{"id":"https://openalex.org/W3151341281","doi":"https://doi.org/10.1109/micro.2008.4771783","title":"SHARK: Architectural support for autonomic protection against stealth by rootkit exploits","display_name":"SHARK: Architectural support for autonomic protection against stealth by rootkit exploits","publication_year":2008,"publication_date":"2008-11-01","ids":{"openalex":"https://openalex.org/W3151341281","doi":"https://doi.org/10.1109/micro.2008.4771783","mag":"3151341281"},"language":"en","primary_location":{"id":"doi:10.1109/micro.2008.4771783","is_oa":false,"landing_page_url":"https://doi.org/10.1109/micro.2008.4771783","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2008 41st IEEE/ACM International Symposium on Microarchitecture","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5082396714","display_name":"Vikas R. Vasisht","orcid":null},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vikas R. Vasisht","raw_affiliation_strings":["School of Electrical and Computer Engineering, Georgia Institute of Technology, Atlanta, GA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Electrical and Computer Engineering, Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5072539515","display_name":"Hsien-Hsin S. Lee","orcid":"https://orcid.org/0000-0002-8926-8243"},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Hsien-Hsin S. Lee","raw_affiliation_strings":["School of Electrical and Computer Engineering, Georgia Institute of Technology, Atlanta, GA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Electrical and Computer Engineering, Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I130701444"],"apc_list":null,"apc_paid":null,"fwci":2.939,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.92218485,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"106","last_page":"116"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9922999739646912,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/rootkit","display_name":"Rootkit","score":0.9829119443893433},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.804841160774231},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7613484859466553},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6886467933654785},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6254827976226807},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.5791833400726318},{"id":"https://openalex.org/keywords/linux-kernel","display_name":"Linux kernel","score":0.5058133602142334},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5038601756095886},{"id":"https://openalex.org/keywords/x86","display_name":"x86","score":0.48438936471939087},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.483767032623291},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.4598553776741028},{"id":"https://openalex.org/keywords/kernel","display_name":"Kernel (algebra)","score":0.44616052508354187},{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.4299086928367615}],"concepts":[{"id":"https://openalex.org/C10144332","wikidata":"https://www.wikidata.org/wiki/Q14645","display_name":"Rootkit","level":3,"score":0.9829119443893433},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.804841160774231},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7613484859466553},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6886467933654785},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6254827976226807},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.5791833400726318},{"id":"https://openalex.org/C553261973","wikidata":"https://www.wikidata.org/wiki/Q14579","display_name":"Linux kernel","level":2,"score":0.5058133602142334},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5038601756095886},{"id":"https://openalex.org/C170723468","wikidata":"https://www.wikidata.org/wiki/Q182933","display_name":"x86","level":3,"score":0.48438936471939087},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.483767032623291},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.4598553776741028},{"id":"https://openalex.org/C74193536","wikidata":"https://www.wikidata.org/wiki/Q574844","display_name":"Kernel (algebra)","level":2,"score":0.44616052508354187},{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.4299086928367615},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/micro.2008.4771783","is_oa":false,"landing_page_url":"https://doi.org/10.1109/micro.2008.4771783","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2008 