{"id":"https://openalex.org/W2066852506","doi":"https://doi.org/10.1145/2810103.2813685","title":"Heisenbyte","display_name":"Heisenbyte","publication_year":2015,"publication_date":"2015-10-06","ids":{"openalex":"https://openalex.org/W2066852506","doi":"https://doi.org/10.1145/2810103.2813685","mag":"2066852506"},"language":"en","primary_location":{"id":"doi:10.1145/2810103.2813685","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813685","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5079757794","display_name":"Adrian Tang","orcid":"https://orcid.org/0000-0001-5569-4490"},"institutions":[{"id":"https://openalex.org/I78577930","display_name":"Columbia University","ror":"https://ror.org/00hj8s172","country_code":"US","type":"education","lineage":["https://openalex.org/I78577930"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Adrian Tang","raw_affiliation_strings":["Columbia University, New York, NY, USA"],"affiliations":[{"raw_affiliation_string":"Columbia University, New York, NY, USA","institution_ids":["https://openalex.org/I78577930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5030436580","display_name":"Simha Sethumadhavan","orcid":"https://orcid.org/0000-0002-6180-7153"},"institutions":[{"id":"https://openalex.org/I78577930","display_name":"Columbia University","ror":"https://ror.org/00hj8s172","country_code":"US","type":"education","lineage":["https://openalex.org/I78577930"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Simha Sethumadhavan","raw_affiliation_strings":["Columbia University, New York, NY, USA"],"affiliations":[{"raw_affiliation_string":"Columbia University, New York, NY, USA","institution_ids":["https://openalex.org/I78577930"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5084213178","display_name":"Salvatore J. Stolfo","orcid":"https://orcid.org/0000-0003-1611-0100"},"institutions":[{"id":"https://openalex.org/I78577930","display_name":"Columbia University","ror":"https://ror.org/00hj8s172","country_code":"US","type":"education","lineage":["https://openalex.org/I78577930"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Salvatore Stolfo","raw_affiliation_strings":["Columbia University, New York, NY, USA"],"affiliations":[{"raw_affiliation_string":"Columbia University, New York, NY, USA","institution_ids":["https://openalex.org/I78577930"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5079757794"],"corresponding_institution_ids":["https://openalex.org/I78577930"],"apc_list":null,"apc_paid":null,"fwci":20.7093,"has_fulltext":false,"cited_by_count":78,"citation_normalized_percentile":{"value":0.99396839,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"256","last_page":"267"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10478","display_name":"Diamond and Carbon-based Materials Research","score":0.9861000180244446,"subfield":{"id":"https://openalex.org/subfields/2505","display_name":"Materials Chemistry"},"field":{"id":"https://openalex.org/fields/25","display_name":"Materials Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9828000068664551,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8452309370040894},{"id":"https://openalex.org/keywords/code-reuse","display_name":"Code reuse","score":0.6256561279296875},{"id":"https://openalex.org/keywords/executable","display_name":"Executable","score":0.6220932602882385},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.5695627331733704},{"id":"https://openalex.org/keywords/memory-safety","display_name":"Memory safety","score":0.5337504148483276},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5334594249725342},{"id":"https://openalex.org/keywords/virtualization","display_name":"Virtualization","score":0.5089213848114014},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.4931628108024597},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.478794664144516},{"id":"https://openalex.org/keywords/reuse","display_name":"Reuse","score":0.4647620916366577},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.46471723914146423},{"id":"https://openalex.org/keywords/unreachable-code","display_name":"Unreachable code","score":0.44160693883895874},{"id":"https://openalex.org/keywords/dead-code","display_name":"Dead code","score":0.4343080520629883},{"id":"https://openalex.org/keywords/buffer-overflow","display_name":"Buffer overflow","score":0.43159565329551697},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.41736888885498047},{"id":"https://openalex.org/keywords/parallel-computing","display_name":"Parallel computing","score":0.34371960163116455},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.318048357963562},{"id":"https://openalex.org/keywords/redundant-code","display_name":"Redundant code","score":0.2978389859199524},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.23447132110595703},{"id":"https://openalex.org/keywords/compiler","display_name":"Compiler","score":0.20702818036079407},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.18575453758239746},{"id":"https://openalex.org/keywords/code-generation","display_name":"Code generation","score":0.17185601592063904},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.11647331714630127}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8452309370040894},{"id":"https://openalex.org/C2778583558","wikidata":"https://www.wikidata.org/wiki/Q771245","display_name":"Code reuse","level":3,"score":0.6256561279296875},{"id":"https://openalex.org/C160145156","wikidata":"https://www.wikidata.org/wiki/Q778586","display_name":"Executable","level":2,"score":0.6220932602882385},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.5695627331733704},{"id":"https://openalex.org/C28180684","wikidata":"https://www.wikidata.org/wiki/Q4080983","display_name":"Memory safety","level":3,"score":0.5337504148483276},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5334594249725342},{"id":"https://openalex.org/C513985346","wikidata":"https://www.wikidata.org/wiki/Q270471","display_name":"Virtualization","level":3,"score":0.5089213848114014},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.4931628108024597},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.478794664144516},{"id":"https://openalex.org/C206588197","wikidata":"https://www.wikidata.org/wiki/Q846574","display_name":"Reuse","level":2,"score":0.4647620916366577},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.46471723914146423},{"id":"https://openalex.org/C50951305","wikidata":"https://www.wikidata.org/wiki/Q2482534","display_name":"Unreachable