{"id":"https://openalex.org/W1980925977","doi":"https://doi.org/10.1145/2498328.2500078","title":"Evolution of digital forensics in virtualization by using virtual machine introspection","display_name":"Evolution of digital forensics in virtualization by using virtual machine introspection","publication_year":2013,"publication_date":"2013-04-04","ids":{"openalex":"https://openalex.org/W1980925977","doi":"https://doi.org/10.1145/2498328.2500078","mag":"1980925977"},"language":"en","primary_location":{"id":"doi:10.1145/2498328.2500078","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2498328.2500078","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 51st ACM Southeast Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5002624118","display_name":"James Poore","orcid":null},"institutions":[{"id":"https://openalex.org/I919208787","display_name":"Louisiana Tech University","ror":"https://ror.org/04q9esz89","country_code":"US","type":"education","lineage":["https://openalex.org/I2799628689","https://openalex.org/I919208787"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"James Poore","raw_affiliation_strings":["Louisiana Tech University, Ruston, LA","Louisiana Tech. University, Ruston, LA"],"affiliations":[{"raw_affiliation_string":"Louisiana Tech University, Ruston, LA","institution_ids":["https://openalex.org/I919208787"]},{"raw_affiliation_string":"Louisiana Tech. University, Ruston, LA","institution_ids":["https://openalex.org/I919208787"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5109564086","display_name":"Juan Carlos Flores","orcid":null},"institutions":[{"id":"https://openalex.org/I919208787","display_name":"Louisiana Tech University","ror":"https://ror.org/04q9esz89","country_code":"US","type":"education","lineage":["https://openalex.org/I2799628689","https://openalex.org/I919208787"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Juan Carlos Flores","raw_affiliation_strings":["Louisiana Tech University, Ruston, LA","Louisiana Tech. University, Ruston, LA"],"affiliations":[{"raw_affiliation_string":"Louisiana Tech University, Ruston, LA","institution_ids":["https://openalex.org/I919208787"]},{"raw_affiliation_string":"Louisiana Tech. University, Ruston, LA","institution_ids":["https://openalex.org/I919208787"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5050233765","display_name":"Travis Atkison","orcid":"https://orcid.org/0000-0001-7258-7355"},"institutions":[{"id":"https://openalex.org/I919208787","display_name":"Louisiana Tech University","ror":"https://ror.org/04q9esz89","country_code":"US","type":"education","lineage":["https://openalex.org/I2799628689","https://openalex.org/I919208787"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Travis Atkison","raw_affiliation_strings":["Louisiana Tech University, Ruston, LA","Louisiana Tech. University, Ruston, LA"],"affiliations":[{"raw_affiliation_string":"Louisiana Tech University, Ruston, LA","institution_ids":["https://openalex.org/I919208787"]},{"raw_affiliation_string":"Louisiana Tech. University, Ruston, LA","institution_ids":["https://openalex.org/I919208787"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5002624118"],"corresponding_institution_ids":["https://openalex.org/I919208787"],"apc_list":null,"apc_paid":null,"fwci":0.9576,"has_fulltext":false,"cited_by_count":11,"citation_normalized_percentile":{"value":0.73357151,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9948999881744385,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/virtualization","display_name":"Virtualization","score":0.9111526012420654},{"id":"https://openalex.org/keywords/digital-forensics","display_name":"Digital forensics","score":0.8098630905151367},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7992126941680908},{"id":"https://openalex.org/keywords/hacker","display_name":"Hacker","score":0.7709065675735474},{"id":"https://openalex.org/keywords/computer-forensics","display_name":"Computer forensics","score":0.7217583060264587},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.5858452320098877},{"id":"https://openalex.org/keywords/virtual-machine","display_name":"Virtual machine","score":0.5824356079101562},{"id":"https://openalex.org/keywords/full-virtualization","display_name":"Full virtualization","score":0.5151054263114929},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5146373510360718},{"id":"https://openalex.org/keywords/hardware-virtualization","display_name":"Hardware virtualization","score":0.4972255527973175},{"id":"https://openalex.org/keywords/network-forensics","display_name":"Network forensics","score":0.42285627126693726},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.29674577713012695},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.247193843126297}],"concepts":[{"id":"https://openalex.org/C513985346","wikidata":"https://www.wikidata.org/wiki/Q270471","display_name":"Virtualization","level":3,"score":0.9111526012420654},{"id":"https://openalex.org/C84418412","wikidata":"https://www.wikidata.org/wiki/Q3246940","display_name":"Digital