{"id":"https://openalex.org/W2744478552","doi":"https://doi.org/10.1109/tifs.2017.2738609","title":"DECIM: Detecting Endpoint Compromise In Messaging","display_name":"DECIM: Detecting Endpoint Compromise In Messaging","publication_year":2017,"publication_date":"2017-08-10","ids":{"openalex":"https://openalex.org/W2744478552","doi":"https://doi.org/10.1109/tifs.2017.2738609","mag":"2744478552"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2017.2738609","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2017.2738609","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"http://orbilu.uni.lu/handle/10993/32515","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5060534829","display_name":"Jiangshan Yu","orcid":"https://orcid.org/0000-0001-8006-7392"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":true,"raw_author_name":"Jiangshan Yu","raw_affiliation_strings":["Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, Luxembourg City, Luxembourg"],"affiliations":[{"raw_affiliation_string":"Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, Luxembourg City, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055690957","display_name":"Mark Ryan","orcid":"https://orcid.org/0000-0002-1632-497X"},"institutions":[{"id":"https://openalex.org/I79619799","display_name":"University of Birmingham","ror":"https://ror.org/03angcq70","country_code":"GB","type":"education","lineage":["https://openalex.org/I79619799"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Mark Ryan","raw_affiliation_strings":["School of Computer Science, University of Birmingham, Birmingham, U.K"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, University of Birmingham, Birmingham, U.K","institution_ids":["https://openalex.org/I79619799"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5054383139","display_name":"Cas Cremers","orcid":"https://orcid.org/0000-0003-0322-2293"},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Cas Cremers","raw_affiliation_strings":["Department of Computer Science, University of Oxford, Oxford, U.K"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, Oxford, U.K","institution_ids":["https://openalex.org/I40120149"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5060534829"],"corresponding_institution_ids":["https://openalex.org/I186903577"],"apc_list":null,"apc_paid":null,"fwci":2.2191,"has_fulltext":true,"cited_by_count":17,"citation_normalized_percentile":{"value":0.89291382,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"13","issue":"1","first_page":"106","last_page":"118"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.9049524068832397},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6465890407562256},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.5949270725250244},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.574853777885437},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.531936526298523},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.48927709460258484},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.4852299690246582},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.44884970784187317},{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.43239620327949524},{"id":"https://openalex.org/keywords/gas-meter-prover","display_name":"Gas meter prover","score":0.43028807640075684},{"id":"https://openalex.org/keywords/property","display_name":"Property (philosophy)","score":0.4110293686389923},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3336942791938782},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.19931712746620178},{"id":"https://openalex.org/keywords/mathematical-proof","display_name":"Mathematical proof","score":0.14268648624420166}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.9049524068832397},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6465890407562256},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.5949270725250244},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.574853777885437},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.531936526298523},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.48927709460258484},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.4852299690246582},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.44884970784187317},{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.43239620327949524},{"id":"https://openalex.org/C159718280","wikidata":"https://www.wikidata.org/wiki/Q5526353","display_name":"Gas meter prover","level":3,"score":0.43028807640075684},{"id":"https://openalex.org/C189950617","wikidata":"https://www.wikidata.org/wiki/Q937228","display_name":"Property (philosophy)","level":2,"score":0.4110293686389923},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3336942791938782},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.19931712746620178},{"id":"https://openalex.org/C108710211","wikidata":"https://www.wikidata.org/wiki/Q11538","display_name":"Mathematical proof","level":2,"score":0.14268648624420166},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.1109/tifs.2017.2738609","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2017.2738609","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},{"id":"pmh:oai:orbilu.uni.lu:10993/32515","is_oa":true,"landing_page_url":"https://orbilu.uni.lu/handle/10993/32515","pdf_url":"http://orbilu.uni.lu/handle/10993/32515","source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Transactions on Information Forensics and Security (2018)","raw_type":"peer reviewed"},{"id":"pmh:oai:pure.atira.dk:publications/b7ae08dd-dcf8-4a75-92b6-eff97f94f225","is_oa":true,"landing_page_url":"https://research.birmingham.ac.uk/portal/en/publications/decim(b7ae08dd-dcf8-4a75-92b6-eff97f94f225).html","pdf_url":"http://pure-oai.bham.ac.uk/ws/files/42002430/KUD_main.pdf","source":{"id":"https://openalex.org/S4306402634","display_name":"University of Birmingham Research Portal (University