{"id":"https://openalex.org/W2777222560","doi":"https://doi.org/10.1109/cns.2017.8228692","title":"Email spoofing detection using volatile memory forensics","display_name":"Email spoofing detection using volatile memory forensics","publication_year":2017,"publication_date":"2017-10-01","ids":{"openalex":"https://openalex.org/W2777222560","doi":"https://doi.org/10.1109/cns.2017.8228692","mag":"2777222560"},"language":"en","primary_location":{"id":"doi:10.1109/cns.2017.8228692","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cns.2017.8228692","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 IEEE Conference on Communications and Network Security (CNS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5050379799","display_name":"Rohan Iyer","orcid":null},"institutions":[{"id":"https://openalex.org/I113508548","display_name":"Albany State University","ror":"https://ror.org/01vme4277","country_code":"US","type":"education","lineage":["https://openalex.org/I113508548"]},{"id":"https://openalex.org/I392282","display_name":"University at Albany, State University of New York","ror":"https://ror.org/012zs8222","country_code":"US","type":"education","lineage":["https://openalex.org/I392282"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"R. Padmavathi Iyer","raw_affiliation_strings":["University at Albany, State University of New York, Albany New York, USA"],"affiliations":[{"raw_affiliation_string":"University at Albany, State University of New York, Albany New York, USA","institution_ids":["https://openalex.org/I113508548","https://openalex.org/I392282"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5034818486","display_name":"Pradeep K. Atrey","orcid":"https://orcid.org/0000-0002-9577-0969"},"institutions":[{"id":"https://openalex.org/I113508548","display_name":"Albany State University","ror":"https://ror.org/01vme4277","country_code":"US","type":"education","lineage":["https://openalex.org/I113508548"]},{"id":"https://openalex.org/I392282","display_name":"University at Albany, State University of New York","ror":"https://ror.org/012zs8222","country_code":"US","type":"education","lineage":["https://openalex.org/I392282"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Pradeep K. Atrey","raw_affiliation_strings":["University at Albany, State University of New York, Albany New York, USA"],"affiliations":[{"raw_affiliation_string":"University at Albany, State University of New York, Albany New York, USA","institution_ids":["https://openalex.org/I113508548","https://openalex.org/I392282"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103826967","display_name":"Gaurav Varshney","orcid":null},"institutions":[{"id":"https://openalex.org/I154851008","display_name":"Indian Institute of Technology Roorkee","ror":"https://ror.org/00582g326","country_code":"IN","type":"education","lineage":["https://openalex.org/I154851008"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Gaurav Varshney","raw_affiliation_strings":["Indian Institute of Technology Roorkee, Roorkee, Uttarakhand, India"],"affiliations":[{"raw_affiliation_string":"Indian Institute of Technology Roorkee, Roorkee, Uttarakhand, India","institution_ids":["https://openalex.org/I154851008"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101735351","display_name":"Manoj Misra","orcid":"https://orcid.org/0000-0002-4334-9494"},"institutions":[{"id":"https://openalex.org/I154851008","display_name":"Indian Institute of Technology Roorkee","ror":"https://ror.org/00582g326","country_code":"IN","type":"education","lineage":["https://openalex.org/I154851008"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Manoj Misra","raw_affiliation_strings":["Indian Institute of Technology Roorkee, Roorkee, Uttarakhand, India"],"affiliations":[{"raw_affiliation_string":"Indian Institute of Technology Roorkee, Roorkee, Uttarakhand, India","institution_ids":["https://openalex.org/I154851008"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5050379799"],"corresponding_institution_ids":["https://openalex.org/I113508548","https://openalex.org/I392282"],"apc_list":null,"apc_paid":null,"fwci":1.4509,"has_fulltext":false,"cited_by_count":11,"citation_normalized_percentile":{"value":0.87751445,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"14","issue":null,"first_page":"619","last_page":"625"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/spoofing-attack","display_name":"Spoofing attack","score":0.9502623081207275},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7895796298980713},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6620272397994995},{"id":"https://openalex.org/keywords/computer-forensics","display_name":"Computer forensics","score":0.46706706285476685},{"id":"https://openalex.org/keywords/email-authentication","display_name":"Email authentication","score":0.44221749901771545},{"id":"https://openalex.org/keywords/ip-address-spoofing","display_name":"IP address spoofing","score":0.415993869304657},{"id":"https://openalex.org/keywords/digital-forensics","display_name":"Digital forensics","score":0.3889899253845215},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.18945330381393433},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.0969800055027008},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.07732900977134705}],"concepts":[{"id":"https://openalex.org/C167900197","wikidata":"https://www.wikidata.org/wiki/Q11081100","display_name":"Spoofing