forensics","level":2,"score":0.8098630905151367},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7992126941680908},{"id":"https://openalex.org/C86844869","wikidata":"https://www.wikidata.org/wiki/Q2798820","display_name":"Hacker","level":2,"score":0.7709065675735474},{"id":"https://openalex.org/C556601545","wikidata":"https://www.wikidata.org/wiki/Q878553","display_name":"Computer forensics","level":3,"score":0.7217583060264587},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.5858452320098877},{"id":"https://openalex.org/C25344961","wikidata":"https://www.wikidata.org/wiki/Q192726","display_name":"Virtual machine","level":2,"score":0.5824356079101562},{"id":"https://openalex.org/C47878483","wikidata":"https://www.wikidata.org/wiki/Q848333","display_name":"Full virtualization","level":4,"score":0.5151054263114929},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5146373510360718},{"id":"https://openalex.org/C68793194","wikidata":"https://www.wikidata.org/wiki/Q1616095","display_name":"Hardware virtualization","level":5,"score":0.4972255527973175},{"id":"https://openalex.org/C50747538","wikidata":"https://www.wikidata.org/wiki/Q7001032","display_name":"Network forensics","level":3,"score":0.42285627126693726},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.29674577713012695},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.247193843126297}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2498328.2500078","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2498328.2500078","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 51st ACM Southeast Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G650455502","display_name":null,"funder_award_id":"FA9550-10-1-0289","funder_id":"https://openalex.org/F4320338294","funder_display_name":"Air Force Research Laboratory"}],"funders":[{"id":"https://openalex.org/F4320338294","display_name":"Air Force Research Laboratory","ror":"https://ror.org/02e2egq70"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":18,"referenced_works":["https://openalex.org/W1492484099","https://openalex.org/W1493144261","https://openalex.org/W1546317334","https://openalex.org/W1641762327","https://openalex.org/W2048997531","https://openalex.org/W2087854100","https://openalex.org/W2100940060","https://openalex.org/W2138072040","https://openalex.org/W2138525936","https://openalex.org/W2138580357","https://openalex.org/W2155750598","https://openalex.org/W2155877710","https://openalex.org/W2156961229","https://openalex.org/W2159265516","https://openalex.org/W2168735232","https://openalex.org/W2183802064","https://openalex.org/W2494899919","https://openalex.org/W4232895233"],"related_works":["https://openalex.org/W4238452393","https://openalex.org/W2489557937","https://openalex.org/W2161391695","https://openalex.org/W3018602826","https://openalex.org/W2480188389","https://openalex.org/W4240498326","https://openalex.org/W4283205458","https://openalex.org/W4385257722","https://openalex.org/W2972427363","https://openalex.org/W2073008201"],"abstract_inverted_index":{"Computer":[0],"virtualization":[1,37,68],"is":[2,126],"not":[3],"a":[4,74,137,172],"new":[5,28,75,95],"technology,":[6],"it":[7,17],"has":[8,69],"become":[9],"increasingly":[10],"important":[11],"because":[12],"of":[13,33,67,77,89,93,106,112,128,139,145,175],"the":[14,31,64,71,90,110,119,134,143,176],"many":[15],"advantages":[16],"offers":[18],"to":[19,23,30,39,55,83,97,117,160,166],"businesses":[20],"and":[21,44,50,81,148],"individuals":[22],"reduce":[24,109],"costs,":[25],"while":[26],"introducing":[27],"challenges":[29],"field":[32],"digital":[34,149,158],"forensics.":[35,150],"As":[36],"continues":[38],"be":[40],"adopted":[41],"by":[42],"more":[43,45],"companies":[46],"every":[47],"year,":[48],"malware":[49],"hacker":[51],"attacks":[52],"are":[53],"going":[54],"have":[56,102,132],"an":[57],"increasing":[58,65],"effect":[59],"on":[60],"virtualized":[61],"systems.":[62,87],"Therefore,":[63],"growth":[66,92],"created":[70],"need":[72],"for":[73,136],"generation":[76],"computer":[78],"forensic":[79],"tools":[80,115],"techniques":[82,96,108,130],"analyze":[84,118],"these":[85,107,129],"compromised":[86],"Because":[88],"rapid":[91],"virtualization,":[94],"interact":[98],"with":[99],"virtual":[100,120,168],"systems":[101],"been":[103],"developed.":[104],"Some":[105],"limitations":[111],"traditional":[113,157],"forensics":[114,159],"abilities":[116],"system.":[121],"Virtual":[122],"Machine":[123],"Introspection":[124],"(VMI)":[125],"one":[127],"that":[131],"formed":[133],"basis":[135],"number":[138],"novel":[140],"approaches":[141],"in":[142],"fields":[144],"cyber":[146],"security":[147],"This":[151],"paper":[152],"explores":[153],"how":[154],"VMI":[155],"improves":[156],"overcome":[161],"its":[162],"downfalls":[163],"when":[164],"used":[165],"investigate":[167],"machines,":[169],"especially":[170],"during":[171],"live":[173],"analysis":[174],"machine.":[177]},"counts_by_year":[{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":2},{"year":2015,"cited_by_count":2},{"year":2014,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}