{"id":"https://openalex.org/W2070112613","doi":"https://doi.org/10.1145/2810103.2813633","title":"Maneuvering Around Clouds","display_name":"Maneuvering Around Clouds","publication_year":2015,"publication_date":"2015-10-06","ids":{"openalex":"https://openalex.org/W2070112613","doi":"https://doi.org/10.1145/2810103.2813633","mag":"2070112613"},"language":"en","primary_location":{"id":"doi:10.1145/2810103.2813633","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813633","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://lirias.kuleuven.be/handle/123456789/507911","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5081977238","display_name":"Thomas Vissers","orcid":null},"institutions":[{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":true,"raw_author_name":"Thomas Vissers","raw_affiliation_strings":["KU Leuven, Leuven, Belgium","KU Leuven, Leuven (Belgium)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"KU Leuven, Leuven, Belgium","institution_ids":["https://openalex.org/I99464096"]},{"raw_affiliation_string":"KU Leuven, Leuven (Belgium)","institution_ids":["https://openalex.org/I99464096"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061602585","display_name":"Tom Van Goethem","orcid":"https://orcid.org/0000-0001-6846-9081"},"institutions":[{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Tom Van Goethem","raw_affiliation_strings":["KU Leuven, Leuven, Belgium","KU Leuven, Leuven (Belgium)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"KU Leuven, Leuven, Belgium","institution_ids":["https://openalex.org/I99464096"]},{"raw_affiliation_string":"KU Leuven, Leuven (Belgium)","institution_ids":["https://openalex.org/I99464096"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054031138","display_name":"Wouter Joosen","orcid":"https://orcid.org/0000-0002-7710-5092"},"institutions":[{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Wouter Joosen","raw_affiliation_strings":["KU Leuven, Leuven, Belgium","KU Leuven, Leuven (Belgium)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"KU Leuven, Leuven, Belgium","institution_ids":["https://openalex.org/I99464096"]},{"raw_affiliation_string":"KU Leuven, Leuven (Belgium)","institution_ids":["https://openalex.org/I99464096"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5014031812","display_name":"Nick Nikiforakis","orcid":"https://orcid.org/0000-0002-9366-357X"},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nick Nikiforakis","raw_affiliation_strings":["Stony Brook University, Stony Brook, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Stony Brook University, Stony Brook, USA","institution_ids":["https://openalex.org/I59553526"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5081977238"],"corresponding_institution_ids":["https://openalex.org/I99464096"],"apc_list":null,"apc_paid":null,"fwci":7.3573,"has_fulltext":true,"cited_by_count":47,"citation_normalized_percentile":{"value":0.97340981,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1530","last_page":"1541"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7492241263389587},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6721333265304565},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.6666987538337708},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.643479585647583},{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.6055845022201538},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.5112038254737854},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.45631134510040283},{"id":"https://openalex.org/keywords/service-provider","display_name":"Service provider","score":0.4294511079788208},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.34226831793785095},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.30108362436294556},{"id":"https://openalex.org/keywords/service","display_name":"Service (business)","score":0.27511224150657654},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.13709405064582825}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7492241263389587},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6721333265304565},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.6666987538337708},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.643479585647583},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.6055845022201538},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.5112038254737854},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.45631134510040283},{"id":"https://openalex.org/C116537","wikidata":"https://www.wikidata.org/wiki/Q2169973","display_name":"Service provider","level":3,"score":0.4294511079788208},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.34226831793785095},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.30108362436294556},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.27511224150657654},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.13709405064582825},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/2810103.2813633","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813633","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:lirias2repo.kuleuven.be:123456789/507911","is_oa":true,"landing_page_url":"https://lirias.kuleuven.be/handle/123456789/507911","pdf_url":null,"source":{"id":"https://openalex.org/S7407055369","display_name":"Lirias","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"ACM SIGSAC Conference on Computer and Communications Security 2015 (CCS 2015), Denver, Colorado, USA, 12-16 October 2015","raw_type":"info:eu-repo/semantics/publishedVersion"}],"best_oa_location":{"id":"pmh:oai:lirias2repo.kuleuven.be:123456789/507911","is_oa":true,"landing_page_url":"https://lirias.kuleuven.be/handle/123456789/507911","pdf_url":null,"source":{"id":"https://openalex.org/S7407055369","display_name":"Lirias","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"ACM