FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2040093904> ?p ?o ?g. }

• W2040093904 abstract "An important data source for intrusion forensics is various types of logs from the systems and networks being investigated. However, there are still many problems when using these logs for forensic analysis. Firstly, with the development of computers and Internet, intrusion behaviors involve more types and more quantities of logs, and these massive and complex log evidences make forensics analyst overwhelmed. Secondly, among the large number of logs that investigators need to analyze, the data related to criminal behaviors only accounts for a very small proportion and most of the rest data are useless records resulted from normal behaviors. Large amount of forensic data and high proportion of useless records make it very difficult to investigate and collect evidences. In addition, this makes criminal behaviors that submerged in a large amount of useless records easily overlooked. This paper introduces a new method for the reduction of candidate log evidences for intrusion forensics. Its main idea is to extract the key attribute fields as features of log records and assign a score to each log record. This score is used to indicate the degree of redundancy of the record. The greater the score is, the more likely the records are redundant. Our experiments based on Darpa2000 and Snort real-world data show that this method can significantly reduce the interference caused by useless data for forensic analysis: it removes 57% and 82% useless data in Darpa2000 and the Snort real-world data, respectively." @default.
• W2040093904 created "2016-06-24" @default.
• W2040093904 creator A5001671734 @default.
• W2040093904 creator A5017694550 @default.
• W2040093904 creator A5057209439 @default.
• W2040093904 creator A5060514022 @default.
• W2040093904 creator A5086533374 @default.
• W2040093904 date "2013-07-01" @default.
• W2040093904 modified "2023-09-25" @default.
• W2040093904 title "A Method to Automatically Filter Log Evidences for Intrusion Forensics" @default.
• W2040093904 cites W1543764713 @default.
• W2040093904 cites W1576154654 @default.
• W2040093904 cites W2073165180 @default.
• W2040093904 cites W2079557269 @default.
• W2040093904 cites W2090581098 @default.
• W2040093904 cites W3216240862 @default.
• W2040093904 cites W3023291997 @default.
• W2040093904 doi "https://doi.org/10.1109/icdcsw.2013.7" @default.
• W2040093904 hasPublicationYear "2013" @default.
• W2040093904 type Work @default.
• W2040093904 sameAs 2040093904 @default.
• W2040093904 citedByCount "1" @default.
• W2040093904 countsByYear W20400939042014 @default.
• W2040093904 crossrefType "proceedings-article" @default.
• W2040093904 hasAuthorship W2040093904A5001671734 @default.
• W2040093904 hasAuthorship W2040093904A5017694550 @default.
• W2040093904 hasAuthorship W2040093904A5057209439 @default.
• W2040093904 hasAuthorship W2040093904A5060514022 @default.
• W2040093904 hasAuthorship W2040093904A5086533374 @default.
• W2040093904 hasConcept C110875604 @default.
• W2040093904 hasConcept C111919701 @default.
• W2040093904 hasConcept C124101348 @default.
• W2040093904 hasConcept C127313418 @default.
• W2040093904 hasConcept C136764020 @default.
• W2040093904 hasConcept C152124472 @default.
• W2040093904 hasConcept C158251709 @default.
• W2040093904 hasConcept C17409809 @default.
• W2040093904 hasConcept C35525427 @default.
• W2040093904 hasConcept C38652104 @default.
• W2040093904 hasConcept C41008148 @default.
• W2040093904 hasConcept C50747538 @default.
• W2040093904 hasConcept C556601545 @default.
• W2040093904 hasConcept C84418412 @default.
• W2040093904 hasConceptScore W2040093904C110875604 @default.
• W2040093904 hasConceptScore W2040093904C111919701 @default.
• W2040093904 hasConceptScore W2040093904C124101348 @default.
• W2040093904 hasConceptScore W2040093904C127313418 @default.
• W2040093904 hasConceptScore W2040093904C136764020 @default.
• W2040093904 hasConceptScore W2040093904C152124472 @default.
• W2040093904 hasConceptScore W2040093904C158251709 @default.
• W2040093904 hasConceptScore W2040093904C17409809 @default.
• W2040093904 hasConceptScore W2040093904C35525427 @default.
• W2040093904 hasConceptScore W2040093904C38652104 @default.
• W2040093904 hasConceptScore W2040093904C41008148 @default.
• W2040093904 hasConceptScore W2040093904C50747538 @default.
• W2040093904 hasConceptScore W2040093904C556601545 @default.
• W2040093904 hasConceptScore W2040093904C84418412 @default.
• W2040093904 hasLocation W20400939041 @default.
• W2040093904 hasOpenAccess W2040093904 @default.
• W2040093904 hasPrimaryLocation W20400939041 @default.
• W2040093904 hasRelatedWork W1487097201 @default.
• W2040093904 hasRelatedWork W2062673103 @default.
• W2040093904 hasRelatedWork W2091504194 @default.
• W2040093904 hasRelatedWork W2181713745 @default.
• W2040093904 hasRelatedWork W2197418459 @default.
• W2040093904 hasRelatedWork W2369849229 @default.
• W2040093904 hasRelatedWork W2518015759 @default.
• W2040093904 hasRelatedWork W2558918659 @default.
• W2040093904 hasRelatedWork W2591546471 @default.
• W2040093904 hasRelatedWork W2610324658 @default.
• W2040093904 hasRelatedWork W2738876274 @default.
• W2040093904 hasRelatedWork W2751639377 @default.
• W2040093904 hasRelatedWork W2794671739 @default.
• W2040093904 hasRelatedWork W2880602414 @default.
• W2040093904 hasRelatedWork W2953448948 @default.
• W2040093904 hasRelatedWork W2963769237 @default.
• W2040093904 hasRelatedWork W2968524983 @default.
• W2040093904 hasRelatedWork W3089157269 @default.
• W2040093904 hasRelatedWork W3109487422 @default.
• W2040093904 hasRelatedWork W247080092 @default.
• W2040093904 isParatext "false" @default.
• W2040093904 isRetracted "false" @default.
• W2040093904 magId "2040093904" @default.
• W2040093904 workType "article" @default.