{"id":"https://openalex.org/W4386363082","doi":"https://doi.org/10.1109/tmc.2023.3311012","title":"CMD: Co-Analyzed IoT Malware Detection and Forensics via Network and Hardware Domains","display_name":"CMD: Co-Analyzed IoT Malware Detection and Forensics via Network and Hardware Domains","publication_year":2023,"publication_date":"2023-09-01","ids":{"openalex":"https://openalex.org/W4386363082","doi":"https://doi.org/10.1109/tmc.2023.3311012"},"language":"en","primary_location":{"id":"doi:10.1109/tmc.2023.3311012","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tmc.2023.3311012","pdf_url":null,"source":{"id":"https://openalex.org/S69141925","display_name":"IEEE Transactions on Mobile Computing","issn_l":"1536-1233","issn":["1536-1233","1558-0660","2161-9875"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Mobile Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://ink.library.smu.edu.sg/sis_research/8740","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101902155","display_name":"Ziming Zhao","orcid":"https://orcid.org/0000-0003-1455-4330"},"institutions":[{"id":"https://openalex.org/I168879160","display_name":"Zhejiang University of Science and Technology","ror":"https://ror.org/05mx0wr29","country_code":"CN","type":"education","lineage":["https://openalex.org/I168879160"]},{"id":"https://openalex.org/I4210092870","display_name":"Jiaxing University","ror":"https://ror.org/00j2a7k55","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210092870"]},{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Ziming Zhao","raw_affiliation_strings":["College of Computer Science and Technology, Zhejiang University, Hangzhou, China","ZJU-Hangzhou Global Scientific and Technological Innovation Center, China","Key Laboratory of Blockchain and Cyberspace Governance of Zhejiang Province, China","Jiaxing Research Institute, Zhejiang University, China","Zhengzhou Xinda Institute of Advanced Technology, Zhengzhou, China"],"raw_orcid":"https://orcid.org/0000-0003-1455-4330","affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I168879160"]},{"raw_affiliation_string":"ZJU-Hangzhou Global Scientific and Technological Innovation Center, China","institution_ids":[]},{"raw_affiliation_string":"Key Laboratory of Blockchain and Cyberspace Governance of Zhejiang Province, China","institution_ids":[]},{"raw_affiliation_string":"Jiaxing Research Institute, Zhejiang University, China","institution_ids":["https://openalex.org/I4210092870","https://openalex.org/I76130692"]},{"raw_affiliation_string":"Zhengzhou Xinda Institute of Advanced Technology, Zhengzhou, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022409306","display_name":"Zhaoxuan Li","orcid":"https://orcid.org/0000-0002-2195-0799"},"institutions":[{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"government","lineage":["https://openalex.org/I19820366"]},{"id":"https://openalex.org/I37448385","display_name":"China People's Public Security University","ror":"https://ror.org/05twya590","country_code":"CN","type":"education","lineage":["https://openalex.org/I37448385"]},{"id":"https://openalex.org/I4210156404","display_name":"Institute of Information Engineering","ror":"https://ror.org/04r53se39","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210156404"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhaoxuan Li","raw_affiliation_strings":["State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China","School of Cyber Security, UCAS, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-2195-0799","affiliations":[{"raw_affiliation_string":"State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China","institution_ids":["https://openalex.org/I4210156404","https://openalex.org/I19820366"]},{"raw_affiliation_string":"School of Cyber Security, UCAS, Beijing, China","institution_ids":["https://openalex.org/I37448385"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058013874","display_name":"Jiongchi Yu","orcid":"https://orcid.org/0000-0002-2888-4499"},"institutions":[{"id":"https://openalex.org/I79891267","display_name":"Singapore Management University","ror":"https://ror.org/050qmg959","country_code":"SG","type":"education","lineage":["https://openalex.org/I79891267"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Jiongchi Yu","raw_affiliation_strings":["School of Computing