{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,2]],"date-time":"2026-05-02T00:44:54Z","timestamp":1777682694041,"version":"3.51.4"},"reference-count":22,"publisher":"SAGE Publications","issue":"1","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JHS"],"published-print":{"date-parts":[[2015,5,15]]},"DOI":"10.3233\/jhs-150509","type":"journal-article","created":{"date-parts":[[2015,5,29]],"date-time":"2015-05-29T05:21:47Z","timestamp":1432876907000},"page":"69-80","source":"Crossref","is-referenced-by-count":0,"title":["A real-time GPU-based approach for alert\u00a0aggregation"],"prefix":"10.1177","volume":"21","author":[{"given":"Masoud","family":"Narimani Zaman Abadi","sequence":"first","affiliation":[{"name":"ICT Department, IT Security Institute, Malek Ashtar University of Technology, Tehran, Iran. E-mails:\u00a0narimani.msd@gmail.com,\u00a0nowroozi@mut.ac.ir"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alireza","family":"Nowroozi","sequence":"additional","affiliation":[{"name":"ICT Department, IT Security Institute, Malek Ashtar University of Technology, Tehran, Iran. E-mails:\u00a0narimani.msd@gmail.com,\u00a0nowroozi@mut.ac.ir"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"179","reference":[{"key":"10.3233\/JHS-150509_ref2","doi-asserted-by":"crossref","unstructured":"[2] K.-W.\u00a0Chang, B.\u00a0Deka, W.-M.W.\u00a0Hwu and D.\u00a0Roth, Efficient pattern-based time series classification on GPU, in: 2012 IEEE 12th International Conference on Data Mining, December 2012, 2012, pp.\u00a0131\u2013140.","DOI":"10.1109\/ICDM.2012.132"},{"key":"10.3233\/JHS-150509_ref3","doi-asserted-by":"crossref","unstructured":"[3] H.T.\u00a0Elshoush and I.M.\u00a0Osman, Reducing false positives through fuzzy alert correlation in collaborative intelligent intrusion detection systems \u2013 A review, in: International Conference on Fuzzy Systems, 2010.","DOI":"10.1109\/FUZZY.2010.5584418"},{"key":"10.3233\/JHS-150509_ref4","doi-asserted-by":"crossref","unstructured":"[4] N.-F.\u00a0Huang, H.-W.\u00a0Hung, S.-H.\u00a0Lai, Y.-M.\u00a0Chu and W.-Y.\u00a0Tsai, A GPU-based multiple-pattern matching algorithm for network intrusion detection systems, in: 22nd International Conference on Advanced Information Networking and Applications \u2013 Workshops (AINA Workshops 2008), 2008.","DOI":"10.1109\/WAINA.2008.145"},{"key":"10.3233\/JHS-150509_ref5","doi-asserted-by":"crossref","unstructured":"[5] C.\u00a0Hung, Y.\u00a0Lin, K.\u00a0Li, H.\u00a0Wang and S.\u00a0Guo, Efficient GPGPU-based parallel packet classification, in: 2011 IEEE 10th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), 2011, pp.\u00a01367\u20131374.","DOI":"10.1109\/TrustCom.2011.186"},{"key":"10.3233\/JHS-150509_ref6","doi-asserted-by":"crossref","unstructured":"[6] N.\u00a0Jacob, C.\u00a0Ave and C.\u00a0Brodley, Offloading IDS computation to the GPU, in: 22nd Annual Computer Security Applications Conference, ACSAC\u201906, 2006, pp.\u00a0371\u2013380.","DOI":"10.1109\/ACSAC.2006.35"},{"key":"10.3233\/JHS-150509_ref7","doi-asserted-by":"crossref","unstructured":"[7] K.I.\u00a0Karantasis, E.D.\u00a0Polychronopoulos and G.N.