Full metadata record
DC FieldValueLanguage
dc.contributor.authorTHEODORIDIS GEORGIOSen_GB
dc.contributor.authorBENOIST Thierryen_GB
dc.date.accessioned2016-11-11T01:19:58Z-
dc.date.available2016-11-09en_GB
dc.date.available2016-11-11T01:19:58Z-
dc.date.created2016-05-31en_GB
dc.date.issued2016en_GB
dc.date.submitted2015-09-23en_GB
dc.identifier.isbn978-1-5090-2020-1en_GB
dc.identifier.urihttp://ieeexplore.ieee.org/document/7498301/en_GB
dc.identifier.urihttp://publications.jrc.ec.europa.eu/repository/handle/JRC97603-
dc.description.abstractLeveraging the ICT evolution, the modern systems collect voluminous sets of monitoring data, which are analysed in order to increase the system's situational awareness. Apart from the regular activity this bulk of monitoring information may also include instances of anomalous operation, which need to be detected and examined thoroughly so as their root causes to be identified. Hence, for an alert mechanism it is crucial to investigate the cross-correlations among the suspicious monitoring traces not only with each other but also against the overall monitoring data, in order to discover any high spatio-temporal concentration of abnormal occurrences that could be considered as evidence of an underlying system malfunction. To this end, this paper presents a novel clustering algorithm that groups instances of problematic behaviour not only according to their concentration but also with respect to the presence of normal activity. On this basis, the proposed algorithm operates at two proximity scales, so as to allow for combining more distant anomalous observations that are not however interrupted by regular feedback. Regardless of the initial motivation, the clustering algorithm is applicable to any case of objects that share a common feature and for which areas of high density in comparison with the rest of the population are examined.en_GB
dc.description.sponsorshipJRC.E.2-Technology Innovation in Securityen_GB
dc.format.mediumOnlineen_GB
dc.languageENGen_GB
dc.publisherIEEEen_GB
dc.relation.ispartofseriesJRC97603en_GB
dc.titleClEveR: Clustering Events with High Density of True-to-False Occurrence Ratioen_GB
dc.typeArticles in periodicals and booksen_GB
dc.identifier.doi10.1109/ICDE.2016.7498301en_GB
JRC Directorate:Space, Security and Migration

Files in This Item:
There are no files associated with this item.


Items in repository are protected by copyright, with all rights reserved, unless otherwise indicated.