and Information Systems, Singapore Management University, Singapore"],"raw_orcid":"https://orcid.org/0000-0002-2888-4499","affiliations":[{"raw_affiliation_string":"School of Computing and Information Systems, Singapore Management University, Singapore","institution_ids":["https://openalex.org/I79891267"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100403380","display_name":"Fan Zhang","orcid":"https://orcid.org/0000-0001-6087-8243"},"institutions":[{"id":"https://openalex.org/I168879160","display_name":"Zhejiang University of Science and Technology","ror":"https://ror.org/05mx0wr29","country_code":"CN","type":"education","lineage":["https://openalex.org/I168879160"]},{"id":"https://openalex.org/I4210092870","display_name":"Jiaxing University","ror":"https://ror.org/00j2a7k55","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210092870"]},{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Fan Zhang","raw_affiliation_strings":["College of Computer Science and Technology, Zhejiang University, Hangzhou, China","ZJU-Hangzhou Global Scientific and Technological Innovation Center, China","Zhengzhou Xinda Institute of Advanced Technology, Zhengzhou, China","Key Laboratory of Blockchain and Cyberspace Governance of Zhejiang Province, China","Jiaxing Research Institute, Zhejiang University, China"],"raw_orcid":"https://orcid.org/0000-0001-6087-8243","affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I168879160"]},{"raw_affiliation_string":"ZJU-Hangzhou Global Scientific and Technological Innovation Center, China","institution_ids":[]},{"raw_affiliation_string":"Zhengzhou Xinda Institute of Advanced Technology, Zhengzhou, China","institution_ids":[]},{"raw_affiliation_string":"Key Laboratory of Blockchain and Cyberspace Governance of Zhejiang Province, China","institution_ids":[]},{"raw_affiliation_string":"Jiaxing Research Institute, Zhejiang University, China","institution_ids":["https://openalex.org/I4210092870","https://openalex.org/I76130692"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084396416","display_name":"Xiaofei Xie","orcid":"https://orcid.org/0000-0002-1288-6502"},"institutions":[{"id":"https://openalex.org/I79891267","display_name":"Singapore Management University","ror":"https://ror.org/050qmg959","country_code":"SG","type":"education","lineage":["https://openalex.org/I79891267"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Xiaofei Xie","raw_affiliation_strings":["School of Computing and Information Systems, Singapore Management University, Singapore"],"raw_orcid":"https://orcid.org/0000-0002-1288-6502","affiliations":[{"raw_affiliation_string":"School of Computing and Information Systems, Singapore Management University, Singapore","institution_ids":["https://openalex.org/I79891267"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055561370","display_name":"Haitao Xu","orcid":"https://orcid.org/0000-0002-0353-3879"},"institutions":[{"id":"https://openalex.org/I168879160","display_name":"Zhejiang University of Science and Technology","ror":"https://ror.org/05mx0wr29","country_code":"CN","type":"education","lineage":["https://openalex.org/I168879160"]},{"id":"https://openalex.org/I4210092870","display_name":"Jiaxing University","ror":"https://ror.org/00j2a7k55","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210092870"]},{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haitao Xu","raw_affiliation_strings":["College of Computer Science and Technology, Zhejiang University, Hangzhou, China","Key Laboratory of Blockchain and Cyberspace Governance of Zhejiang Province, China","ZJU-Hangzhou Global Scientific and Technological Innovation Center, China","Zhengzhou Xinda Institute of Advanced Technology, Zhengzhou, China","Jiaxing Research Institute, Zhejiang University, China"],"raw_orcid":"https://orcid.org/0000-0002-0353-3879","affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I168879160"]},{"raw_affiliation_string":"Key Laboratory of Blockchain and Cyberspace Governance of Zhejiang Province, China","institution_ids":[]},{"raw_affiliation_string":"ZJU-Hangzhou Global Scientific and Technological Innovation Center, China","institution_ids":[]},{"raw_affiliation_string":"Zhengzhou Xinda Institute of Advanced Technology, Zhengzhou, China","institution_ids":[]},{"raw_affiliation_string":"Jiaxing