{"id":"https://openalex.org/W3010654368","doi":"https://doi.org/10.1109/milcom47813.2019.9021034","title":"Insights into Malware Detection via Behavioral Frequency Analysis Using Machine Learning","display_name":"Insights into Malware Detection via Behavioral Frequency Analysis Using Machine Learning","publication_year":2019,"publication_date":"2019-11-01","ids":{"openalex":"https://openalex.org/W3010654368","doi":"https://doi.org/10.1109/milcom47813.2019.9021034","mag":"3010654368"},"language":"en","primary_location":{"id":"doi:10.1109/milcom47813.2019.9021034","is_oa":false,"landing_page_url":"https://doi.org/10.1109/milcom47813.2019.9021034","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"MILCOM 2019 - 2019 IEEE Military Communications Conference (MILCOM)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5064028585","display_name":"Aaron Walker","orcid":"https://orcid.org/0000-0003-4040-6665"},"institutions":[{"id":"https://openalex.org/I134113660","display_name":"University of Nevada, Reno","ror":"https://ror.org/01keh0577","country_code":"US","type":"education","lineage":["https://openalex.org/I134113660"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Aaron Walker","raw_affiliation_strings":["Department of Computer Science and Engineering, University of Nevada, Reno Reno, U.S.A","University of Nevada,Department of Computer Science and Engineering,Reno Reno,U.S.A"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University of Nevada, Reno Reno, U.S.A","institution_ids":["https://openalex.org/I134113660"]},{"raw_affiliation_string":"University of Nevada,Department of Computer Science and Engineering,Reno Reno,U.S.A","institution_ids":["https://openalex.org/I134113660"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100748436","display_name":"Shamik Sengupta","orcid":"https://orcid.org/0000-0002-2019-8056"},"institutions":[{"id":"https://openalex.org/I134113660","display_name":"University of Nevada, Reno","ror":"https://ror.org/01keh0577","country_code":"US","type":"education","lineage":["https://openalex.org/I134113660"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Shamik Sengupta","raw_affiliation_strings":["Department of Computer Science and Engineering, University of Nevada, Reno Reno, U.S.A","University of Nevada,Department of Computer Science and Engineering,Reno Reno,U.S.A"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University of Nevada, Reno Reno, U.S.A","institution_ids":["https://openalex.org/I134113660"]},{"raw_affiliation_string":"University of Nevada,Department of Computer Science and Engineering,Reno Reno,U.S.A","institution_ids":["https://openalex.org/I134113660"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5064028585"],"corresponding_institution_ids":["https://openalex.org/I134113660"],"apc_list":null,"apc_paid":null,"fwci":1.1684,"has_fulltext":false,"cited_by_count":17,"citation_normalized_percentile":{"value":0.80373661,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"2019","issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9524000287055969,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9759141206741333},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8051444292068481},{"id":"https://openalex.org/keywords/signature","display_name":"Signature (topology)","score":0.6131236553192139},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5801069736480713},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5633659958839417},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5427553653717041},{"id":"https://openalex.org/keywords/classifier","display_name":"Classifier (UML)","score":0.5118493437767029},{"id":"https://openalex.org/keywords/cryptovirology","display_name":"Cryptovirology","score":0.4841252267360687},{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.45237410068511963},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.428203284740448},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3637581467628479},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.07448819279670715}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9759141206741333},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8051444292068481},{"id":"https://openalex.org/C2779696439","wikidata":"https://www.wikidata.org/wiki/Q7512811","display_name":"Signature (topology)","level":2,"score":0.6131236553192139},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5801069736480713},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5633659958839417},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5427553653717041},{"id":"https://openalex.org/C95623464","wikidata":"https://www.wikidata.org/wiki/Q1096149","display_name":"Classifier (UML)","level":2,"score":0.5118493437767029},{"id":"https://openalex.org/C84525096","wikidata":"https://www.wikidata.org/wiki/Q3506050","display_name":"Cryptovirology","level":3,"score":0.4841252267360687},{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.45237410068511963},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.428203284740448},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3637581467628479},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.07448819279670715},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/milcom47813.2019.9021034","is_oa":false,"landing_page_url":"https://doi.org/10.1109/milcom47813.2019.9021034","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"MILCOM 2019 - 2019 IEEE Military Communications Conference (MILCOM)","raw_type":"proceedings-article"},{"id":"mag:3040959890","is_oa":false,"landing_page_url":"https://jglobal.jst.go.jp/en/detail?JGLOBAL_ID=202002247131733299","pdf_url":null,"source":{"id":"https://openalex.org/S4306512817","display_name":"IEEE Conference Proceedings","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":"IEEE Conference Proceedings","raw_type":null}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7599999904632568,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":14,"referenced_works":["https://openalex.org/W2735195081","https://openalex.org/W2761652379","https://openalex.org/W2783390333","https://openalex.org/W2783615536","https://openalex.org/W2785712306","https://openalex.org/W2791319131","https://openalex.org/W2795063185","https://openalex.org/W2798980918","https://openalex.org/W2807671950","https://openalex.org/W2889559485","https://openalex.org/W2902285385","https://openalex.org/W2963563709","https://openalex.org/W2963973118","https://openalex.org/W6888875766"],"related_works":["https://openalex.org/W1573526548","https://openalex.org/W2160606508","https://openalex.org/W2053632570","https://openalex.org/W2965893286","https://openalex.org/W4389341938","https://openalex.org/W1602547571","https://openalex.org/W2991580804","https://openalex.org/W3211525895","https://openalex.org/W4254552916","https://openalex.org/W2609233367"],"abstract_inverted_index":{"The":[0],"most":[1],"common":[2,75],"defenses":[3,77],"against":[4,29,152],"malware":[5,24,56,76,119,139],"threats":[6,38],"involves":[7],"the":[8,19,23,102,128,162],"use":[9],"of":[10,15,22,36,59,83,92,101,104,146],"signatures":[11],"derived":[12],"from":[13,44],"instances":[14],"known":[16,37,85],"malware.":[17,86],"However,":[18],"constant":[20],"evolution":[21],"threat":[25],"landscape":[26],"necessitates":[27],"defense":[28],"unknown":[30],"malware,":[31],"making":[32],"a":[33,81,89,115,138,144],"signature":[34,140],"catalog":[35],"insufficient":[39],"to":[40,54,155],"prevent":[41],"zero-day":[42],"vulnerabilities":[43],"being":[45],"exploited.":[46],"Recent":[47],"research":[48],"has":[49],"applied":[50],"machine":[51,149],"learning":[52,124,150],"approaches":[53,73],"identify":[55],"through":[57,64,99],"artifacts":[58],"malicious":[60,96,131,165],"activity":[61],"as":[62,95],"observed":[63],"dynamic":[65],"behavioral":[66],"analysis.":[67],"We":[68,87,110,142],"have":[69],"seen":[70],"that":[71,112],"these":[72],"mimic":[74],"by":[78],"simply":[79],"offering":[80],"method":[82,91,145],"detecting":[84],"contribute":[88,143],"new":[90],"identifying":[93],"software":[94],"or":[97],"benign":[98,133,167],"analysis":[100],"frequency":[103],"Windows":[105],"API":[106],"system":[107],"function":[108],"calls.":[109],"show":[111],"this":[113],"is":[114],"powerful":[116],"technique":[117],"for":[118],"detection":[120],"because":[121],"it":[122],"generates":[123],"models":[125,151],"which":[126],"understand":[127],"difference":[129,163],"between":[130,164],"and":[132,166],"software,":[134],"rather":[135],"than":[136],"producing":[137],"classifier.":[141],"systematically":[147],"comparing":[148],"different":[153],"datasets":[154],"determine":[156],"their":[157],"efficacy":[158],"in":[159],"accurately":[160],"distinguishing":[161],"software.":[168]},"counts_by_year":[{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":1}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}