{"id":"https://openalex.org/W1832277845","doi":"https://doi.org/10.1007/978-3-540-39650-5_19","title":"On the Detection of Anomalous System Call Arguments","display_name":"On the Detection of Anomalous System Call Arguments","publication_year":2003,"publication_date":"2003-01-01","ids":{"openalex":"https://openalex.org/W1832277845","doi":"https://doi.org/10.1007/978-3-540-39650-5_19","mag":"1832277845"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-540-39650-5_19","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-540-39650-5_19","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5022177364","display_name":"Christopher Kruegel","orcid":"https://orcid.org/0000-0001-5140-3414"},"institutions":[{"id":"https://openalex.org/I154570441","display_name":"University of California, Santa Barbara","ror":"https://ror.org/02t274463","country_code":"US","type":"education","lineage":["https://openalex.org/I154570441"]},{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]},{"id":"https://openalex.org/I4210109270","display_name":"Reliable Software Resources (United States)","ror":"https://ror.org/01v5fm873","country_code":"US","type":"company","lineage":["https://openalex.org/I4210109270"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Christopher Kruegel","raw_affiliation_strings":["Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","University of California"],"affiliations":[{"raw_affiliation_string":"Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","institution_ids":["https://openalex.org/I154570441","https://openalex.org/I4210109270"]},{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060298139","display_name":"D. Mutz","orcid":null},"institutions":[{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]},{"id":"https://openalex.org/I4210109270","display_name":"Reliable Software Resources (United States)","ror":"https://ror.org/01v5fm873","country_code":"US","type":"company","lineage":["https://openalex.org/I4210109270"]},{"id":"https://openalex.org/I154570441","display_name":"University of California, Santa Barbara","ror":"https://ror.org/02t274463","country_code":"US","type":"education","lineage":["https://openalex.org/I154570441"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Darren Mutz","raw_affiliation_strings":["Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","University of California"],"affiliations":[{"raw_affiliation_string":"Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","institution_ids":["https://openalex.org/I154570441","https://openalex.org/I4210109270"]},{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5111942664","display_name":"Fredrik Valeur","orcid":null},"institutions":[{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]},{"id":"https://openalex.org/I4210109270","display_name":"Reliable Software Resources (United States)","ror":"https://ror.org/01v5fm873","country_code":"US","type":"company","lineage":["https://openalex.org/I4210109270"]},{"id":"https://openalex.org/I154570441","display_name":"University of California, Santa Barbara","ror":"https://ror.org/02t274463","country_code":"US","type":"education","lineage":["https://openalex.org/I154570441"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Fredrik Valeur","raw_affiliation_strings":["Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","University of California"],"affiliations":[{"raw_affiliation_string":"Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","institution_ids":["https://openalex.org/I154570441","https://openalex.org/I4210109270"]},{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5075685499","display_name":"Giovanni Vigna","orcid":"https://orcid.org/0000-0002-3422-5369"},"institutions":[{"id":"https://openalex.org/I154570441","display_name":"University of California, Santa Barbara","ror":"https://ror.org/02t274463","country_code":"US","type":"education","lineage":["https://openalex.org/I154570441"]},{"id":"https://openalex.org/I4210109270","display_name":"Reliable Software Resources (United States)","ror":"https://ror.org/01v5fm873","country_code":"US","type":"company","lineage":["https://openalex.org/I4210109270"]},{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Giovanni Vigna","raw_affiliation_strings":["Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","University of California"],"affiliations":[{"raw_affiliation_string":"Reliable Software Group, Department of Computer Science, University of California, Santa Barbara","institution_ids":["https://openalex.org/I154570441","https://openalex.org/I4210109270"]},{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5022177364"],"corresponding_institution_ids":["https://openalex.org/I154570441","https://openalex.org/I2803209242","https://openalex.org/I4210109270"],"apc_list":{"value":5000,"currency":"EUR","value_usd":5392},"apc_paid":null,"fwci":13.0747,"has_fulltext":false,"cited_by_count":199,"citation_normalized_percentile":{"value":0.98929459,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":93,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"326","last_page":"343"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.8793771266937256},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8647500872612},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.8148605823516846},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.8067259788513184},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7885152697563171},{"id":"https://openalex.org/keywords/anomaly-based-intrusion-detection-system","display_name":"Anomaly-based