Research Institute, Zhejiang University, China","institution_ids":["https://openalex.org/I4210092870","https://openalex.org/I76130692"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100687673","display_name":"Binbin Chen","orcid":"https://orcid.org/0000-0002-9584-0082"},"institutions":[{"id":"https://openalex.org/I152815399","display_name":"Singapore University of Technology and Design","ror":"https://ror.org/05j6fvn87","country_code":"SG","type":"education","lineage":["https://openalex.org/I152815399"]},{"id":"https://openalex.org/I4210108443","display_name":"Advanced Digital Sciences Center","ror":"https://ror.org/01xaqx887","country_code":"SG","type":"facility","lineage":["https://openalex.org/I4210108443"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Binbin Chen","raw_affiliation_strings":["Advanced Digital Sciences Center, Singapore","Advanced Digital Sciences Center, Singapore, Singapore","Singapore University of Technology & Design (SUTD), Singapore","Singapore University of Technology and Design, Singapore, Singapore"],"raw_orcid":"https://orcid.org/0000-0002-9584-0082","affiliations":[{"raw_affiliation_string":"Advanced Digital Sciences Center, Singapore","institution_ids":["https://openalex.org/I4210108443"]},{"raw_affiliation_string":"Advanced Digital Sciences Center, Singapore, Singapore","institution_ids":["https://openalex.org/I4210108443"]},{"raw_affiliation_string":"Singapore University of Technology & Design (SUTD), Singapore","institution_ids":["https://openalex.org/I152815399"]},{"raw_affiliation_string":"Singapore University of Technology and Design, Singapore, Singapore","institution_ids":["https://openalex.org/I152815399"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5101902155"],"corresponding_institution_ids":["https://openalex.org/I168879160","https://openalex.org/I4210092870","https://openalex.org/I76130692"],"apc_list":null,"apc_paid":null,"fwci":3.4541,"has_fulltext":false,"cited_by_count":18,"citation_normalized_percentile":{"value":0.93766636,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"23","issue":"5","first_page":"5589","last_page":"5603"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7042517066001892},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.688931941986084},{"id":"https://openalex.org/keywords/network-forensics","display_name":"Network forensics","score":0.5376547574996948},{"id":"https://openalex.org/keywords/semantics","display_name":"Semantics (computer science)","score":0.45962440967559814},{"id":"https://openalex.org/keywords/host","display_name":"Host (biology)","score":0.4411095976829529},{"id":"https://openalex.org/keywords/side-channel-attack","display_name":"Side channel attack","score":0.43223845958709717},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3475983142852783},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.3327481746673584},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2712025046348572},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.22940215468406677},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.2008868157863617},{"id":"https://openalex.org/keywords/digital-forensics","display_name":"Digital forensics","score":0.1506563425064087}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7042517066001892},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.688931941986084},{"id":"https://openalex.org/C50747538","wikidata":"https://www.wikidata.org/wiki/Q7001032","display_name":"Network forensics","level":3,"score":0.5376547574996948},{"id":"https://openalex.org/C184337299","wikidata":"https://www.wikidata.org/wiki/Q1437428","display_name":"Semantics (computer science)","level":2,"score":0.45962440967559814},{"id":"https://openalex.org/C126831891","wikidata":"https://www.wikidata.org/wiki/Q221673","display_name":"Host (biology)","level":2,"score":0.4411095976829529},{"id":"https://openalex.org/C49289754","wikidata":"https://www.wikidata.org/wiki/Q2267081","display_name":"Side channel attack","level":3,"score":0.43223845958709717},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3475983142852783},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.3327481746673584},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2712025046348572},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.22940215468406677},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.2008868157863617},{"id":"https://openalex.org/C84418412","wikidata":"https://www.wikidata.org/wiki/Q3246940","display_name":"Digital