{"id":"https://openalex.org/W4205737303","doi":"https://doi.org/10.1109/bigdata52589.2021.9671355","title":"Zero-day Malware Detection using Threshold-free Autoencoding Architecture","display_name":"Zero-day Malware Detection using Threshold-free Autoencoding Architecture","publication_year":2021,"publication_date":"2021-12-15","ids":{"openalex":"https://openalex.org/W4205737303","doi":"https://doi.org/10.1109/bigdata52589.2021.9671355"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata52589.2021.9671355","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata52589.2021.9671355","pdf_url":null,"source":{"id":"https://openalex.org/S4363607718","display_name":"2021 IEEE International Conference on Big Data (Big Data)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5018939520","display_name":"Chiho Kim","orcid":"https://orcid.org/0000-0002-1814-4980"},"institutions":[{"id":"https://openalex.org/I206651237","display_name":"Texas A&M University \u2013 Commerce","ror":"https://ror.org/01red3556","country_code":"US","type":"education","lineage":["https://openalex.org/I206651237"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Chiho Kim","raw_affiliation_strings":["Computer Science Department, Texas A&M University, Commerce, TX, USA"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, Texas A&M University, Commerce, TX, USA","institution_ids":["https://openalex.org/I206651237"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5025389734","display_name":"Sang\u2010Yoon Chang","orcid":"https://orcid.org/0000-0002-5736-5823"},"institutions":[{"id":"https://openalex.org/I888729015","display_name":"University of Colorado Colorado Springs","ror":"https://ror.org/054spjc55","country_code":"US","type":"education","lineage":["https://openalex.org/I888729015"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sang-Yoon Chang","raw_affiliation_strings":["Department of Computer Science, University of Colorado, Colorado Springs, CO, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Colorado, Colorado Springs, CO, USA","institution_ids":["https://openalex.org/I888729015"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5016013197","display_name":"Jonghyun Kim","orcid":"https://orcid.org/0000-0002-5532-2117"},"institutions":[{"id":"https://openalex.org/I142401562","display_name":"Electronics and Telecommunications Research Institute","ror":"https://ror.org/03ysstz10","country_code":"KR","type":"facility","lineage":["https://openalex.org/I142401562","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098"]},{"id":"https://openalex.org/I206651237","display_name":"Texas A&M University \u2013 Commerce","ror":"https://ror.org/01red3556","country_code":"US","type":"education","lineage":["https://openalex.org/I206651237"]}],"countries":["KR","US"],"is_corresponding":false,"raw_author_name":"Jonghyun Kim","raw_affiliation_strings":["Computer Science Department, Texas A&M University, Commerce, TX, USA","Cybersecurity Research Division, ETRI, Daejeon, Korea"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, Texas A&M University, Commerce, TX, USA","institution_ids":["https://openalex.org/I206651237"]},{"raw_affiliation_string":"Cybersecurity Research Division, ETRI, Daejeon, Korea","institution_ids":["https://openalex.org/I142401562"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100720909","display_name":"Dong\u2010Eun Lee","orcid":"https://orcid.org/0000-0001-9205-3836"},"institutions":[{"id":"https://openalex.org/I206651237","display_name":"Texas A&M University \u2013 Commerce","ror":"https://ror.org/01red3556","country_code":"US","type":"education","lineage":["https://openalex.org/I206651237"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Dongeun Lee","raw_affiliation_strings":["Computer Science Department, Texas A&M University, Commerce, TX, USA"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, Texas A&M University, Commerce, TX, USA","institution_ids":["https://openalex.org/I206651237"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101877231","display_name":"Jinoh Kim","orcid":"https://orcid.org/0000-0002-9835-1866"},"institutions":[{"id":"https://openalex.org/I206651237","display_name":"Texas A&M University \u2013 Commerce","ror":"https://ror.org/01red3556","country_code":"US","type":"education","lineage":["https://openalex.org/I206651237"]},{"id":"https://openalex.org/I142401562","display_name":"Electronics and Telecommunications Research Institute","ror":"https://ror.org/03ysstz10","country_code":"KR","type":"facility","lineage":["https://openalex.org/I142401562","https://openalex.org/I2801339556","https://openalex.org/I4210144908","https://openalex.org/I4387152098"]}],"countries":["KR","US"],"is_corresponding":false,"raw_author_name":"Jinoh Kim","raw_affiliation_strings":["Computer Science Department, Texas A&M University, Commerce, TX, USA","Cybersecurity Research Division, ETRI, Daejeon, Korea"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, Texas A&M University, Commerce, TX, USA","institution_ids":["https://openalex.org/I206651237"]},{"raw_affiliation_string":"Cybersecurity Research Division, ETRI, Daejeon, Korea","institution_ids":["https://openalex.org/I142401562"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5018939520"],"corresponding_institution_ids":["https://openalex.org/I206651237"],"apc_list":null,"apc_paid":null,"fwci":0.6881,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.73875084,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8255299925804138},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8129497170448303},{"id":"https://openalex.org/keywords/autoencoder","display_name":"Autoencoder","score":0.7175729274749756},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.6839208602905273},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6758210062980652},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.4807107746601105},{"id":"https://openalex.org/keywords/supervised-learning","display_name":"Supervised