intrusion detection system","score":0.7623445987701416},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.606591522693634},{"id":"https://openalex.org/keywords/anomaly","display_name":"Anomaly (physics)","score":0.540902316570282},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5397312641143799},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.5284528732299805},{"id":"https://openalex.org/keywords/host","display_name":"Host (biology)","score":0.5187039971351624},{"id":"https://openalex.org/keywords/misuse-detection","display_name":"Misuse detection","score":0.5008413791656494},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3734615743160248},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.36531227827072144},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.24750453233718872}],"concepts":[{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.8793771266937256},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8647500872612},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.8148605823516846},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.8067259788513184},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7885152697563171},{"id":"https://openalex.org/C137524506","wikidata":"https://www.wikidata.org/wiki/Q2247688","display_name":"Anomaly-based intrusion detection system","level":3,"score":0.7623445987701416},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.606591522693634},{"id":"https://openalex.org/C12997251","wikidata":"https://www.wikidata.org/wiki/Q567560","display_name":"Anomaly (physics)","level":2,"score":0.540902316570282},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5397312641143799},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.5284528732299805},{"id":"https://openalex.org/C126831891","wikidata":"https://www.wikidata.org/wiki/Q221673","display_name":"Host (biology)","level":2,"score":0.5187039971351624},{"id":"https://openalex.org/C2776973144","wikidata":"https://www.wikidata.org/wiki/Q6880649","display_name":"Misuse detection","level":4,"score":0.5008413791656494},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3734615743160248},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.36531227827072144},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.24750453233718872},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C18903297","wikidata":"https://www.wikidata.org/wiki/Q7150","display_name":"Ecology","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C26873012","wikidata":"https://www.wikidata.org/wiki/Q214781","display_name":"Condensed matter physics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/978-3-540-39650-5_19","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-540-39650-5_19","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W34732858","https://openalex.org/W252677323","https://openalex.org/W341673680","https://openalex.org/W1497959280","https://openalex.org/W1516211918","https://openalex.org/W1516506771","https://openalex.org/W1575798196","https://openalex.org/W1587265799","https://openalex.org/W1621186777","https://openalex.org/W1981276685","https://openalex.org/W2012568697","https://openalex.org/W2056099894","https://openalex.org/W2115348994","https://openalex.org/W2123886726","https://openalex.org/W2125735062","https://openalex.org/W2128217000","https://openalex.org/W2129860818","https://openalex.org/W2130523241","https://openalex.org/W2132625653","https://openalex.org/W2134070140","https://openalex.org/W2135143063","https://openalex.org/W2149086123","https://openalex.org/W2150847526","https://openalex.org/W2162995740","https://openalex.org/W2402789968","https://openalex.org/W4290757805","https://openalex.org/W4302114916"],"related_works":["https://openalex.org/W2106474518","https://openalex.org/W2369534771","https://openalex.org/W3036013726","https://openalex.org/W2337148208","https://openalex.org/W2107592864","https://openalex.org/W11100131","https://openalex.org/W2183313954","https://openalex.org/W1969635302","https://openalex.org/W3146948916","https://openalex.org/W2148459958"],"abstract_inverted_index":null,"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":7},{"year":2019,"cited_by_count":5},{"year":2018,"cited_by_count":8},{"year":2017,"cited_by_count":9},{"year":2016,"cited_by_count":5},{"year":2015,"cited_by_count":8},{"year":2014,"cited_by_count":7},{"year":2013,"cited_by_count":10},{"year":2012,"cited_by_count":12}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}