forensics","level":2,"score":0.1506563425064087},{"id":"https://openalex.org/C18903297","wikidata":"https://www.wikidata.org/wiki/Q7150","display_name":"Ecology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tmc.2023.3311012","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tmc.2023.3311012","pdf_url":null,"source":{"id":"https://openalex.org/S69141925","display_name":"IEEE Transactions on Mobile Computing","issn_l":"1536-1233","issn":["1536-1233","1558-0660","2161-9875"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Mobile Computing","raw_type":"journal-article"},{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-9743","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/sis_research/8740","pdf_url":null,"source":{"id":"https://openalex.org/S4306401925","display_name":"Singapore Management University Institutional Knowledge (InK) (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1109/TMC.2023.3311012","raw_type":"Journal Article"}],"best_oa_location":{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-9743","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/sis_research/8740","pdf_url":null,"source":{"id":"https://openalex.org/S4306401925","display_name":"Singapore Management University Institutional Knowledge (InK) (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1109/TMC.2023.3311012","raw_type":"Journal Article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G4013555790","display_name":null,"funder_award_id":"62072398","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G6027343793","display_name":null,"funder_award_id":"62227805","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G6487752525","display_name":null,"funder_award_id":"62172405","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320322927","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":66,"referenced_works":["https://openalex.org/W1974649417","https://openalex.org/W1985987493","https://openalex.org/W2000756828","https://openalex.org/W2048845656","https://openalex.org/W2065955975","https://openalex.org/W2122672392","https://openalex.org/W2166844173","https://openalex.org/W2401503174","https://openalex.org/W2513948921","https://openalex.org/W2558600380","https://openalex.org/W2576376563","https://openalex.org/W2605422749","https://openalex.org/W2625408821","https://openalex.org/W2790853175","https://openalex.org/W2792078641","https://openalex.org/W2794801050","https://openalex.org/W2884568434","https://openalex.org/W2919493784","https://openalex.org/W2920544805","https://openalex.org/W2947175569","https://openalex.org/W2947969447","https://openalex.org/W2963197901","https://openalex.org/W2976836186","https://openalex.org/W2995988651","https://openalex.org/W3006711782","https://openalex.org/W3007878096","https://openalex.org/W3016038045","https://openalex.org/W3021740526","https://openalex.org/W3047333263","https://openalex.org/W3047562633","https://openalex.org/W3091920654","https://openalex.org/W3095263801","https://openalex.org/W3109160943","https://openalex.org/W3132321084","https://openalex.org/W3136284412","https://openalex.org/W3137205257","https://openalex.org/W3138056083","https://openalex.org/W3138838255","https://openalex.org/W3153908132","https://openalex.org/W3173170122","https://openalex.org/W3206660056","https://openalex.org/W4224315052","https://openalex.org/W4226254095","https://openalex.org/W4226283591","https://openalex.org/W4256383029","https://openalex.org/W4281393128","https://openalex.org/W4283207618","https://openalex.org/W4312818044","https://openalex.org/W4319994093","https://openalex.org/W4322706638","https://openalex.org/W6603957951","https://openalex.org/W6605793882","https://openalex.org/W6629319858","https://openalex.org/W6633585585","https://openalex.org/W6678042037","https://openalex.org/W6678079094","https://openalex.org/W6734194636","https://openalex.org/W6743446608","https://openalex.org/W6754375631","https://openalex.org/W6763780955","https://openalex.org/W6766951209","https://openalex.org/W6767139982","https://openalex.org/W6794187937","https://openalex.org/W6794740203","https://openalex.org/W6794840795","https://