{"id":"https://openalex.org/W3016101149","doi":"https://doi.org/10.1109/tdsc.2020.2986112","title":"A Praise for Defensive Programming: Leveraging Uncertainty for Effective Malware Mitigation","display_name":"A Praise for Defensive Programming: Leveraging Uncertainty for Effective Malware Mitigation","publication_year":2020,"publication_date":"2020-04-08","ids":{"openalex":"https://openalex.org/W3016101149","doi":"https://doi.org/10.1109/tdsc.2020.2986112","mag":"3016101149"},"language":"en","primary_location":{"id":"doi:10.1109/tdsc.2020.2986112","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2020.2986112","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086586147","display_name":"Ruimin Sun","orcid":"https://orcid.org/0000-0003-2940-5549"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ruimin Sun","raw_affiliation_strings":["University of Florida, Gainesville, FL, USA"],"affiliations":[{"raw_affiliation_string":"University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060510652","display_name":"Marcus Botacin","orcid":"https://orcid.org/0000-0001-6870-1178"},"institutions":[{"id":"https://openalex.org/I52418104","display_name":"Universidade Federal do Paran\u00e1","ror":"https://ror.org/05syd6y78","country_code":"BR","type":"education","lineage":["https://openalex.org/I52418104"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Marcus Botacin","raw_affiliation_strings":["Federal University of Parana, Curitiba, Brazil"],"affiliations":[{"raw_affiliation_string":"Federal University of Parana, Curitiba, Brazil","institution_ids":["https://openalex.org/I52418104"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035959491","display_name":"Nikolaos Sapountzis","orcid":"https://orcid.org/0000-0002-2682-3019"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nikolaos Sapountzis","raw_affiliation_strings":["University of Florida, Gainesville, FL, USA"],"affiliations":[{"raw_affiliation_string":"University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010643450","display_name":"Xiaoyong Yuan","orcid":"https://orcid.org/0000-0003-0782-4187"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xiaoyong Yuan","raw_affiliation_strings":["University of Florida, Gainesville, FL, USA"],"affiliations":[{"raw_affiliation_string":"University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053448222","display_name":"Matt Bishop","orcid":null},"institutions":[{"id":"https://openalex.org/I84218800","display_name":"University of California, Davis","ror":"https://ror.org/05rrcem69","country_code":"US","type":"education","lineage":["https://openalex.org/I84218800"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Matt Bishop","raw_affiliation_strings":["University of California at Davis, Davis, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California at Davis, Davis, CA, USA","institution_ids":["https://openalex.org/I84218800"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075511151","display_name":"Donald E. Porter","orcid":"https://orcid.org/0000-0002-9804-0857"},"institutions":[{"id":"https://openalex.org/I114027177","display_name":"University of North Carolina at Chapel Hill","ror":"https://ror.org/0130frc33","country_code":"US","type":"education","lineage":["https://openalex.org/I114027177"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Donald E. Porter","raw_affiliation_strings":["University of North Carolina at Chapel Hill, Chapel Hill, NC, USA"],"affiliations":[{"raw_affiliation_string":"University of North Carolina at Chapel Hill, Chapel Hill, NC, USA","institution_ids":["https://openalex.org/I114027177"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100353846","display_name":"Xiaolin Li","orcid":"https://orcid.org/0000-0002-3368-159X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Xiaolin Li","raw_affiliation_strings":["AI Institute, Tongdun Technology, China"],"affiliations":[{"raw_affiliation_string":"AI Institute, Tongdun Technology, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5059851424","display_name":"Andr\u00e9 Gr\u00e9gio","orcid":"https://orcid.org/0000-0003-1766-5757"},"institutions":[{"id":"https://openalex.org/I52418104","display_name":"Universidade Federal do Paran\u00e1","ror":"https://ror.org/05syd6y78","country_code":"BR","type":"education","lineage":["https://openalex.org/I52418104"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Andre Gregio","raw_affiliation_strings":["Federal University of Parana, Curitiba, Brazil"],"affiliations":[{"raw_affiliation_string":"Federal University of Parana, Curitiba, Brazil","institution_ids":["https://openalex.org/I52418104"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5082282267","display_name":"Daniela S Oliveira","orcid":"https://orcid.org/0000-0003-3488-0053"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Daniela Oliveira","raw_affiliation_strings":["University of Florida, Gainesville, FL, USA"],"affiliations":[{"raw_affiliation_string":"University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":9,"corresponding_author_ids":["https://openalex.org/A5086586147"],"corresponding_institution_ids":["https://openalex.org/I33213144"],"apc_list":null,"apc_paid":null,"fwci":1.0665,"has_fulltext":false,"cited_by_count":12,"citation_normalized_percentile":{"value":0.7636435,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":"19","issue":"1","first_page":"353","last_page":"369"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9905999898910522,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.930365800857544},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7374280691146851},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.7115497589111328},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.6385256052017212},{"id":"https://openalex.org/keywords/executable","display_name":"Executable","score":0.4972594082355499},{"id":"https://openalex.org/keywords/praise","display_name":"Praise","score":0.47358447313308716},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4585111141204834},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.4474141001701355},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.385678768157959},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.30351346731185913},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2663578391075134}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.930365800857544},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7374280691146851},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.7115497