{"id":"https://openalex.org/W2800557391","doi":"https://doi.org/10.1016/j.knosys.2018.04.033","title":"Trusted system-calls analysis methodology aimed at detection of compromised virtual machines using sequential mining","display_name":"Trusted system-calls analysis methodology aimed at detection of compromised virtual machines using sequential mining","publication_year":2018,"publication_date":"2018-04-27","ids":{"openalex":"https://openalex.org/W2800557391","doi":"https://doi.org/10.1016/j.knosys.2018.04.033","mag":"2800557391"},"language":"en","primary_location":{"id":"doi:10.1016/j.knosys.2018.04.033","is_oa":false,"landing_page_url":"https://doi.org/10.1016/j.knosys.2018.04.033","pdf_url":null,"source":{"id":"https://openalex.org/S10169007","display_name":"Knowledge-Based Systems","issn_l":"0950-7051","issn":["0950-7051","1872-7409"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Knowledge-Based Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5006355294","display_name":"Nir Nissim","orcid":"https://orcid.org/0000-0003-0652-8861"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Nir Nissim","raw_affiliation_strings":["Department of Industrial Engineering and Management, Ben-Gurion University of the Negev, Beer-Sheva, Israel","Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"raw_orcid":"https://orcid.org/0000-0003-0652-8861","affiliations":[{"raw_affiliation_string":"Department of Industrial Engineering and Management, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]},{"raw_affiliation_string":"Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069455882","display_name":"Yuval Lapidot","orcid":null},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Yuval Lapidot","raw_affiliation_strings":["Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel","Department of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]},{"raw_affiliation_string":"Department of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035352952","display_name":"Aviad Cohen","orcid":"https://orcid.org/0000-0001-9976-0525"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Aviad Cohen","raw_affiliation_strings":["Department of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]},{"raw_affiliation_string":"Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5072913672","display_name":"Yuval Elovici","orcid":"https://orcid.org/0000-0002-9641-128X"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Yuval Elovici","raw_affiliation_strings":["Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel","Department of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Malware Lab, Cyber Security Research Center, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]},{"raw_affiliation_string":"Department of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5006355294"],"corresponding_institution_ids":["https://openalex.org/I124227911"],"apc_list":{"value":3130,"currency":"USD","value_usd":3130},"apc_paid":null,"fwci":4.3214,"has_fulltext":false,"cited_by_count":50,"citation_normalized_percentile":{"value":0.95277234,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"153","issue":null,"first_page":"147","last_page":"175"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9133313894271851},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7842047810554504},{"id":"https://openalex.org/keywords/ransomware","display_name":"Ransomware","score":0.7022042870521545},{"id":"https://openalex.org/keywords/virtual-machine","display_name":"Virtual machine","score":0.6496328711509705},{"id":"https://openalex.org/keywords/virtualization","display_name":"Virtualization","score":0.597216784954071},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.5367053747177124},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5195087194442749},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.4927661716938019},{"id":"https://openalex.org/keywords/malware-analysis","display_name":"Malware analysis","score":0.46326759457588196},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3850049376487732}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9133313894271851},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7842047810554504},{"id":"https://openalex.org/C2777667771","wikidata":"https://www.wikidata.org/wiki/Q926331","display_name":"Ransomware","level":3,"score":0.7022042870521545},{"id":"https://openalex.org/C25344961","wikidata":"https://www.wikidata.org/wiki/Q192726","display_name":"Virtual machine","level":2,"score":0.6496328711509705},{"id":"https://openalex.org/C513985346","wikidata":"https://www.wikidata.org/wiki/Q270471","display_name":"Virtualization","level":3,"score":0.597216784954071},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.5367053747177124},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5195087194442749},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.4927661716938019},{"id":"https://openalex.org/C2779395397","wikidata":"https://www.wikidata.org/wiki/Q15731404","display_name":"Malware analysis","level":3,"score":0.46326759457588196},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3850049376487732}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1016/j.knosys.2018.04.033","is_oa":false,"landing_page_url":"https://doi.org/10.1016/j.knosys.2018.04.033","pdf_url":null,"source":{"id":"https://openalex.org/S10169007","display_name":"Knowledge-Based Systems","issn_l":"0950-7051","issn":["0950-7051","1872-7409"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Knowledge-Based Systems","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.5099999904632568,"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":77,"referenced_works":["https://openalex.org/W12621372","https://openalex.org/W1482612322","https://openalex.org/W1497716074","https://openalex.org/W1575078351","https://openalex.org/W1965555277","https://openalex.org/W1966150547","https://openalex.org/W1966917005","https://openalex.org/W1969228310","https://openalex.org/W1993345391","https://openalex.org/W1997708491","https://openalex.org/W2003568760","https://openalex.org/W2005662348","https://openalex.org/W2010376606","https://openalex.org/W2012037052","https://openalex.org/W2040527645","https://openalex.org/W2041771494","https://openalex.org/W2069720347","https://openalex.org/W2079215333","https://openalex.org/W2110143557","https://openalex.org/W2111038628","https://openalex.org/W2115638030","https://openalex.org/W2118534519","https://openalex.org/W2118558829","https://openalex.org/W2119359024","https://openalex.org/W2128213437","https://openalex.org/W2129860818","https://openalex.org/W2131646073","https://openalex.org/W2132174782","https://openalex.org/W2147694185","https://openalex.org/W2156838504","https://openalex.org/W2167240430","https://openalex.org/W2251062790","https://openalex.org/W2261775381","https://openalex.org/W2280263187","https://openalex.org/W2296579688","https://openalex.org/W2305913748","https://openalex.org/W2307721494","https://openalex.org/W2313993839","https://openalex.org/W2342877402","https://openalex.org/W2344060479","https://openalex.org/W2461373307","https://openalex.org/W2463535935","https://openalex.org/W2471456063","https://openalex.org/W2513529237","https://openalex.org/W2539286694","https://openalex.org/W2544541072","https://openalex.org/W2557716486","https://openalex.org/W2573910544","https://openalex.org/W2609889289","https://openalex.org/W2998066361","https://openalex.org/W4206109607","https://openalex.org/W4233475566","https://openalex.org/W4239110337","https://openalex.org/W4249470176","https://openalex.org/W4251697274","https://openalex.org/W4251999915","https://openalex.org/W4285719527","https://openalex.org/W4300610489","https://openalex.org/W4301289263","https://openalex.org/W6600508434","https://openalex.org/W6629750234","https://openalex.org/W6634225516","https://openalex.org/W6641921967","https://openalex.org/W6642649624","https://openalex.org/W6648866500","https://openalex.org/W6651884128","https://openalex.org/W6653346286","https://openalex.org/W6661115517","https://openalex.org/W6677288767","https://openalex.org/W6682094280","https://openalex.org/W6683247678","https://openalex.org/W6684614861","https://openalex.org/W6692753825","https://openalex.org/W6699112556","https://openalex.org/W6725888052","https://openalex.org/W6729126028","https://openalex.org/W6732748298"],"related_works":["https://openalex.org/W2469507153","https://openalex.org/W2008790809","https://openalex.org/W2964256930","https://openalex.org/W2768892939","https://openalex.org/W4285507391","https://openalex.org/W3164408430","https://openalex.org/W2397240470","https://openalex.org/W2602767565","https://openalex.org/W2088620127","https://openalex.org/W170652726"],"abstract_inverted_index":null,"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":11},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":5},{"year":2020,"cited_by_count":10},{"year":2019,"cited_by_count":10},{"year":2018,"cited_by_count":1}],"updated_date":"2026-05-14T08:36:36.166977","created_date":"2025-10-10T00:00:00"}