured":"Kawashima H, Kitagawa H, Li X (2010) Complex event processing over uncertain data streams. In: Proceedings of the fifth international conference on P2P, parallel, grid, cloud and internet computing, pp 521\u2013526. https:\/\/doi.org\/10.1109\/3PGCIC.2010.89"},{"key":"338_CR136","volume-title":"Towards automated rule learning for complex event processing. Technical report","author":"A Margara","year":"2013","unstructured":"Margara A, Cugola G, Tamburrelli G, Lugano I (2013) Towards automated rule learning for complex event processing. Technical report. VU University, Amsterdam"},{"key":"338_CR137","doi-asserted-by":"publisher","first-page":"2513","DOI":"10.1109\/BigData47090.2019.9006018","volume-title":"2019 IEEE international conference on big data (big data)","author":"P Yadav","year":"2019","unstructured":"Yadav P, Curry E (2019) VidCEP: complex event processing framework to detect spatiotemporal patterns in video streams. In: 2019 IEEE international conference on big data (big data), pp 2513\u20132522. https:\/\/doi.org\/10.1109\/BigData47090.2019.9006018"},{"key":"338_CR138","first-page":"2652","volume-title":"CEUR workshop proceedings","author":"Z Li","year":"2020","unstructured":"Li Z, Katsifodimos A, Bozzon A, Houben GJ (2020) Complex event processing on real-time video streams. In: CEUR workshop proceedings, p 2652 Virtual, online, Japan"},{"key":"338_CR139","doi-asserted-by":"publisher","first-page":"122","DOI":"10.1016\/j.future.2015.10.023","volume":"65","author":"WA Higashino","year":"2016","unstructured":"Higashino WA, Capretz MAM, Bittencourt LF (2016) CEPSim: modelling and simulation of complex event processing systems in cloud environments. Futur Gener Comput Syst 65:122\u2013139. https:\/\/doi.org\/10.1016\/j.future.2015.10.023","journal-title":"Futur Gener Comput Syst"},{"key":"338_CR140","unstructured":"Ziehn A (2020) Complex event processing for the internet of things. In: Proceedings of the VLDB 2020 PhD Workshop, German Research Centre for Artificial Intelligence (DFKI), Germany. https:\/\/www.dfki.de\/fileadmin\/user_upload\/import\/11130_PhD_Workshop.pdf"},{"key":"338_CR141","doi-asserted-by":"publisher","first-page":"32","DOI":"10.1186\/s13677-021-00245-7","volume":"10","author":"G Mondrag\u00f3n-Ruiz","year":"2021","unstructured":"Mondrag\u00f3n-Ruiz G, Tenorio-Trigoso A, Castillo-Cara M et al (2021) An experimental study of fog and cloud computing in CEP-based real-time IoT applications. J Cloud Comp 10:32. https:\/\/doi.org\/10.1186\/s13677-021-00245-7","journal-title":"J Cloud Comp"},{"key":"338_CR142","doi-asserted-by":"publisher","first-page":"110510","DOI":"10.1109\/ACCESS.2019.2933859","volume":"7","author":"C Choi","year":"2019","unstructured":"Choi C, Choi J (2019) Ontology-based security context reasoning for power IoT-cloud security service. IEEE Access 7:110510\u2013110517. https:\/\/doi.org\/10.1109\/ACCESS.2019.2933859","journal-title":"IEEE Access"},{"key":"338_CR143","doi-asserted-by":"publisher","first-page":"2647","DOI":"10.3390\/electronics10212647","volume":"10","author":"S Balogh","year":"2021","unstructured":"Balogh S, Gallo O, Ploszek R, \u0160pa\u010dek P, Zajac P (2021) IoT security challenges: cloud and blockchain, postquantum cryptography, and evolutionary techniques. Electronics 10:2647. https:\/\/doi.org\/10.3390\/electronics10212647","journal-title":"Electronics"},{"key":"338_CR144","doi-asserted-by":"publisher","first-page":"1309","DOI":"10.1109\/TrustCom\/BigDataSE.2018.00180","volume-title":"2018 17th IEEE Int. Conf. On Trust, Security And Privacy In Comp. And Comm.\/ 12th IEEE Int. Conf, On Big Data Sci. and Eng. (TrustCom\/BigDataSE)","author":"H Zheng","year":"2018","unstructured":"Zheng H, Wang Y, Han C, Le F, He R, Lu J (2018) Learning and applying ontology for machine learning in cyber attack detection. In: 2018 17th IEEE Int. Conf. On Trust, Security And Privacy In Comp. And Comm.\/ 12th IEEE Int. Conf, On Big Data Sci. and Eng. (TrustCom\/BigDataSE), pp 1309\u20131315. https:\/\/doi.org\/10.1109\/TrustCom\/BigDataSE.2018.00180"},{"key":"338_CR145","doi-asserted-by":"publisher","first-page":"503","DOI":"10.1613\/jair.1.11661","volume":"68","author":"P Hohenecker","year":"2020","unstructured":"Hohenecker P, Lukasiewicz T (2020) Ontology reasoning with deep neural networks. J Artif Intell Res 68:503\u2013540. https:\/\/doi.org\/10.1613\/jair.1.11661","journal-title":"J Artif Intell Res"}],"container-title":["Journal of Cloud Computing"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s13677-022-00338-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s13677-022-00338-x\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s13677-022-00338-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,10,14]],"date-time":"2022-10-14T10:07:56Z","timestamp":1665742076000},"score":1,"resource":{"primary":{"URL":"https:\/\/journalofcloudcomputing.springeropen.com\/articles\/10.1186\/s13677-022-00338-x"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,10,14]]},"references-count":145,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2022,12]]}},"alternative-id":["338"],"URL":"https:\/\/doi.org\/10.1186\/s13677-022-00338-x","relation":{},"ISSN":["2192-113X"],"issn-type":[{"value":"2192-113X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,10,14]]},"assertion":[{"value":"10 May 2022","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"29 September 2022","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"14 October 2022","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare that they have no competing interests.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"65"}}