{"id":"https://openalex.org/W3007038242","doi":"https://doi.org/10.1109/bigdata47090.2019.9005981","title":"IoT Malware Dynamic Analysis Profiling System and Family Behavior Analysis","display_name":"IoT Malware Dynamic Analysis Profiling System and Family Behavior Analysis","publication_year":2019,"publication_date":"2019-12-01","ids":{"openalex":"https://openalex.org/W3007038242","doi":"https://doi.org/10.1109/bigdata47090.2019.9005981","mag":"3007038242"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata47090.2019.9005981","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata47090.2019.9005981","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5089973120","display_name":"Chen Cheng-Yu","orcid":null},"institutions":[{"id":"https://openalex.org/I87354575","display_name":"National Chengchi University","ror":"https://ror.org/03rqk8h36","country_code":"TW","type":"education","lineage":["https://openalex.org/I87354575"]}],"countries":["TW"],"is_corresponding":true,"raw_author_name":"Cheng-Yu Chen","raw_affiliation_strings":["Department of Managemnet Information Systems, National Chengchi University, Taipei, Taiwan"],"affiliations":[{"raw_affiliation_string":"Department of Managemnet Information Systems, National Chengchi University, Taipei, Taiwan","institution_ids":["https://openalex.org/I87354575"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5022953646","display_name":"Shun-Wen Hsiao","orcid":"https://orcid.org/0000-0003-0780-8144"},"institutions":[{"id":"https://openalex.org/I87354575","display_name":"National Chengchi University","ror":"https://ror.org/03rqk8h36","country_code":"TW","type":"education","lineage":["https://openalex.org/I87354575"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Shun-Wen Hsiao","raw_affiliation_strings":["Department of Managemnet Information Systems, National Chengchi University, Taipei, Taiwan"],"affiliations":[{"raw_affiliation_string":"Department of Managemnet Information Systems, National Chengchi University, Taipei, Taiwan","institution_ids":["https://openalex.org/I87354575"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5089973120"],"corresponding_institution_ids":["https://openalex.org/I87354575"],"apc_list":null,"apc_paid":null,"fwci":0.1768,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.57567509,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"6013","last_page":"6015"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.996399998664856,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9031120538711548},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8482897281646729},{"id":"https://openalex.org/keywords/profiling","display_name":"Profiling (computer programming)","score":0.7940464019775391},{"id":"https://openalex.org/keywords/malware-analysis","display_name":"Malware analysis","score":0.7217769026756287},{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.5959645509719849},{"id":"https://openalex.org/keywords/virtual-machine","display_name":"Virtual machine","score":0.5874115824699402},{"id":"https://openalex.org/keywords/hypervisor","display_name":"Hypervisor","score":0.4911331832408905},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.45770689845085144},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.44696494936943054},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.4461447596549988},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.4298182427883148},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.3208343982696533},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.31238290667533875},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.13899052143096924},{"id":"https://openalex.org/keywords/virtualization","display_name":"Virtualization","score":0.11223754286766052}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9031120538711548},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8482897281646729},{"id":"https://openalex.org/C187191949","wikidata":"https://www.wikidata.org/wiki/Q1138496","display_name":"Profiling (computer programming)","level":2,"score":0.7940464019775391},{"id":"https://openalex.org/C2779395397","wikidata":"https://www.wikidata.org/wiki/Q15731404","display_name":"Malware analysis","level":3,"score":0.7217769026756287},{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.5959645509719849},{"id":"https://openalex.org/C25344961","wikidata":"https://www.wikidata.org/wiki/Q192726","display_name":"Virtual machine","level":2,"score":0.5874115824699402},{"id":"https://openalex.org/C112904061","wikidata":"https://www.wikidata.org/wiki/Q1077480","display_name":"Hypervisor","level":4,"score":0.4911331832408905},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.45770689845085144},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.44696494936943054},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.4461447596549988},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.4298182427883148},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.3208343982696533},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.31238290667533875},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.13899052143096924},{"id":"https://openalex.org/C513985346","wikidata":"https://www.wikidata.org/wiki/Q270471","display_name":"Virtualization","level":3,"score":0.11223754286766052}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata47090.2019.9005981","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata47090.2019.9005981","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.44999998807907104}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W1974326986","https://openalex.org/W2005662348","https://openalex.org/W2112731379","https://openalex.org/W2888974175","https://openalex.org/W2962756421","https://openalex.org/W6754375631"],"related_works":["https://openalex.org/W4285507391","https://openalex.org/W3107556205","https://openalex.org/W2610659201","https://openalex.org/W2067547021","https://openalex.org/W2805262980","https://openalex.org/W4234891089","https://openalex.org/W2469346691","https://openalex.org/W3211525895","https://openalex.org/W2765174411","https://openalex.org/W2965893286"],"abstract_inverted_index":{"Not":[0],"only":[1],"the":[2,20,72,109],"number":[3],"of":[4,12],"deployed":[5],"IoT":[6,13,24,49,100],"devices":[7],"increases":[8],"but":[9,26],"also":[10],"that":[11,92],"malware":[14,25,50],"increases.":[15],"We":[16,36,102],"eager":[17],"to":[18,30,46,63,84,107,115],"understand":[19],"threat":[21],"made":[22],"by":[23,89,99],"we":[27],"lack":[28],"tools":[29],"observe,":[31],"analyze":[32],"and":[33,38,69],"detect":[34],"them.":[35],"design":[37],"implement":[39],"an":[40],"automatic,":[41],"virtual":[42,77],"machine-based":[43],"profiling":[44,65,74],"system":[45,57,75],"collect":[47],"valuable":[48],"behavior,":[51],"such":[52],"as":[53],"API":[54,81,86],"call":[55,58,87],"invocation,":[56],"execution,":[59],"etc.":[60],"In":[61],"addition":[62],"conventional":[64],"methods":[66],"(e.g.,":[67],"strace":[68],"packet":[70],"capture),":[71],"proposed":[73],"adapts":[76],"machine":[78],"introspection":[79,94],"based":[80],"hooking":[82],"technique":[83],"intercept":[85],"invocation":[88],"malware,":[90],"so":[91],"our":[93],"would":[95],"not":[96],"be":[97],"detected":[98],"malware.":[101],"then":[103],"propose":[104],"a":[105,116],"method":[106],"convert":[108],"multiple":[110],"sequential":[111],"data":[112],"(API":[113],"calls)":[114],"family":[117],"behavior":[118],"graph":[119],"for":[120],"further":[121],"analysis.":[122]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}