589111328},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.6385256052017212},{"id":"https://openalex.org/C160145156","wikidata":"https://www.wikidata.org/wiki/Q778586","display_name":"Executable","level":2,"score":0.4972594082355499},{"id":"https://openalex.org/C2775868214","wikidata":"https://www.wikidata.org/wiki/Q1208425","display_name":"Praise","level":2,"score":0.47358447313308716},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4585111141204834},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4474141001701355},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.385678768157959},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.30351346731185913},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2663578391075134},{"id":"https://openalex.org/C124952713","wikidata":"https://www.wikidata.org/wiki/Q8242","display_name":"Literature","level":1,"score":0.0},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tdsc.2020.2986112","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2020.2986112","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},{"id":"pmh:oai:digitalcommons.mtu.edu:michigantech-p-3811","is_oa":false,"landing_page_url":"https://digitalcommons.mtu.edu/michigantech-p/2817","pdf_url":null,"source":{"id":"https://openalex.org/S4377196391","display_name":"Digital Commons - Michigan Tech (Michigan Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I11957088","host_organization_name":"Michigan Technological University","host_organization_lineage":["https://openalex.org/I11957088"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Michigan Tech Publications, Part 1","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.5199999809265137}],"awards":[{"id":"https://openalex.org/G1369184054","display_name":null,"funder_award_id":"OAC-1739025","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G2474443630","display_name":null,"funder_award_id":"CNS-1228839","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G3664450167","display_name":null,"funder_award_id":"CNS-1161541","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G4972695253","display_name":null,"funder_award_id":"CNS-1464801","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G5039715213","display_name":null,"funder_award_id":"CNS-1552059","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7209571775","display_name":null,"funder_award_id":"CNS-1747783","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":37,"referenced_works":["https://openalex.org/W186343359","https://openalex.org/W1490025813","https://openalex.org/W1503224444","https://openalex.org/W1517527854","https://openalex.org/W1545528966","https://openalex.org/W1561880491","https://openalex.org/W1710734607","https://openalex.org/W1974898167","https://openalex.org/W1981221397","https://openalex.org/W2064462335","https://openalex.org/W2096318715","https://openalex.org/W2111038628","https://openalex.org/W2124837944","https://openalex.org/W2125743503","https://openalex.org/W2126345423","https://openalex.org/W2131523719","https://openalex.org/W2140807364","https://openalex.org/W2151135920","https://openalex.org/W2168519318","https://openalex.org/W2291034565","https://openalex.org/W2337699331","https://openalex.org/W2554148185","https://openalex.org/W2560671213","https://openalex.org/W2591653665","https://openalex.org/W2766186205","https://openalex.org/W2771813719","https://openalex.org/W2794801050","https://openalex.org/W2795192879","https://openalex.org/W2883886946","https://openalex.org/W2979280275","https://openalex.org/W3136767761","https://openalex.org/W3210786851","https://openalex.org/W6607589358","https://openalex.org/W6629285517","https://openalex.org/W6629915129","https://openalex.org/W6637688222","https://openalex.org/W6674670408"],"related_works":["https://openalex.org/W4230470889","https://openalex.org/W4297154351","https://openalex.org/W1976531352","https://openalex.org/W1995118279","https://openalex.org/W4240624848","https://openalex.org/W82161441","https://openalex.org/W1576042299","https://openalex.org/W1990602094","https://openalex.org/W2181943964","https://openalex.org/W1528423264"],"abstract_inverted_index":{"A":[0],"promising":[1],"avenue":[2],"for":[3],"improving":[4],"the":[5,25,38,53,68,78,111,114,161],"effectiveness":[6],"of":[7,113,160],"behavioral-based":[8],"malware":[9,103,130,150],"detectors":[10],"is":[11,22],"to":[12,51,86],"leverage":[13],"two-phase":[14,20],"detection":[15,21],"mechanisms.":[16],"Existing":[17],"problem":[18],"in":[19],"that":[23,100,127],"after":[24],"first":[26,69,79],"phase":[27,40],"produces":[28],"borderline":[29,75],"decision,":[30],"suspicious":[31],"behaviors":[32],"are":[33],"not":[34],"well":[35],"contained":[36],"before":[37],"second":[39],"completes.":[41],"This":[42],"article":[43],"improves":[44],"<sc":[45,56,170],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[46,57,171],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Chameleon</small>":[47,58,172],",":[48],"a":[49,96,153,157,176],"framework":[50],"realize":[52],"uncertain":[54,82,115],"environment.":[55],"offers":[59],"two":[60],"environments:":[61],"standard\u2014for":[62],"software":[63,73,87,121,135,163,167],"identified":[64],"as":[65,175],"benign":[66,107,134,162],"by":[67,117,144],"phase,":[70],"and":[71,122,125,131],"uncertain\u2014for":[72],"received":[74],"classification":[76],"from":[77],"phase.":[80],"The":[81,139],"environment":[83,116],"adds":[84],"obstacles":[85],"execution":[88],"through":[89],"random":[90],"perturbations":[91],"applied":[92],"probabilistically.":[93],"We":[94,109],"introduce":[95],"dynamic":[97],"perturbation":[98],"threshold":[99],"can":[101],"target":[102],"disproportionately":[104],"more":[105],"than":[106],"software.":[108],"analyzed":[110],"effects":[112],"manually":[118],"studying":[119],"113":[120],"100":[123],"malware,":[124],"found":[126],"92":[128],"percent":[129,133],"10":[132],"disrupted":[136],"during":[137],"execution.":[138],"results":[140],"were":[141],"then":[142],"corroborated":[143],"an":[145],"extended":[146],"dataset":[147],"(5,679":[148],"Linux":[149],"samples)":[151],"on":[152],"newer":[154],"system.":[155],"Finally,":[156],"careful":[158],"inspection":[159],"crashes":[164],"revealed":[165],"some":[166],"bugs,":[168],"highlighting":[169],"'s":[173],"potential":[174],"practical":[177],"complementary":[178],"anti-malware":[179],"solution.":[180]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":2}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}