{"id":"https://openalex.org/W4415399882","doi":"https://doi.org/10.1109/smartgridcomm65349.2025.11204622","title":"InVue: Inferring Vulnerabilities from Encrypted Web Traffic","display_name":"InVue: Inferring Vulnerabilities from Encrypted Web Traffic","publication_year":2025,"publication_date":"2025-09-29","ids":{"openalex":"https://openalex.org/W4415399882","doi":"https://doi.org/10.1109/smartgridcomm65349.2025.11204622"},"language":null,"primary_location":{"id":"doi:10.1109/smartgridcomm65349.2025.11204622","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm65349.2025.11204622","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5114472867","display_name":"William Andrew Burroughs","orcid":null},"institutions":[{"id":"https://openalex.org/I78715868","display_name":"University of Arkansas at Fayetteville","ror":"https://ror.org/05jbt9m15","country_code":"US","type":"education","lineage":["https://openalex.org/I78715868"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"William Andrew Burroughs","raw_affiliation_strings":["University of Arkansas,Fayetteville,AR,USA"],"affiliations":[{"raw_affiliation_string":"University of Arkansas,Fayetteville,AR,USA","institution_ids":["https://openalex.org/I78715868"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101927781","display_name":"Qinghua Li","orcid":"https://orcid.org/0000-0002-7734-6216"},"institutions":[{"id":"https://openalex.org/I78715868","display_name":"University of Arkansas at Fayetteville","ror":"https://ror.org/05jbt9m15","country_code":"US","type":"education","lineage":["https://openalex.org/I78715868"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Qinghua Li","raw_affiliation_strings":["University of Arkansas,Fayetteville,AR,USA"],"affiliations":[{"raw_affiliation_string":"University of Arkansas,Fayetteville,AR,USA","institution_ids":["https://openalex.org/I78715868"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5114472867"],"corresponding_institution_ids":["https://openalex.org/I78715868"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.37729793,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9926000237464905,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.98580002784729,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/vulnerability-management","display_name":"Vulnerability management","score":0.847000002861023},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.8098000288009644},{"id":"https://openalex.org/keywords/web-page","display_name":"Web page","score":0.5992000102996826},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.5662999749183655},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.5460000038146973},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.4345000088214874},{"id":"https://openalex.org/keywords/web-server","display_name":"Web server","score":0.42899999022483826},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3720000088214874},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.36239999532699585}],"concepts":[{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.847000002861023},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.8098000288009644},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7348999977111816},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7110000252723694},{"id":"https://openalex.org/C21959979","wikidata":"https://www.wikidata.org/wiki/Q36774","display_name":"Web page","level":2,"score":0.5992000102996826},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5662999749183655},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.5460000038146973},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.4345000088214874},{"id":"https://openalex.org/C11392498","wikidata":"https://www.wikidata.org/wiki/Q11288","display_name":"Web server","level":3,"score":0.42899999022483826},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.40389999747276306},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3720000088214874},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.36239999532699585},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.36230000853538513},{"id":"https://openalex.org/C206345919","wikidata":"https://www.wikidata.org/wiki/Q20380951","display_name":"Resource (disambiguation)","level":2,"score":0.32260000705718994},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.32190001010894775},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.3183000087738037},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.2994999885559082},{"id":"https://openalex.org/C2777672014","wikidata":"https://www.wikidata.org/wiki/Q1172573","display_name":"Web traffic","level":3,"score":0.28600001335144043},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.28380000591278076},{"id":"https://openalex.org/C22111027","wikidata":"https://www.wikidata.org/wiki/Q1070427","display_name":"Internet security","level":4,"score":0.28189998865127563},{"id":"https://openalex.org/C10511746","wikidata":"https://www.wikidata.org/wiki/Q899388","display_name":"Data security","level":3,"score":0.27390000224113464},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.27090001106262207},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.2669999897480011},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.2669000029563904},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.26589998602867126}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/smartgridcomm65349.2025.11204622","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm65349.2025.11204622","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W197026479","https://openalex.org/W1655958391","https://openalex.org/W1875604605","https://openalex.org/W2135088779","https://openalex.org/W2135579486","https://openalex.org/W2272516773","https://openalex.org/W2915352631","https://openalex.org/W2960741711","https://openalex.org/W2963403784","https://openalex.org/W2963655955","https://openalex.org/W3116203245","https://openalex.org/W3193977931","https://openalex.org/W3210147837","https://openalex.org/W4291907972","https://openalex.org/W4399909337","https://openalex.org/W4399909403","https://openalex.org/W4415222652"],"related_works":[],"abstract_inverted_index":{"Security":[0],"operators":[1,42],"at":[2,223,229],"electric":[3],"utilities":[4],"mitigate":[5,214],"software":[6,38],"vulnerabilities":[7,48,72,137],"to":[8,46,69,87,108,172],"protect":[9],"their":[10,52],"system":[11],"and":[12,25,73,100,149,182,238],"comply":[13],"with":[14,210],"regulations.":[15],"A":[16],"resource":[17],"that":[18,49,60,77,105,158,161,202,221],"is":[19,28,126,154,190],"widely":[20],"used":[21,68,86],"in":[22,57,138],"security":[23,41],"operations":[24],"vulnerability":[26,142,151,178,187,208],"management":[27],"the":[29,44,55,58,71,75,78,93,110,119,130,139,174,177,193,207,215,224,230],"National":[30],"Vulnerability":[31],"Database":[32],"(NVD),":[33],"a":[34,102,115,163],"web-based":[35],"repository":[36],"of":[37,132,176],"vulnerabilities.":[39],"Many":[40],"utilize":[43],"NVD":[45,59,111,199,234],"research":[47],"might":[50,169],"impact":[51],"systems.":[53],"Thus,":[54],"pages":[56,112,134,143,209],"an":[61,159],"operator":[62],"visits,":[63],"if":[64],"known,":[65],"can":[66,83,205],"be":[67,84,170],"infer":[70],"even":[74],"assets":[76],"operator\u2019s":[79],"organization":[80],"has,":[81],"which":[82,186],"further":[85],"launch":[88],"more":[89],"sophisticated":[90],"attacks":[91],"against":[92],"organization.":[94],"In":[95],"this":[96,203,241],"paper,":[97],"we":[98,217],"discover":[99],"explore":[101],"novel":[103],"attack":[104,125,204],"allows":[106],"attackers":[107],"identify":[109,206],"visited":[113],"by":[114],"user":[116],"based":[117,128,191],"on":[118,129,192],"user\u2019s":[120,165],"encrypted":[121,166],"web":[122,133,225],"traffic.":[123],"The":[124,141,233],"predicated":[127],"sizes":[131,148],"for":[135],"different":[136],"NVD.":[140],"have":[144],"relatively":[145],"static":[146],"page":[147,179,188],"many":[150],"pages\u2019":[152],"size":[153,175,194],"unique.":[155],"We":[156],"show":[157,201],"attacker":[160],"monitors":[162],"target":[164],"network":[167],"traffic":[168],"able":[171],"obtain":[173],"being":[180],"accessed,":[181],"then":[183],"figure":[184],"out":[185],"it":[189],"information.":[195],"Evaluations":[196],"over":[197],"real":[198],"data":[200],"high":[211],"accuracy.":[212],"To":[213],"attack,":[216],"propose":[218],"three":[219],"solutions":[220],"work":[222],"client":[226],"side":[227],"and/or":[228],"server":[231],"side.":[232],"has":[235,239],"been":[236],"alerted":[237],"fixed":[240],"issue.":[242]},"counts_by_year":[],"updated_date":"2026-03-07T16:01:11.037858","created_date":"2025-10-22T00:00:00"}