SIGSAC Conference on Computer and Communications Security 2015 (CCS 2015), Denver, Colorado, USA, 12-16 October 2015","raw_type":"info:eu-repo/semantics/publishedVersion"},"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.6100000143051147,"id":"https://metadata.un.org/sdg/9"}],"awards":[{"id":"https://openalex.org/G2579040122","display_name":null,"funder_award_id":"EU FP7","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G3484484226","display_name":"TWC: Small: Cross-Application and Cross-Platform Tracking of Web Users: Techniques and Countermeasures","funder_award_id":"1527086","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G3535893714","display_name":null,"funder_award_id":"CNS-1527086","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320322308","display_name":"KU Leuven","ror":"https://ror.org/05f950310"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W134796140","https://openalex.org/W181628467","https://openalex.org/W1486107058","https://openalex.org/W1976373002","https://openalex.org/W1989454965","https://openalex.org/W2026269250","https://openalex.org/W2050343613","https://openalex.org/W2059201166","https://openalex.org/W2061133001","https://openalex.org/W2071231410","https://openalex.org/W2077092541","https://openalex.org/W2104899073","https://openalex.org/W2114398364","https://openalex.org/W2116696275","https://openalex.org/W2141594129","https://openalex.org/W2164322841","https://openalex.org/W2246508371","https://openalex.org/W2290364176","https://openalex.org/W4299301436","https://openalex.org/W6684262448"],"related_works":["https://openalex.org/W2765763546","https://openalex.org/W4386482731","https://openalex.org/W4385302085","https://openalex.org/W2360429410","https://openalex.org/W4390188535","https://openalex.org/W4256682929","https://openalex.org/W335511927","https://openalex.org/W2471811227","https://openalex.org/W2217591390","https://openalex.org/W2157496457"],"abstract_inverted_index":{"The":[0,73,253],"increase":[1],"of":[2,45,69,84,96,134,169,185,193,216,219,232,249,255,264],"Distributed":[3],"Denial-of-Service":[4],"(DDoS)":[5],"attacks":[6],"in":[7],"volume,":[8],"frequency,":[9],"and":[10,61,132,278,291],"complexity,":[11],"combined":[12],"with":[13],"the":[14,43,48,52,67,70,82,93,120,130,166,170,183,186,191,212,217,220,227,233,250,300],"constant":[15],"required":[16],"alertness":[17],"for":[18,129,288],"mitigating":[19],"web":[20],"application":[21],"threats,":[22],"has":[23],"caused":[24],"many":[25],"website":[26,50,174],"owners":[27],"to":[28,30,35,100,164,210],"turn":[29],"Cloud-based":[31,76],"Security":[32,77],"Providers":[33,78],"(CBSPs)":[34],"protect":[36],"their":[37,106,138,241],"infrastructure.":[38,108],"These":[39],"solutions":[40],"typically":[41],"involve":[42],"rerouting":[44,111],"traffic":[46,57,104],"from":[47,144],"original":[49],"through":[51,105,245],"CBSP's":[53],"network,":[54],"where":[55,172],"malicious":[56],"can":[58,113,162,275,297],"be":[59,114],"detected":[60],"absorbed":[62],"before":[63],"it":[64,126],"ever":[65],"reaches":[66],"servers":[68],"protected":[71,175],"website.":[72],"most":[74],"popular":[75],"do":[79],"not":[80],"require":[81],"purchase":[83],"dedicated":[85],"traffic-rerouting":[86],"hardware,":[87],"but":[88],"rely":[89],"solely":[90],"on":[91,190],"changing":[92,270],"DNS":[94,271],"settings":[95],"a":[97,102,173,177,261],"domain":[98],"name":[99],"reroute":[101],"website's":[103,121],"security":[107,131,192],"Consequently,":[109],"this":[110,148],"mechanism":[112],"completely":[115],"circumvented":[116],"by":[117,176],"directly":[118],"attacking":[119],"hosting":[122],"IP":[123,140,167,243],"address.":[124],"Therefore,":[125],"is":[127,179,229,266],"crucial":[128],"availability":[133],"these":[135],"websites":[136,236],"that":[137,226,237,260,296],"real":[139,242],"address":[141,168,244],"remains":[142],"hidden":[143],"potential":[145],"attackers.":[146],"In":[147],"paper,":[149],"we":[150,196,207,238],"discuss":[151],"existing,":[152],"as":[153,155,285],"well":[154],"novel":[156],"\"origin-exposing\"":[157],"attack":[158],"vectors":[159,189,199],"which":[160,206],"attackers":[161],"leverage":[163],"discover":[165],"server":[171],"CBSP":[178],"hosted.":[180],"To":[181],"assess":[182],"impact":[184],"discussed":[187],"origin-exposing":[188,204,221],"CBSP-protected":[194,235],"websites,":[195],"consolidate":[197],"all":[198],"into":[200],"CloudPiercer,":[201],"an":[202],"automated":[203],"tool,":[205],"then":[208],"use":[209],"conduct":[211],"first":[213],"large-scale":[214],"analysis":[215],"effectiveness":[218],"vectors.":[222,252],"Our":[223,273],"results":[224,254],"show":[225],"problem":[228],"severe:":[230],"71.5%":[231],"17,877":[234],"tested,":[239],"expose":[240],"at":[246],"least":[247],"one":[248],"evaluated":[251],"our":[256],"study":[257],"categorically":[258],"demonstrate":[259],"comprehensive":[262],"adoption":[263],"CBSPs":[265,277],"harder":[267],"than":[268],"just":[269],"records.":[272],"findings":[274],"steer":[276],"site":[279],"administrators":[280],"towards":[281],"effective":[282],"countermeasures,":[283],"such":[284],"proactively":[286],"scanning":[287],"origin":[289],"exposure":[290],"using":[292],"appropriate":[293],"network":[294],"configurations":[295],"greatly":[298],"reduce":[299],"threat.":[301]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":4},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":8},{"year":2017,"cited_by_count":6},{"year":2016,"cited_by_count":7}],"updated_date":"2026-04-25T08:17:42.794288","created_date":"2025-10-10T00:00:00"}