code","level":5,"score":0.44160693883895874},{"id":"https://openalex.org/C47434764","wikidata":"https://www.wikidata.org/wiki/Q1770035","display_name":"Dead code","level":5,"score":0.4343080520629883},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.43159565329551697},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.41736888885498047},{"id":"https://openalex.org/C173608175","wikidata":"https://www.wikidata.org/wiki/Q232661","display_name":"Parallel computing","level":1,"score":0.34371960163116455},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.318048357963562},{"id":"https://openalex.org/C151578736","wikidata":"https://www.wikidata.org/wiki/Q1251793","display_name":"Redundant code","level":4,"score":0.2978389859199524},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.23447132110595703},{"id":"https://openalex.org/C169590947","wikidata":"https://www.wikidata.org/wiki/Q47506","display_name":"Compiler","level":2,"score":0.20702818036079407},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.18575453758239746},{"id":"https://openalex.org/C133162039","wikidata":"https://www.wikidata.org/wiki/Q1061077","display_name":"Code generation","level":3,"score":0.17185601592063904},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.11647331714630127},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.0},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.0},{"id":"https://openalex.org/C18903297","wikidata":"https://www.wikidata.org/wiki/Q7150","display_name":"Ecology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2810103.2813685","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813685","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.6399999856948853}],"awards":[{"id":"https://openalex.org/G6171583452","display_name":null,"funder_award_id":"CCF/SaTC 1054844","funder_id":"https://openalex.org/F4320337387","funder_display_name":"Division of Computing and Communication Foundations"},{"id":"https://openalex.org/G7847980434","display_name":null,"funder_award_id":"FA 87501020253","funder_id":"https://openalex.org/F4320337531","funder_display_name":"Defense Sciences Office, DARPA"}],"funders":[{"id":"https://openalex.org/F4320337387","display_name":"Division of Computing and Communication Foundations","ror":"https://ror.org/01mng8331"},{"id":"https://openalex.org/F4320337531","display_name":"Defense Sciences Office, DARPA","ror":"https://ror.org/0447fe631"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W22858107","https://openalex.org/W1591211019","https://openalex.org/W1605557845","https://openalex.org/W1614039890","https://openalex.org/W1691322864","https://openalex.org/W1963947298","https://openalex.org/W1967216565","https://openalex.org/W1969501726","https://openalex.org/W1978174330","https://openalex.org/W2003619630","https://openalex.org/W2009801020","https://openalex.org/W2012559808","https://openalex.org/W2012578421","https://openalex.org/W2033593513","https://openalex.org/W2070041400","https://openalex.org/W2108255910","https://openalex.org/W2116433890","https://openalex.org/W2154555738","https://openalex.org/W2155810272","https://openalex.org/W2162800072","https://openalex.org/W2168843528","https://openalex.org/W2175377689","https://openalex.org/W4300807510"],"related_works":["https://openalex.org/W1555552217","https://openalex.org/W2157322365","https://openalex.org/W1527771852","https://openalex.org/W2155772078","https://openalex.org/W4382795255","https://openalex.org/W3015669913","https://openalex.org/W77265138","https://openalex.org/W2784876473","https://openalex.org/W2404678703","https://openalex.org/W2066852506"],"abstract_inverted_index":{"Vulnerabilities":[0],"that":[1,15,125],"disclose":[2],"executable":[3],"memory":[4,33,70,119],"pages":[5],"enable":[6],"a":[7,28,152],"new":[8],"class":[9],"of":[10,42,90,97,115,131],"powerful":[11],"code":[12,44,47,57,76,92,142,169],"reuse":[13,143],"attacks":[14],"build":[16],"the":[17,40,56,64,95,167],"attack":[18],"payload":[19],"at":[20,151],"runtime.":[21],"In":[22],"this":[23],"work,":[24],"we":[25],"present":[26],"Heisenbyte,":[27],"system":[29],"to":[30,37,68,106,159,166],"protect":[31],"against":[32,118],"disclosure":[34,71,120],"attacks.":[35],"Central":[36],"Heisenbyte":[38,126],"is":[39,48,53],"concept":[41],"destructive":[43,91,168],"reads":[45,93],"--":[46],"garbled":[49],"right":[50],"after":[51,58],"it":[52,60],"read.":[54],"Garbling":[55],"reading":[59],"takes":[61],"away":[62],"from":[63],"attacker":[65],"her":[66],"ability":[67],"leverage":[69],"bugs":[72],"in":[73,101,135,145],"both":[74,146],"static":[75,133,147],"and":[77,103,148,161],"dynamically":[78],"generated":[79],"just-in-time":[80],"code.":[81],"By":[82],"leveraging":[83],"existing":[84],"virtualization":[85,160],"support,":[86],"Heisenbyte's":[87],"novel":[88],"use":[89],"sidesteps":[94],"problem":[96],"incomplete":[98],"binary":[99],"disassembly":[100],"binaries,":[102,109,137],"extends":[104],"protection":[105],"close-sourced":[107],"COTS":[108],"which":[110],"are":[111],"two":[112],"major":[113],"limitations":[114],"prior":[116],"solutions":[117],"vulnerabilities.":[121],"Our":[122],"experiments":[123],"demonstrate":[124],"can":[127],"tolerate":[128],"some":[129],"degree":[130],"imperfect":[132],"analysis":[134],"disassembled":[136],"while":[138],"effectively":[139],"thwarting":[140],"dynamic":[141],"exploits":[144],"JIT":[149],"code,":[150],"modest":[153],"1.8%":[154],"average":[155,163],"runtime":[156],"overhead":[157,164],"due":[158,165],"16.5%":[162],"reads.":[170]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":9},{"year":2019,"cited_by_count":13},{"year":2018,"cited_by_count":14},{"year":2017,"cited_by_count":17},{"year":2016,"cited_by_count":16},{"year":2015,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2016-06-24T00:00:00"}