of Birmingham)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79619799","host_organization_name":"University of Birmingham","host_organization_lineage":["https://openalex.org/I79619799"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Yu , J , Ryan , M & Cremers , C 2017 , ' DECIM : Detecting Endpoint Compromise In Messaging ' , IEEE Transactions on Information Forensics and Security . https://doi.org/10.1109/TIFS.2017.2738609","raw_type":"article"},{"id":"pmh:oai:pure.atira.dk:Publications/b7ae08dd-dcf8-4a75-92b6-eff97f94f225","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306402634","display_name":"University of Birmingham Research Portal (University of Birmingham)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79619799","host_organization_name":"University of Birmingham","host_organization_lineage":["https://openalex.org/I79619799"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":""},{"id":"pmh:oai:pure.atira.dk:openaire_cris_publications/b7ae08dd-dcf8-4a75-92b6-eff97f94f225","is_oa":true,"landing_page_url":"https://research.birmingham.ac.uk/en/publications/b7ae08dd-dcf8-4a75-92b6-eff97f94f225","pdf_url":null,"source":{"id":"https://openalex.org/S4306402634","display_name":"University of Birmingham Research Portal (University of Birmingham)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79619799","host_organization_name":"University of Birmingham","host_organization_lineage":["https://openalex.org/I79619799"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Yu, J, Ryan, M & Cremers, C 2017, 'DECIM : Detecting Endpoint Compromise In Messaging', IEEE Transactions on Information Forensics and Security. https://doi.org/10.1109/TIFS.2017.2738609","raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:orbilu.uni.lu:10993/32515","is_oa":true,"landing_page_url":"https://orbilu.uni.lu/handle/10993/32515","pdf_url":"http://orbilu.uni.lu/handle/10993/32515","source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Transactions on Information Forensics and Security (2018)","raw_type":"peer reviewed"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.5199999809265137}],"awards":[{"id":"https://openalex.org/G5822944881","display_name":null,"funder_award_id":"FNR/P14/8149128","funder_id":"https://openalex.org/F4320321038","funder_display_name":"Fonds National de la Recherche Luxembourg"},{"id":"https://openalex.org/G594500851","display_name":null,"funder_award_id":"EP/H005501/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G8682795926","display_name":null,"funder_award_id":"EP/R007128/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320321038","display_name":"Fonds National de la Recherche Luxembourg","ror":"https://ror.org/039z13y21"},{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W2744478552.pdf"},"referenced_works_count":22,"referenced_works":["https://openalex.org/W146244851","https://openalex.org/W1485200701","https://openalex.org/W1544435806","https://openalex.org/W1600255172","https://openalex.org/W1903195954","https://openalex.org/W2013448720","https://openalex.org/W2015787697","https://openalex.org/W2078872626","https://openalex.org/W2095194302","https://openalex.org/W2095738444","https://openalex.org/W2099175354","https://openalex.org/W2135300639","https://openalex.org/W2142145056","https://openalex.org/W2159801413","https://openalex.org/W2220632610","https://openalex.org/W3030986018","https://openalex.org/W3100279392","https://openalex.org/W4210467114","https://openalex.org/W4210531213","https://openalex.org/W4233819588","https://openalex.org/W6635796257","https://openalex.org/W6778750317"],"related_works":["https://openalex.org/W2801622120","https://openalex.org/W2164141394","https://openalex.org/W1967649051","https://openalex.org/W3036524962","https://openalex.org/W4240977217","https://openalex.org/W2508088450","https://openalex.org/W4214750239","https://openalex.org/W2389434635","https://openalex.org/W2279908259","https://openalex.org/W2102905434"],"abstract_inverted_index":{"We":[0,54,93,105],"present":[1,94],"DECIM,":[2],"an":[3,22,40],"approach":[4],"to":[5,36,51,64,67,124,129],"solve":[6],"the":[7,34,44,90,99],"challenge":[8],"of":[9,33,71,115,153],"detecting":[10],"endpoint":[11],"compromise":[12],"in":[13,21,39,49],"messaging.":[14],"DECIM":[15,108],"manages":[16],"and":[17,24,82,149],"refreshes":[18],"encryption/decryption":[19],"keys":[20,131],"automatic":[23],"transparent":[25],"way:":[26],"it":[27,29],"makes":[28],"necessary":[30],"for":[31,103,113],"uses":[32],"key":[35,140],"be":[37],"inserted":[38],"append-only":[41],"log,":[42],"which":[43],"device":[45,73],"owner":[46],"can":[47],"interrogate":[48],"order":[50],"detect":[52,68],"misuse.":[53],"propose":[55],"a":[56,79,95,147],"multi-device":[57],"messaging":[58,109],"protocol":[59],"that":[60,107],"exploits":[61],"our":[62,144],"concept":[63],"allow":[65],"users":[66],"unauthorised":[69],"usage":[70],"their":[72],"keys.":[74],"It":[75],"is":[76,110],"co-designed":[77],"with":[78],"formal":[80],"model,":[81],"we":[83,119],"verify":[84],"its":[85],"core":[86],"security":[87],"property":[88],"using":[89],"Tamarin":[91],"prover.":[92],"proof-of-concept":[96],"implementation":[97],"providing":[98],"main":[100],"features":[101],"required":[102],"deployment.":[104],"find":[106],"efficient":[111],"even":[112],"millions":[114],"users.":[116],"The":[117],"methods":[118,127,145],"introduce":[120],"are":[121],"not":[122],"intended":[123],"replace":[125],"existing":[126],"used":[128],"keep":[130],"safe":[132],"(such":[133],"as":[134],"hardware":[135],"devices,":[136],"careful":[137],"procedures,":[138],"or":[139],"refreshment":[141],"techniques).":[142],"Rather,":[143],"provide":[146],"useful":[148],"effective":[150],"additional":[151],"layer":[152],"security.":[154]},"counts_by_year":[{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":4},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}