attack","level":2,"score":0.9502623081207275},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7895796298980713},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6620272397994995},{"id":"https://openalex.org/C556601545","wikidata":"https://www.wikidata.org/wiki/Q878553","display_name":"Computer forensics","level":3,"score":0.46706706285476685},{"id":"https://openalex.org/C550791530","wikidata":"https://www.wikidata.org/wiki/Q5368811","display_name":"Email authentication","level":5,"score":0.44221749901771545},{"id":"https://openalex.org/C111814575","wikidata":"https://www.wikidata.org/wiki/Q550893","display_name":"IP address spoofing","level":5,"score":0.415993869304657},{"id":"https://openalex.org/C84418412","wikidata":"https://www.wikidata.org/wiki/Q3246940","display_name":"Digital forensics","level":2,"score":0.3889899253845215},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.18945330381393433},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.0969800055027008},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.07732900977134705},{"id":"https://openalex.org/C35341882","wikidata":"https://www.wikidata.org/wiki/Q8795","display_name":"Internet Protocol","level":3,"score":0.0},{"id":"https://openalex.org/C147873670","wikidata":"https://www.wikidata.org/wiki/Q11182","display_name":"Network address translation","level":4,"score":0.0},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.0},{"id":"https://openalex.org/C194699767","wikidata":"https://www.wikidata.org/wiki/Q7878662","display_name":"Multi-factor authentication","level":4,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/cns.2017.8228692","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cns.2017.8228692","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 IEEE Conference on Communications and Network Security (CNS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7900000214576721,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W1509254863","https://openalex.org/W1930594640","https://openalex.org/W1991563835","https://openalex.org/W2011754970","https://openalex.org/W2042020175","https://openalex.org/W2047088220","https://openalex.org/W2056414170","https://openalex.org/W2079622011","https://openalex.org/W2113032636","https://openalex.org/W2113449956","https://openalex.org/W2148403395","https://openalex.org/W2160727041","https://openalex.org/W2311225707","https://openalex.org/W2313993839","https://openalex.org/W2413475015","https://openalex.org/W2415908313","https://openalex.org/W2417539613","https://openalex.org/W2509312024","https://openalex.org/W2543536327","https://openalex.org/W2586794058","https://openalex.org/W2608710214","https://openalex.org/W2962679028","https://openalex.org/W6716451072"],"related_works":["https://openalex.org/W1978185930","https://openalex.org/W2181728705","https://openalex.org/W2360631891","https://openalex.org/W1976066853","https://openalex.org/W4238452393","https://openalex.org/W4247205791","https://openalex.org/W4310720393","https://openalex.org/W2901847728","https://openalex.org/W2914228829","https://openalex.org/W2413475015"],"abstract_inverted_index":{"In":[0,85,101],"email":[1,11,20,30,34,52,186],"systems,":[2],"one":[3],"of":[4,18,28,61,76,118,158],"the":[5,15,19,26,29,33,48,59,73,77,95,109,119,129,143,181,190],"most":[6],"widely":[7],"used":[8,151],"attacks":[9],"is":[10,22,70,122,133,166,178],"spoofing,":[12],"in":[13,47,56,145,180],"which":[14],"source":[16],"address":[17,51],"message":[21],"forged":[23],"to":[24,50,92,112,135,162,197],"make":[25],"recipient":[27],"believe":[31],"that":[32,148,167],"was":[35],"sent":[36],"from":[37,72],"a":[38,81,125,176],"legitimate":[39],"source.":[40],"Several":[41],"research":[42],"works":[43],"have":[44],"been":[45],"presented":[46],"past":[49],"spoofing":[53,137],"attack.":[54],"Further,":[55],"recent":[57],"years,":[58],"technique":[60],"memory":[62,75,90,104,117,131,160],"forensics":[63,91,105,161],"has":[64],"evolved":[65],"significantly":[66],"where":[67],"critical":[68],"evidence":[69],"extracted":[71],"volatile":[74],"target":[78],"machine":[79,121],"during":[80],"cyber":[82,153],"crime":[83,154],"investigation.":[84],"this":[86],"paper,":[87],"we":[88],"utilize":[89],"detect":[93,163],"if":[94,108,140],"client":[96,110,120],"received":[97],"any":[98,113],"spoofed":[99,114,164,198],"email.":[100,199],"addition,":[102],"our":[103],"approach":[106],"detects":[107],"replied":[111],"emails.":[115],"The":[116,156],"acquired":[123,130],"on":[124,175],"scheduled":[126],"basis":[127],"and":[128,188],"dump":[132],"analyzed":[134],"identify":[136],"attack":[138],"and,":[139],"detected,":[141],"storing":[142],"details":[144],"log":[146],"files":[147],"can":[149],"be":[150],"by":[152],"investigators.":[155],"benefit":[157],"applying":[159],"emails":[165],"it":[168],"guarantees":[169],"non-repudiation":[170],"since":[171],"every":[172],"action":[173],"performed":[174],"computer":[177],"loaded":[179],"system's":[182],"physical":[183],"memory,":[184],"including":[185],"communication,":[187],"hence":[189],"user":[191],"cannot":[192],"deny":[193],"receiving":[194],"or":[195],"replying":[196]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}