41st IEEE/ACM International Symposium on Microarchitecture","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320306084","display_name":"U.S. Department of Energy","ror":"https://ror.org/01bj3aw27"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":16,"referenced_works":["https://openalex.org/W161166442","https://openalex.org/W1742385376","https://openalex.org/W2029224396","https://openalex.org/W2067568553","https://openalex.org/W2086800870","https://openalex.org/W2116406812","https://openalex.org/W2117882778","https://openalex.org/W2120118950","https://openalex.org/W2120635877","https://openalex.org/W2132567738","https://openalex.org/W2139172211","https://openalex.org/W2162764933","https://openalex.org/W4236168377","https://openalex.org/W4241912528","https://openalex.org/W6606620872","https://openalex.org/W6637496466"],"related_works":["https://openalex.org/W1994712384","https://openalex.org/W4240186231","https://openalex.org/W2166844173","https://openalex.org/W2439951656","https://openalex.org/W2483568499","https://openalex.org/W3170525725","https://openalex.org/W1528086994","https://openalex.org/W2354398839","https://openalex.org/W2171038386","https://openalex.org/W1514297880"],"abstract_inverted_index":{"Rootkits":[0],"have":[1],"become":[2],"a":[3,18,149,232,251],"growing":[4],"concern":[5],"in":[6,40,91,139,230],"cyber-security.":[7],"Typically,":[8],"they":[9],"exploit":[10],"kernel":[11,58,180,197,214],"vulnerabilities":[12,62],"to":[13,54,75,109,147,164,171,211,226],"gain":[14],"root":[15],"privileges":[16],"of":[17,79,85,187,234],"system":[19,27,136,162],"and":[20,26,47,129,156,193,215],"conceal":[21,216],"malwarepsilas":[22],"activities":[23],"from":[24,168],"users":[25],"administrators":[28,46,163],"without":[29,113],"any":[30],"authorization.":[31],"Once":[32],"infected,":[33],"these":[34,86],"malware":[35,217],"applications":[36],"will":[37],"operate":[38],"completely":[39],"stealth,":[41],"leaving":[42],"no":[43],"trace":[44],"for":[45],"anti-malware":[48],"tools.":[49],"Current":[50],"anti-rootkit":[51],"solutions":[52],"try":[53],"either":[55],"strengthen":[56],"the":[57,68,77,80,83,115,119,124,127,130,134,157,169,178,185,195,213,242,255],"by":[59,105,189],"removing":[60],"known":[61],"or":[63,70,99],"develop":[64],"software":[65,87,116,154,238],"tools":[66],"at":[67],"OS":[69,120,128,179],"virtual":[71],"machine":[72],"monitor":[73,76],"levels":[74],"integrity":[78],"kernel.":[81,121],"Seeing":[82],"failure":[84],"techniques,":[88],"we":[89],"propose,":[90],"this":[92],"paper,":[93],"an":[94],"autonomic":[95],"architecture":[96,257],"called":[97],"SHARK,":[98],"secure":[100,150],"hardware":[101,107,131,170],"support":[102,108,146],"against":[103],"rootkit":[104],"employing":[106,236],"provide":[110,148],"system-level":[111],"security":[112],"trusting":[114],"stack,":[117],"including":[118],"SHARK":[122,142,188,223,256],"enhances":[123],"relationship":[125],"between":[126,152],"architecture,":[132],"making":[133,254],"entire":[135],"more":[137],"security-aware":[138],"defending":[140],"rootkits.":[141],"proposes":[143],"new":[144],"architectural":[145,204],"association":[151],"each":[153],"context":[155],"underlying":[158],"hardware.":[159],"It":[160],"helps":[161],"obtain":[165],"feedback":[166],"directly":[167],"reveal":[172],"all":[173],"running":[174],"processes,":[175],"even":[176],"when":[177],"is":[181,224],"compromised.":[182],"We":[183],"emulated":[184,221],"functionality":[186],"using":[190],"x86":[191],"Bochs":[192],"modifying":[194],"Linux":[196],"version":[198],"2.6.16.33":[199],"based":[200,245],"on":[201,219,246],"our":[202,220,247],"proposed":[203],"extension.":[205],"Several":[206],"real":[207],"rootkits":[208,235],"were":[209],"installed":[210],"compromise":[212],"processes":[218],"environment.":[222],"shown":[225],"be":[227],"highly":[228,258],"effective":[229],"identifying":[231],"variety":[233],"different":[237],"schemes.":[239],"In":[240],"addition,":[241],"performance":[243],"analysis":[244],"Simics":[248],"simulations":[249],"shows":[250],"negligible":[252],"overhead,":[253],"practical.":[259]},"counts_by_year":[{"year":2020,"cited_by_count":1}],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2025-10-10T00:00:00"}
