{"id":"https://openalex.org/W2258956667","doi":"https://doi.org/10.1145/2835776.2835834","title":"Ensemble Models for Data-driven Prediction of Malware Infections","display_name":"Ensemble Models for Data-driven Prediction of Malware Infections","publication_year":2016,"publication_date":"2016-02-04","ids":{"openalex":"https://openalex.org/W2258956667","doi":"https://doi.org/10.1145/2835776.2835834","mag":"2258956667"},"language":"en","primary_location":{"id":"doi:10.1145/2835776.2835834","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2835776.2835834","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Ninth ACM International Conference on Web Search and Data Mining","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5073818927","display_name":"Chanhyun Kang","orcid":null},"institutions":[{"id":"https://openalex.org/I66946132","display_name":"University of Maryland, College Park","ror":"https://ror.org/047s2c258","country_code":"US","type":"education","lineage":["https://openalex.org/I66946132"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Chanhyun Kang","raw_affiliation_strings":["University of Maryland, College Park, MD, USA"],"affiliations":[{"raw_affiliation_string":"University of Maryland, College Park, MD, USA","institution_ids":["https://openalex.org/I66946132"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5067253588","display_name":"Noseong Park","orcid":"https://orcid.org/0000-0002-1268-840X"},"institutions":[{"id":"https://openalex.org/I66946132","display_name":"University of Maryland, College Park","ror":"https://ror.org/047s2c258","country_code":"US","type":"education","lineage":["https://openalex.org/I66946132"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Noseong Park","raw_affiliation_strings":["University of Maryland, College Park, MD, USA"],"affiliations":[{"raw_affiliation_string":"University of Maryland, College Park, MD, USA","institution_ids":["https://openalex.org/I66946132"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061110232","display_name":"B. Aditya Prakash","orcid":"https://orcid.org/0000-0002-3252-455X"},"institutions":[{"id":"https://openalex.org/I859038795","display_name":"Virginia Tech","ror":"https://ror.org/02smfhw86","country_code":"US","type":"education","lineage":["https://openalex.org/I859038795"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"B. Aditya Prakash","raw_affiliation_strings":["Virginia Tech., Blacksburg, VA, USA"],"affiliations":[{"raw_affiliation_string":"Virginia Tech., Blacksburg, VA, USA","institution_ids":["https://openalex.org/I859038795"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009094578","display_name":"Edoardo Serra","orcid":"https://orcid.org/0000-0003-0689-5063"},"institutions":[{"id":"https://openalex.org/I120156002","display_name":"Boise State University","ror":"https://ror.org/02e3zdp86","country_code":"US","type":"education","lineage":["https://openalex.org/I120156002"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Edoardo Serra","raw_affiliation_strings":["Boise State University, Boise, ID, USA"],"affiliations":[{"raw_affiliation_string":"Boise State University, Boise, ID, USA","institution_ids":["https://openalex.org/I120156002"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5038645035","display_name":"V. S. Subrahmanian","orcid":"https://orcid.org/0000-0001-7191-0296"},"institutions":[{"id":"https://openalex.org/I66946132","display_name":"University of Maryland, College Park","ror":"https://ror.org/047s2c258","country_code":"US","type":"education","lineage":["https://openalex.org/I66946132"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"V. S. Subrahmanian","raw_affiliation_strings":["University of Maryland, College Park, MD, USA"],"affiliations":[{"raw_affiliation_string":"University of Maryland, College Park, MD, USA","institution_ids":["https://openalex.org/I66946132"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5073818927"],"corresponding_institution_ids":["https://openalex.org/I66946132"],"apc_list":null,"apc_paid":null,"fwci":4.2514,"has_fulltext":false,"cited_by_count":34,"citation_normalized_percentile":{"value":0.94327229,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"583","last_page":"592"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10064","display_name":"Complex Network Analysis Techniques","score":0.9883999824523926,"subfield":{"id":"https://openalex.org/subfields/3109","display_name":"Statistical and Nonlinear Physics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9811999797821045,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9616326689720154},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8056017160415649},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5207704901695251},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4927270710468292},{"id":"https://openalex.org/keywords/construct","display_name":"Construct (python library)","score":0.4849017262458801},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.47883203625679016},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4337104558944702},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.371749609708786},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.09732180833816528},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.08379200100898743}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9616326689720154},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8056017160415649},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5207704901695251},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4927270710468292},{"id":"https://openalex.org/C2780801425","wikidata":"https://www.wikidata.org/wiki/Q5164392","display_name":"Construct (python library)","level":2,"score":0.4849017262458801},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.47883203625679016},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4337104558944702},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.371749609708786},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.09732180833816528},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.08379200100898743}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/2835776.2835834","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2835776.2835834","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Ninth ACM International Conference on Web Search and Data Mining","raw_type":"proceedings-article"},{"id":"pmh:oai:scholarworks.boisestate.edu:cs_facpubs-1094","is_oa":false,"landing_page_url":"https://scholarworks.boisestate.edu/cs_facpubs/91","pdf_url":null,"source":{"id":"https://openalex.org/S4377196366","display_name":"Scholar Works  (Boise State University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I120156002","host_organization_name":"Boise State University","host_organization_lineage":["https://openalex.org/I120156002"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Computer Science Faculty Publications and Presentations","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":32,"referenced_works":["https://openalex.org/W67486310","https://openalex.org/W114870970","https://openalex.org/W228144990","https://openalex.org/W1495750374","https://openalex.org/W1498585374","https://openalex.org/W1914027636","https://openalex.org/W1985164990","https://openalex.org/W1997638639","https://openalex.org/W2021314079","https://openalex.org/W2031006315","https://openalex.org/W2041157860","https://openalex.org/W2065890363","https://openalex.org/W2083477206","https://openalex.org/W2092043296","https://openalex.org/W2107666336","https://openalex.org/W2108050790","https://openalex.org/W2113889316","https://openalex.org/W2119665367","https://openalex.org/W2123959614","https://openalex.org/W2141250202","https://openalex.org/W2150739536","https://openalex.org/W2161728228","https://openalex.org/W2167415250","https://openalex.org/W2169082384","https://openalex.org/W2186088793","https://openalex.org/W2256578114","https://openalex.org/W2482374127","https://openalex.org/W3122000667","https://openalex.org/W4245764069","https://openalex.org/W4252678302","https://openalex.org/W4388299012","https://openalex.org/W6660594131"],"related_works":["https://openalex.org/W2366107444","https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W1764168690","https://openalex.org/W2537959205","https://openalex.org/W2740895074","https://openalex.org/W4388145910","https://openalex.org/W2772446090","https://openalex.org/W4284893819","https://openalex.org/W2249809453"],"abstract_inverted_index":{"Given":[0],"a":[1,16,74,129,153],"history":[2],"of":[3,12,58,76,205],"detected":[4,206],"malware":[5,13,24,78,99,115,135,162,172],"attacks,":[6],"can":[7,71,169],"we":[8,19,70,83,127,140,165],"predict":[9,171],"the":[10,55,65,178,203],"number":[11,180,204],"infections":[14,207],"in":[15],"country?":[17],"Can":[18],"do":[20],"this":[21,81,85],"for":[22,36,134],"different":[23],"and":[25,47,97,104,116,123,137,163,181,199],"countries?":[26],"This":[27,60],"is":[28,62,197,208],"an":[29,143],"important":[30],"question":[31],"which":[32,146],"has":[33],"numerous":[34],"implications":[35],"cyber":[37],"security,":[38],"right":[39],"from":[40,89,113],"designing":[41,46],"better":[42,186],"anti-virus":[43],"software,":[44],"to":[45,51,151,188],"implementing":[48],"targeted":[49],"patches":[50],"more":[52,92,154],"accurately":[53],"measuring":[54],"economic":[56],"impact":[57],"breaches.":[59],"problem":[61,86],"compounded":[63],"by":[64,121],"fact":[66],"that,":[67],"as":[68],"externals,":[69],"only":[72],"detect":[73],"fraction":[75],"actual":[77,179],"infections.":[79],"In":[80],"paper":[82],"address":[84],"using":[87],"data":[88],"Symantec":[90],"covering":[91],"than":[93],"1.4":[94],"million":[95],"hosts":[96],"50":[98],"spread":[100,136],"across":[101],"2":[102],"years":[103],"multiple":[105,161],"countries.":[106],"We":[107],"first":[108],"carefully":[109],"design":[110,128],"domain-based":[111],"features":[112],"both":[114,148],"machine-hosts":[117],"perspectives.":[118],"Secondly,":[119],"inspired":[120],"epidemiological":[122],"information":[124],"diffusion":[125],"models,":[126],"novel":[130],"temporal":[131],"non-linear":[132],"model":[133],"detection.":[138],"Finally":[139],"present":[141],"ESM,":[142],"ensemble-based":[144],"approach":[145],"combines":[147],"these":[149],"methods":[150],"construct":[152],"accurate":[155],"algorithm.":[156],"Using":[157],"extensive":[158],"experiments":[159],"spanning":[160],"countries,":[164],"show":[166],"that":[167],"ESM":[168],"effectively":[170],"infection":[173],"ratios":[174],"over":[175],"time":[176],"(both":[177],"trend)":[182],"upto":[183],"4":[184],"times":[185],"compared":[187],"several":[189],"baselines":[190],"on":[191],"various":[192],"metrics.":[193],"Furthermore,":[194],"ESM's":[195],"performance":[196],"stable":[198],"robust":[200],"even":[201],"when":[202],"low.":[209]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":5},{"year":2018,"cited_by_count":4},{"year":2017,"cited_by_count":4},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":1}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}