{"id":"https://openalex.org/W3197098979","doi":"https://doi.org/10.1109/csr51186.2021.9527943","title":"Rapid Ransomware Detection through Side Channel Exploitation","display_name":"Rapid Ransomware Detection through Side Channel Exploitation","publication_year":2021,"publication_date":"2021-07-26","ids":{"openalex":"https://openalex.org/W3197098979","doi":"https://doi.org/10.1109/csr51186.2021.9527943","mag":"3197098979"},"language":"en","primary_location":{"id":"doi:10.1109/csr51186.2021.9527943","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr51186.2021.9527943","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049271769","display_name":"Michael A. Taylor","orcid":"https://orcid.org/0000-0003-4393-7760"},"institutions":[{"id":"https://openalex.org/I178169726","display_name":"Southern Methodist University","ror":"https://ror.org/042tdr378","country_code":"US","type":"education","lineage":["https://openalex.org/I178169726"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Michael A. Taylor","raw_affiliation_strings":["Darwin Deason Institute, Southern Methodist University, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"Darwin Deason Institute, Southern Methodist University, Dallas, TX, USA","institution_ids":["https://openalex.org/I178169726"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023773515","display_name":"Eric C. Larson","orcid":"https://orcid.org/0000-0001-6040-868X"},"institutions":[{"id":"https://openalex.org/I178169726","display_name":"Southern Methodist University","ror":"https://ror.org/042tdr378","country_code":"US","type":"education","lineage":["https://openalex.org/I178169726"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Eric C. Larson","raw_affiliation_strings":["Darwin Deason Institute, Southern Methodist University, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"Darwin Deason Institute, Southern Methodist University, Dallas, TX, USA","institution_ids":["https://openalex.org/I178169726"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5082009815","display_name":"Mitchell A. Thornton","orcid":"https://orcid.org/0000-0003-3559-9511"},"institutions":[{"id":"https://openalex.org/I178169726","display_name":"Southern Methodist University","ror":"https://ror.org/042tdr378","country_code":"US","type":"education","lineage":["https://openalex.org/I178169726"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mitchell A. Thornton","raw_affiliation_strings":["Darwin Deason Institute, Southern Methodist University, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"Darwin Deason Institute, Southern Methodist University, Dallas, TX, USA","institution_ids":["https://openalex.org/I178169726"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5049271769"],"corresponding_institution_ids":["https://openalex.org/I178169726"],"apc_list":null,"apc_paid":null,"fwci":1.0665,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.77004733,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"47","last_page":"54"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9957000017166138,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.979200005531311,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/ransomware","display_name":"Ransomware","score":0.9027649164199829},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7602301836013794},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.685300886631012},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.6158385276794434},{"id":"https://openalex.org/keywords/side-channel-attack","display_name":"Side channel attack","score":0.5413761734962463},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4917800724506378},{"id":"https://openalex.org/keywords/data-stream-mining","display_name":"Data stream mining","score":0.4662925601005554},{"id":"https://openalex.org/keywords/real-time-computing","display_name":"Real-time computing","score":0.40094518661499023},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4003893733024597},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.37815719842910767},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3449692726135254}],"concepts":[{"id":"https://openalex.org/C2777667771","wikidata":"https://www.wikidata.org/wiki/Q926331","display_name":"Ransomware","level":3,"score":0.9027649164199829},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7602301836013794},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.685300886631012},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.6158385276794434},{"id":"https://openalex.org/C49289754","wikidata":"https://www.wikidata.org/wiki/Q2267081","display_name":"Side