{"id":"https://openalex.org/W2797579320","doi":"https://doi.org/10.1145/3190619.3191693","title":"Detecting monitor compromise using evidential reasoning","display_name":"Detecting monitor compromise using evidential reasoning","publication_year":2018,"publication_date":"2018-04-10","ids":{"openalex":"https://openalex.org/W2797579320","doi":"https://doi.org/10.1145/3190619.3191693","mag":"2797579320"},"language":"en","primary_location":{"id":"doi:10.1145/3190619.3191693","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3190619.3191693","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th Annual Symposium and Bootcamp on Hot Topics in the Science of Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5039827394","display_name":"Uttam Thakore","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Uttam Thakore","raw_affiliation_strings":["University of Illinois at Urbana-Champaign"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047891914","display_name":"Ahmed Fawaz","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ahmed Fawaz","raw_affiliation_strings":["University of Illinois at Urbana-Champaign"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074285069","display_name":"William H. Sanders","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"William H. Sanders","raw_affiliation_strings":["University of Illinois at Urbana-Champaign"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign","institution_ids":["https://openalex.org/I157725225"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5039827394"],"corresponding_institution_ids":["https://openalex.org/I157725225"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.04353401,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"1"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.9244461059570312},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7757619619369507},{"id":"https://openalex.org/keywords/outlier","display_name":"Outlier","score":0.5303146243095398},{"id":"https://openalex.org/keywords/dempster\u2013shafer-theory","display_name":"Dempster\u2013Shafer theory","score":0.5148926973342896},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4787234961986542},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.4711785614490509},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4365920126438141},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.40725305676460266},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3677440285682678}],"concepts":[{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.9244461059570312},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7757619619369507},{"id":"https://openalex.org/C79337645","wikidata":"https://www.wikidata.org/wiki/Q779824","display_name":"Outlier","level":2,"score":0.5303146243095398},{"id":"https://openalex.org/C178011137","wikidata":"https://www.wikidata.org/wiki/Q285997","display_name":"Dempster\u2013Shafer theory","level":2,"score":0.5148926973342896},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4787234961986542},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.4711785614490509},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4365920126438141},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.40725305676460266},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3677440285682678},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3190619.3191693","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3190619.3191693","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th Annual Symposium and Bootcamp on Hot Topics in the Science of Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.49000000953674316,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":4,"referenced_works":["https://openalex.org/W1600834507","https://openalex.org/W2026258420","https://openalex.org/W2045645172","https://openalex.org/W2767094836"],"related_works":["https://openalex.org/W2801622120","https://openalex.org/W2164141394","https://openalex.org/W4240977217","https://openalex.org/W3036524962","https://openalex.org/W2499612753","https://openalex.org/W3111802945","https://openalex.org/W2946096271","https://openalex.org/W2295423552","https://openalex.org/W1598471830","https://openalex.org/W3107369729"],"abstract_inverted_index":{"Stealthy":[0],"attackers":[1],"often":[2],"disable":[3],"or":[4],"tamper":[5],"with":[6],"system":[7],"monitors":[8,40,58],"to":[9,24,46,67],"hide":[10],"their":[11],"tracks":[12],"and":[13,63],"evade":[14],"detection.":[15],"In":[16],"this":[17,76],"poster,":[18],"we":[19,51],"present":[20],"a":[21],"data-driven":[22],"technique":[23],"detect":[25],"such":[26],"monitor":[27,49],"compromise":[28],"using":[29,60],"evidential":[30],"reasoning.":[31],"Leveraging":[32],"the":[33,65],"fact":[34],"that":[35],"hiding":[36],"from":[37,54],"multiple,":[38],"redundant":[39],"is":[41],"difficult":[42],"for":[43],"an":[44],"attacker,":[45],"identify":[47],"potential":[48],"compromise,":[50],"combine":[52],"alerts":[53],"different":[55],"sets":[56],"of":[57],"by":[59],"Dempster-Shafer":[61],"theory,":[62],"compare":[64],"results":[66],"find":[68],"outliers.":[69],"We":[70],"describe":[71],"our":[72],"ongoing":[73],"work":[74],"in":[75],"area.":[77]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}