\u00a0Dimitrakopoulos, Accelerating data clustering on GPU-based clusters under shared memory abstraction, in: 2010 IEEE International Conference on Cluster Computing Workshops and Posters (CLUSTER WORKSHOPS), September 2010, 2010, pp.\u00a01\u20135.","DOI":"10.1109\/CLUSTERWKSP.2010.5613079"},{"key":"10.3233\/JHS-150509_ref8","doi-asserted-by":"crossref","unstructured":"[8] E.\u00a0Kijsipongse, S.\u00a0U-ruekolan, C.\u00a0Ngamphiw and S.\u00a0Tongsima, Efficient large Pearson correlation matrix computing using hybrid MPI\/CUDA, in: 2011 Eighth International Joint Conference on Computer Science and Software Engineering, May 2011, 2011, pp.\u00a0237\u2013241.","DOI":"10.1109\/JCSSE.2011.5930127"},{"key":"10.3233\/JHS-150509_ref9","doi-asserted-by":"crossref","unstructured":"[9] D.\u00a0Li, Z.\u00a0Li, L.\u00a0Wang and M.\u00a0Roesch, Reducing false positives based on time sequence analysis, in: Fourth International Conference on Fuzzy Systems and Knowledge Discovery (FSKD), 2007, pp.\u00a067\u201371.","DOI":"10.1109\/FSKD.2007.464"},{"key":"10.3233\/JHS-150509_ref10","doi-asserted-by":"crossref","unstructured":"[10] C.\u00a0Mei, H.\u00a0Jiang and J.\u00a0Jenness, CUDA-based AES parallelization with fine-tuned GPU memory utilization, in: 2010 IEEE International Symposium on Parallel & Distributed Processing, Workshops and PhD Forum (IPDPSW), 2010, pp.\u00a01\u20137.","DOI":"10.1109\/IPDPSW.2010.5470766"},{"issue":"2","key":"10.3233\/JHS-150509_ref11","first-page":"416","article-title":"A cooperative GPU-based approach for alert aggregation","volume":"2","author":"Narimani","year":"2014","journal-title":"International Journal of Computer and Information Technologies (IJOCIT)"},{"key":"10.3233\/JHS-150509_ref14","doi-asserted-by":"crossref","unstructured":"[14] J.\u00a0Platos, P.\u00a0Kromer, V.\u00a0Snasel and A.\u00a0Abraham, Scaling IDS construction based on non-negative matrix factorization using GPU computing, in: Sixth International Conference on Information Assurance and Security Scaling, 2010, pp.\u00a086\u201391.","DOI":"10.1109\/ISIAS.2010.5604048"},{"key":"10.3233\/JHS-150509_ref15","doi-asserted-by":"crossref","unstructured":"[15] S.\u00a0Roschke, F.\u00a0Cheng and C.\u00a0Meinel, A flexible and efficient alert correlation platform for distributed IDS, in: Fourth International Conference on Network and System Security, 2010.","DOI":"10.1109\/NSS.2010.26"},{"key":"10.3233\/JHS-150509_ref16","doi-asserted-by":"crossref","unstructured":"[16] S.\u00a0Roschke, F.\u00a0Cheng and C.\u00a0Meinel, A new alert correlation algorithm based on attack graph, in: Proceedings of the 4th International Conference on Computational Intelligence in Security for Information Systems (CISIS), June 2011, 2011, pp.\u00a058\u201367.","DOI":"10.1007\/978-3-642-21323-6_8"},{"key":"10.3233\/JHS-150509_ref17","doi-asserted-by":"crossref","unstructured":"[17] R.\u00a0Smith, N.\u00a0Goyal, J.\u00a0Ormont, K.\u00a0Sankaralingam and C.\u00a0Estan, Evaluating GPUs for network packet signature matching, in: 2009 IEEE International Symposium on Performance Analysis of Systems and Software, April 2009, 2009, pp.