learning","score":0.47311684489250183},{"id":"https://openalex.org/keywords/classifier","display_name":"Classifier (UML)","score":0.4713781774044037},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.41419893503189087},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.39024072885513306},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3467339873313904},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.16146546602249146}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8255299925804138},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8129497170448303},{"id":"https://openalex.org/C101738243","wikidata":"https://www.wikidata.org/wiki/Q786435","display_name":"Autoencoder","level":3,"score":0.7175729274749756},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.6839208602905273},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6758210062980652},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.4807107746601105},{"id":"https://openalex.org/C136389625","wikidata":"https://www.wikidata.org/wiki/Q334384","display_name":"Supervised learning","level":3,"score":0.47311684489250183},{"id":"https://openalex.org/C95623464","wikidata":"https://www.wikidata.org/wiki/Q1096149","display_name":"Classifier (UML)","level":2,"score":0.4713781774044037},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.41419893503189087},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.39024072885513306},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3467339873313904},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.16146546602249146}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata52589.2021.9671355","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata52589.2021.9671355","pdf_url":null,"source":{"id":"https://openalex.org/S4363607718","display_name":"2021 IEEE International Conference on Big Data (Big Data)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6700000166893005,"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W1945616565","https://openalex.org/W2095577883","https://openalex.org/W2122646361","https://openalex.org/W2732916693","https://openalex.org/W2803697594","https://openalex.org/W2963197901","https://openalex.org/W3007481080","https://openalex.org/W3007580316","https://openalex.org/W3015625436","https://openalex.org/W3036847733","https://openalex.org/W3089994140","https://openalex.org/W3097911904","https://openalex.org/W3104141960","https://openalex.org/W3112311055","https://openalex.org/W3154326919","https://openalex.org/W3161594686","https://openalex.org/W3206875543","https://openalex.org/W6751494907","https://openalex.org/W6784203933"],"related_works":["https://openalex.org/W3013693939","https://openalex.org/W2159052453","https://openalex.org/W2566616303","https://openalex.org/W3131327266","https://openalex.org/W4297051394","https://openalex.org/W2752972570","https://openalex.org/W2734887215","https://openalex.org/W4321789545","https://openalex.org/W1586252162","https://openalex.org/W4292947472"],"abstract_inverted_index":{"The":[0,55,205],"impact":[1],"of":[2,21,47,68,114,136,157,179,203],"malware":[3,29,41,69,173,189],"attacks":[4,42,70],"has":[5,23],"been":[6,24],"getting":[7],"more":[8],"significant,":[9],"targeting":[10],"critical":[11],"infrastructures":[12],"as":[13,15],"well":[14],"commodity":[16],"computing":[17],"devices.":[18],"A":[19],"body":[20],"studies":[22,77],"carried":[25],"out":[26],"for":[27,63,187,218],"detecting":[28],"with":[30,92,170,182],"its":[31],"devastating":[32],"impacts,":[33],"but":[34,110,152],"they":[35],"are":[36],"often":[37],"limited":[38,91],"to":[39,44,141,153,184,194,200,212,223],"known":[40,201],"due":[43],"the":[45,48,99,112,115,134,155,158,177,195,210,225],"nature":[46],"signature-based":[49],"and":[50,97,126,138],"supervised":[51,196,229],"machine":[52],"learning":[53,57,230],"approaches.":[54],"semi-supervised":[56],"approach":[58,101],"would":[59],"be":[60,90],"an":[61,103,150,163],"option":[62],"identifying":[64,219],"previously":[65],"unseen":[66],"types":[67,202],"(i.e.,":[71],"zero-day":[72,188],"detection);":[73],"however,":[74],"our":[75,180],"preliminary":[76],"suggest":[78],"two":[79],"limitations":[80],"in":[81],"this":[82,120],"avenue:":[83],"(1)":[84],"one":[85],"class":[86],"(OC)":[87],"classifiers":[88],"can":[89],"relatively":[93],"low":[94],"detection":[95,108,130,198,226],"rates,":[96],"(2)":[98],"profiling-based":[100],"(using":[102,149,162],"autoencoder)":[104,151],"may":[105],"yield":[106],"better":[107,216],"performance":[109,217],"under":[111],"assumption":[113],"\"ideal\"":[116],"threshold":[117,160],"setting.":[118],"In":[119],"paper,":[121],"we":[122],"tackle":[123],"these":[124],"challenges":[125],"present":[127],"a":[128,171],"new":[129],"method,":[131],"which":[132,191],"combines":[133],"concepts":[135],"autoencoding":[137],"OC":[139,164],"classification,":[140],"benefit":[142],"from":[143],"strong":[144],"abstractions":[145],"by":[146],"neural":[147],"networks":[148],"remove":[154],"necessity":[156],"complex":[159],"selection":[161],"classifier).":[165],"Our":[166],"extensive":[167],"experimental":[168],"results":[169],"recent":[172],"dataset":[174],"(Meras\u201918)":[175],"show":[176],"effectiveness":[178],"method":[181,207],"up":[183],"96%":[185],"accuracy":[186],"detection,":[190],"is":[192],"comparable":[193],"learning-based":[197],"(limited":[199],"malware).":[204],"proposed":[206],"also":[208],"shows":[209],"resilience":[211],"adversarial":[213],"attacks,":[214],"yielding":[215],"synthetic":[220],"samples":[221],"generated":[222],"evade":[224],"process":[227],"than":[228],"algorithms.":[231]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}