{"id":"https://openalex.org/W2400063502","doi":"https://doi.org/10.1145/2884781.2884782","title":"Mining sandboxes","display_name":"Mining sandboxes","publication_year":2016,"publication_date":"2016-05-13","ids":{"openalex":"https://openalex.org/W2400063502","doi":"https://doi.org/10.1145/2884781.2884782","mag":"2400063502"},"language":"en","primary_location":{"id":"doi:10.1145/2884781.2884782","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2884781.2884782","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 38th International Conference on Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5110192779","display_name":"Konrad Jamrozik","orcid":null},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Konrad Jamrozik","raw_affiliation_strings":["Center for IT-Security, Privacy and Accountability (CISPA), Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"Center for IT-Security, Privacy and Accountability (CISPA), Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5071370922","display_name":"Philipp von Styp-Rekowsky","orcid":null},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Philipp von Styp-Rekowsky","raw_affiliation_strings":["Center for IT-Security, Privacy and Accountability (CISPA), Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"Center for IT-Security, Privacy and Accountability (CISPA), Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5051672229","display_name":"Andreas Zeller","orcid":"https://orcid.org/0000-0003-4719-8803"},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Andreas Zeller","raw_affiliation_strings":["Center for IT-Security, Privacy and Accountability (CISPA), Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"Center for IT-Security, Privacy and Accountability (CISPA), Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5110192779"],"corresponding_institution_ids":["https://openalex.org/I4210128801"],"apc_list":null,"apc_paid":null,"fwci":5.8553,"has_fulltext":false,"cited_by_count":41,"citation_normalized_percentile":{"value":0.9678212,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"37","last_page":"48"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/sandbox","display_name":"Sandbox (software development)","score":0.9961596727371216},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8085424900054932},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6733869314193726},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5739589929580688},{"id":"https://openalex.org/keywords/blocking","display_name":"Blocking (statistics)","score":0.503837525844574},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.46848785877227783},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3411808907985687},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.23872432112693787},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.09973108768463135},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.07706144452095032}],"concepts":[{"id":"https://openalex.org/C167981075","wikidata":"https://www.wikidata.org/wiki/Q2667186","display_name":"Sandbox (software development)","level":2,"score":0.9961596727371216},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8085424900054932},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6733869314193726},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5739589929580688},{"id":"https://openalex.org/C144745244","wikidata":"https://www.wikidata.org/wiki/Q4927286","display_name":"Blocking (statistics)","level":2,"score":0.503837525844574},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.46848785877227783},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3411808907985687},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.23872432112693787},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.09973108768463135},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.07706144452095032}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2884781.2884782","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2884781.2884782","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 38th International Conference on Software Engineering","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":44,"referenced_works":["https://openalex.org/W157156687","https://openalex.org/W1220317179","https://openalex.org/W1490347130","https://openalex.org/W1516211918","https://openalex.org/W1540037544","https://openalex.org/W1549577837","https://openalex.org/W1554404174","https://openalex.org/W1699449651","https://openalex.org/W1963971515","https://openalex.org/W1964241047","https://openalex.org/W1979120421","https://openalex.org/W1985987493","https://openalex.org/W1988036170","https://openalex.org/W1990649188","https://openalex.org/W1997201541","https://openalex.org/W2002934700","https://openalex.org/W2004921952","https://openalex.org/W2013856010","https://openalex.org/W2033811191","https://openalex.org/W2042033151","https://openalex.org/W2043811931","https://openalex.org/W2061603028","https://openalex.org/W2065076704","https://openalex.org/W2095881341","https://openalex.org/W2101800210","https://openalex.org/W2103318645","https://openalex.org/W2105412867","https://openalex.org/W2107881300","https://openalex.org/W2114275288","https://openalex.org/W2122646361","https://openalex.org/W2128217000","https://openalex.org/W2137974280","https://openalex.org/W2140095007","https://openalex.org/W2143766683","https://openalex.org/W2151200195","https://openalex.org/W2158963586","https://openalex.org/W2166743230","https://openalex.org/W2168649891","https://openalex.org/W2170347235","https://openalex.org/W2213145342","https://openalex.org/W2334842536","https://openalex.org/W2399034518","https://openalex.org/W3004040842","https://openalex.org/W3160978791"],"related_works":["https://openalex.org/W2033352828","https://openalex.org/W2355810117","https://openalex.org/W3098313552","https://openalex.org/W70177500","https://openalex.org/W2546418048","https://openalex.org/W2034129977","https://openalex.org/W1745773915","https://openalex.org/W2765820957","https://openalex.org/W4367595269","https://openalex.org/W1869907491"],"abstract_inverted_index":{"We":[0],"present":[1],"sandbox":[2,56],"mining,":[3],"a":[4,44],"technique":[5],"to":[6,10,48],"confine":[7],"an":[8],"application":[9],"resources":[11,33,49],"accessed":[12,34],"during":[13,35,52],"automatic":[14,25],"testing.":[15,53],"Sandbox":[16],"mining":[17],"first":[18],"explores":[19],"software":[20],"behavior":[21,60],"by":[22],"means":[23],"of":[24,32,66],"test":[26],"generation,":[27],"and":[28],"extracts":[29],"the":[30,64],"set":[31,39],"these":[36],"tests.":[37],"This":[38],"is":[40],"then":[41],"used":[42,51],"as":[43,63],"sandbox,":[45],"blocking":[46],"access":[47],"not":[50],"The":[54],"mined":[55],"thus":[57],"protects":[58],"against":[59],"changes":[61],"such":[62],"activation":[65],"latent":[67],"malware,":[68],"infections,":[69],"targeted":[70],"attacks,":[71],"or":[72],"malicious":[73],"updates.":[74]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":6},{"year":2020,"cited_by_count":4},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":10},{"year":2017,"cited_by_count":6},{"year":2016,"cited_by_count":3},{"year":2015,"cited_by_count":1}],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2016-06-24T00:00:00"}