\u00a0175\u2013184.","DOI":"10.1109\/ISPASS.2009.4919649"},{"key":"10.3233\/JHS-150509_ref18","doi-asserted-by":"crossref","unstructured":"[18] W.\u00a0Sun and R.\u00a0Ricci, Fast and flexible: Parallel packet processing with GPUs and click, in: ACM\/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS), 2013.","DOI":"10.1109\/ANCS.2013.6665173"},{"key":"10.3233\/JHS-150509_ref19","doi-asserted-by":"crossref","unstructured":"[19] A.E.\u00a0Taha and I.A.\u00a0Ghaffar, Agent based correlation model for intrusion detection alerts, in: 2010 IEEE International Conference on Intelligence and Security Informatics (ISI), 2010, pp.\u00a089\u201394.","DOI":"10.1109\/ISI.2010.5484771"},{"key":"10.3233\/JHS-150509_ref20","doi-asserted-by":"crossref","unstructured":"[20] G.\u00a0Tedesco and U.\u00a0Aickelin, Real-time alert correlation with type graphs, in: Proceedings of the 4th International Conference on Information Systems Security (ICISS), 2008, pp.\u00a0173\u2013187.","DOI":"10.1007\/978-3-540-89862-7_16"},{"key":"10.3233\/JHS-150509_ref22","doi-asserted-by":"crossref","unstructured":"[22] A.\u00a0Valdes and K.\u00a0Skinner, Probabilistic alert correlation, in: SRI International, 2001, pp.\u00a054\u201368.","DOI":"10.1007\/3-540-45474-8_4"},{"key":"10.3233\/JHS-150509_ref24","doi-asserted-by":"crossref","unstructured":"[24] H.\u00a0Waita Njogu, Using alert cluster to reduce IDS alerts, in: 2010 3rd International Conference on Computer Science and Information Technology, July 2010, 2010.","DOI":"10.1109\/ICCSIT.2010.5563925"},{"key":"10.3233\/JHS-150509_ref25","doi-asserted-by":"crossref","unstructured":"[25] R.\u00a0Wu, B.\u00a0Zhang and M.\u00a0Hsu, Clustering billions of data points using GPUs, in: UCHPC-MAW\u201909, 2009, pp.\u00a01\u20135.","DOI":"10.1145\/1531666.1531668"},{"key":"10.3233\/JHS-150509_ref26","doi-asserted-by":"crossref","unstructured":"[26] S.\u00a0Xiao, Y.\u00a0Zhang, X.\u00a0Liu and J.\u00a0Gao, Alert fusion based on cluster and correlation analysis, in: 2008 International Conference on Convergence and Hybrid Information Technology, 2008, pp.\u00a0163\u2013168.","DOI":"10.1109\/ICHIT.2008.197"},{"key":"10.3233\/JHS-150509_ref27","doi-asserted-by":"crossref","unstructured":"[27] S.\u00a0Yuan and C.\u00a0Zou, The security operations center based on correlation analysis, in: 2011 IEEE 3rd International Conference on Communication Software and Networks, May 2011, 2011, pp.\u00a0334\u2013337.","DOI":"10.1109\/ICCSN.2011.6013727"}],"container-title":["Journal of High Speed Networks"],"original-title":[],"link":[{"URL":"https:\/\/content.iospress.com\/download?id=10.3233\/JHS-150509","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T08:43:48Z","timestamp":1777452228000},"score":1,"resource":{"primary":{"URL":"https:\/\/journals.sagepub.com\/doi\/full\/10.3233\/JHS-150509"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,5,15]]},"references-count":22,"journal-issue":{"issue":"1"},"URL":"https:\/\/doi.org\/10.3233\/jhs-150509","relation":{},"ISSN":["1875-8940","0926-6801"],"issn-type":[{"value":"1875-8940","type":"electronic"},{"value":"0926-6801","type":"print"}],"subject":[],"published":{"date-parts":[[2015,5,15]]}}}