channel attack","level":3,"score":0.5413761734962463},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4917800724506378},{"id":"https://openalex.org/C89198739","wikidata":"https://www.wikidata.org/wiki/Q3079880","display_name":"Data stream mining","level":2,"score":0.4662925601005554},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.40094518661499023},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4003893733024597},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.37815719842910767},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3449692726135254}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/csr51186.2021.9527943","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr51186.2021.9527943","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W2056132907","https://openalex.org/W2083195487","https://openalex.org/W2101234009","https://openalex.org/W2137226992","https://openalex.org/W2149198389","https://openalex.org/W2293167454","https://openalex.org/W2513529237","https://openalex.org/W2911964244","https://openalex.org/W2950774332","https://openalex.org/W4297957988","https://openalex.org/W6675354045","https://openalex.org/W6680532697"],"related_works":["https://openalex.org/W3201228709","https://openalex.org/W3006344745","https://openalex.org/W182679101","https://openalex.org/W2103519941","https://openalex.org/W3180573957","https://openalex.org/W2162805750","https://openalex.org/W2043669269","https://openalex.org/W1968560271","https://openalex.org/W4388856880","https://openalex.org/W2081998479"],"abstract_inverted_index":{"A":[0,96],"new":[1],"method":[2,17,141,230],"for":[3,48,204,222],"the":[4,26,50,53,70,78,112,147,190,208],"detection":[5,60,108,140,206],"of":[6,28,52,72,81,100,115,123,134,146,159,185,197,220,228],"ransomware":[7,30,59,116,135,171],"in":[8,38,64,77,207],"an":[9,93,215],"infected":[10],"host":[11],"is":[12,56,92,104,126],"described":[13],"and":[14,68,163,189,231],"evaluated.":[15],"The":[16,201,234],"utilizes":[18],"data":[19,188],"streams":[20],"from":[21,86],"on-board":[22],"sensors":[23],"to":[24,110,138],"fingerprint":[25],"initiation":[27],"a":[29,45,65,82,87,107,157,170,181,193],"infection.":[31],"These":[32],"sensor":[33,102,187,199],"streams,":[34],"which":[35],"are":[36,42,136,150,153],"common":[37],"modern":[39],"computing":[40],"systems,":[41],"used":[43,168],"as":[44,84],"side":[46],"channel":[47],"understanding":[49],"state":[51,80,114,225],"system.":[54],"It":[55],"shown":[57],"that":[58,69,127],"can":[61],"be":[62],"achieved":[63],"rapid":[66],"manner":[67],"use":[71],"slight,":[73],"yet":[74],"distinguishable":[75],"changes":[76],"physical":[79],"system":[83,161,210,224,232],"derived":[85],"machine":[88],"learning":[89],"predictive":[90],"model":[91,235],"effective":[94],"technique.":[95],"feature":[97],"vector,":[98],"consisting":[99],"various":[101],"outputs,":[103],"coupled":[105],"with":[106,156,164,178,214],"criteria":[109],"predict":[111],"binary":[113,223],"present":[117],"versus":[118],"normal":[119],"operation.":[120],"An":[121],"advantage":[122],"this":[124,139],"approach":[125],"previously":[128],"unknown":[129],"or":[130],"zero-day":[131],"version":[132],"s":[133],"vulnerable":[137],"since":[142],"no":[143],"apriori":[144],"knowledge":[145],"malware":[148],"characteristics":[149],"required.":[151],"Experiments":[152],"carried":[154],"out":[155],"variety":[158],"different":[160,165],"loads":[162],"encryption":[166,229],"methods":[167],"during":[169],"attack.":[172],"Two":[173],"test":[174],"systems":[175],"were":[176],"utilized":[177],"one":[179],"having":[180,192],"relatively":[182,194],"low":[183],"amount":[184,196],"available":[186,198],"other":[191],"high":[195],"data.":[200],"average":[202,216],"time":[203],"attack":[205],"\"sensor-rich\"":[209],"was":[211],"7.79":[212],"seconds":[213],"Matthews":[217],"correlation":[218],"coefficient":[219],"0.8905":[221],"predictions":[226],"regardless":[227],"load.":[233],"flagged":[236],"all":[237],"attacks":[238],"tested.":[239]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}