openalex.org/W6803339927"],"related_works":["https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W1764168690","https://openalex.org/W2537959205","https://openalex.org/W2740895074","https://openalex.org/W2772446090","https://openalex.org/W4284893819","https://openalex.org/W3152891574","https://openalex.org/W4316881845","https://openalex.org/W2975527072"],"abstract_inverted_index":{"With":[0],"the":[1,66,97,112,119,139,157,234,250,258,297,301,311],"widespread":[2],"use":[3],"of":[4,6,69,220,270,310],"Internet":[5],"Things":[7],"(IoT)":[8],"devices,":[9],"malware":[10,85],"detection":[11,86,175],"has":[12],"become":[13],"a":[14,60,82,105,134,306],"hot":[15],"spot":[16],"for":[17,56,160,300],"both":[18],"academic":[19],"and":[20,31,46,53,87,93,151,192,237,304],"industrial":[21],"communities.":[22],"Existing":[23],"approaches":[24],"can":[25],"be":[26,51],"roughly":[27],"categorized":[28],"into":[29],"network-side":[30,35],"host-side.":[32],"However,":[33],"existing":[34],"methods":[36,49],"are":[37],"difficult":[38],"to":[39,110],"capture":[40,111],"contextual":[41,113],"semantics":[42,114],"from":[43,115,145],"cross-source":[44,116],"traffic,":[45],"previous":[47,263],"host-side":[48],"could":[50,155,208],"adversary-perceived":[52],"expose":[54],"risks":[55],"tampering.":[57],"More":[58],"importantly,":[59],"single":[61],"perspective":[62],"cannot":[63],"comprehensively":[64],"track":[65],"multi-stage":[67],"lifecycle":[68],"IoT":[70,84,235,240],"malware.":[71],"In":[72],"this":[73],"paper,":[74],"we":[75,166,295],"present":[76],"<inline-formula":[77,100,122,169,181,195,226,271,286],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[78,101,123,170,179,182,196,227,266,272,284,287],"xmlns:xlink=\"http://www.w3.org/1999/xlink\"><tex-math>${\\sf":[79,102,124,171,228,273],"CMD}$</tex-math></inline-formula>":[80,103,125,172,229,274],",":[81],"co-analyzed":[83],"forensics":[88,254],"system":[89],"by":[90,137],"combining":[91],"hardware":[92,120,252],"network":[94,98,109,303],"domains.":[95],"For":[96,118],"part,":[99,121],"proposes":[104],"tailored":[106],"capsule":[107,302],"neural":[108],"traffic.":[117],"designs":[126],"an":[127,222],"entire":[128],"file":[129,248],"operation":[130,200,214,312],"recovery":[131],"process":[132],"in":[133],"side-channel":[135],"manner":[136],"leveraging":[138],"Serial":[140],"Peripheral":[141],"Interface":[142],"(SPI)":[143],"signals":[144],"on-chip":[146],"traces.":[147],"These":[148],"traffic":[149],"provenance":[150],"operating":[152],"logs":[153,269,313],"information":[154],"benefit":[156,219],"anti-virus":[158],"countermeasures":[159],"security":[161],"practitioners.":[162],"By":[163],"practical":[164],"evaluation,":[165],"demonstrate":[167],"that":[168],"realizes":[173],"outstanding":[174],"effects":[176],"(":[177,282],"<italic":[178,265,283],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">e.g.,</i>":[180,267,285],"xmlns:xlink=\"http://www.w3.org/1999/xlink\"><tex-math":[183,197,288],"notation=\"LaTeX\">$\\sim$</tex-math></inline-formula>":[184,198,289],"99.88%":[185],"F1-score)":[186],"compared":[187],"with":[188,213],"seven":[189],"state-of-the-art":[190],"methods,":[191],"recovers":[193],"96.88%":[194],"99.75%":[199],"commands":[201],"even":[202],"if":[203],"against":[204],"adaptive":[205],"adversaries":[206],"(that":[207],"kill":[209],"processes":[210],"or":[211],"tamper":[212],"log":[215],"files).":[216],"A":[217],"by-product":[218],"such":[221],"external":[223],"monitor":[224],"is":[225],"introduces":[230],"zero":[231],"latency":[232],"on":[233,247],"device,":[236],"incurs":[238],"negligible":[239],"CPU":[241],"utilization.":[242],"Also,":[243],"since":[244],"SPI":[245],"focuses":[246],"operations,":[249],"proposed":[251],"trace":[253],"does":[255],"not":[256],"have":[257],"data":[259],"explosion":[260],"problem":[261],"like":[262],"work,":[264],"recovered":[268],"only":[275],"take":[276],"up":[277],"limited":[278],"extra":[279],"space":[280],"overhead":[281],"0.2":[290],"MB":[291],"per":[292],"malware).":[293],"Furthermore,":[294],"provide":[296],"model":[298],"interpretability":[299],"develop":[305],"case":[307],"study":[308],"(Hajime)":[309],"recovery.":[314]},"counts_by_year":[{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":11},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}