{"id":"https://openalex.org/W2990671699","doi":"https://doi.org/10.1145/3359789.3359808","title":"EIGER","display_name":"EIGER","publication_year":2019,"publication_date":"2019-11-22","ids":{"openalex":"https://openalex.org/W2990671699","doi":"https://doi.org/10.1145/3359789.3359808","mag":"2990671699"},"language":"en","primary_location":{"id":"doi:10.1145/3359789.3359808","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3359789.3359808","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359808","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359808","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5036094383","display_name":"Yuma Kurogome","orcid":"https://orcid.org/0000-0003-4598-1036"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Yuma Kurogome","raw_affiliation_strings":["NTT Secure Platform Laboratories"],"affiliations":[{"raw_affiliation_string":"NTT Secure Platform Laboratories","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5019011248","display_name":"Yuto Otsuki","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yuto Otsuki","raw_affiliation_strings":["NTT Secure Platform Laboratories"],"affiliations":[{"raw_affiliation_string":"NTT Secure Platform Laboratories","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058925200","display_name":"Yuhei Kawakoya","orcid":"https://orcid.org/0009-0005-9310-0493"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yuhei Kawakoya","raw_affiliation_strings":["NTT Secure Platform Laboratories"],"affiliations":[{"raw_affiliation_string":"NTT Secure Platform Laboratories","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102143401","display_name":"Makoto Iwamura","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Makoto Iwamura","raw_affiliation_strings":["NTT Secure Platform Laboratories"],"affiliations":[{"raw_affiliation_string":"NTT Secure Platform Laboratories","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056627329","display_name":"Syogo Hayashi","orcid":null},"institutions":[{"id":"https://openalex.org/I2251713219","display_name":"NTT (Japan)","ror":"https://ror.org/00berct97","country_code":"JP","type":"company","lineage":["https://openalex.org/I2251713219"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Syogo Hayashi","raw_affiliation_strings":["NTT Security (Japan) KK"],"affiliations":[{"raw_affiliation_string":"NTT Security (Japan) KK","institution_ids":["https://openalex.org/I2251713219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5064493291","display_name":"Tatsuya Mori","orcid":"https://orcid.org/0000-0003-1583-4174"},"institutions":[{"id":"https://openalex.org/I150744194","display_name":"Waseda University","ror":"https://ror.org/00ntfnx83","country_code":"JP","type":"education","lineage":["https://openalex.org/I150744194"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Tatsuya Mori","raw_affiliation_strings":["Waseda University / NICT"],"affiliations":[{"raw_affiliation_string":"Waseda University / NICT","institution_ids":["https://openalex.org/I150744194"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101569699","display_name":"Koushik Sen","orcid":"https://orcid.org/0000-0002-4539-9188"},"institutions":[{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Koushik Sen","raw_affiliation_strings":["University of California"],"affiliations":[{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5036094383"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.6586,"has_fulltext":true,"cited_by_count":27,"citation_normalized_percentile":{"value":0.85111084,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"687","last_page":"701"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/interpretability","display_name":"Interpretability","score":0.8858729600906372},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8202637434005737},{"id":"https://openalex.org/keywords/signature","display_name":"Signature (topology)","score":0.7887477278709412},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7863707542419434},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4543610215187073},{"id":"https://openalex.org/keywords/digital-signature","display_name":"Digital signature","score":0.45108163356781006},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.4306161105632782},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3692511320114136},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3373793959617615}],"concepts":[{"id":"https://openalex.org/C2781067378","wikidata":"https://www.wikidata.org/wiki/Q17027399","display_name":"Interpretability","level":2,"score":0.8858729600906372},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8202637434005737},{"id":"https://openalex.org/C2779696439","wikidata":"https://www.wikidata.org/wiki/Q7512811","display_name":"Signature (topology)","level":2,"score":0.7887477278709412},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7863707542419434},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4543610215187073},{"id":"https://openalex.org/C118463975","wikidata":"https://www.wikidata.org/wiki/Q220849","display_name":"Digital signature","level":3,"score":0.45108163356781006},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4306161105632782},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3692511320114136},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3373793959617615},{"id":"https://openalex.org/C99138194","wikidata":"https://www.wikidata.org/wiki/Q183427","display_name":"Hash function","level":2,"score":0.0},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3359789.3359808","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3359789.3359808","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359808","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3359789.3359808","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3359789.3359808","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359808","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.6000000238418579,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2990671699.pdf","grobid_xml":"https://content.openalex.org/works/W2990671699.grobid-xml"},"referenced_works_count":45,"referenced_works":["https://openalex.org/W62185554","https://openalex.org/W650984362","https://openalex.org/W1545528966","https://openalex.org/W1563402047","https://openalex.org/W1581009051","https://openalex.org/W1584505081","https://openalex.org/W1673310716","https://openalex.org/W1680189815","https://openalex.org/W1827212170","https://openalex.org/W1992419399","https://openalex.org/W2027615005","https://openalex.org/W2041130390","https://openalex.org/W2053381548","https://openalex.org/W2083183119","https://openalex.org/W2122672392","https://openalex.org/W2166924764","https://openalex.org/W2167671111","https://openalex.org/W2168745915","https://openalex.org/W2282821441","https://openalex.org/W2295598076","https://openalex.org/W2309755354","https://openalex.org/W2367397349","https://openalex.org/W2396034850","https://openalex.org/W2509067210","https://openalex.org/W2514847810","https://openalex.org/W2528185830","https://openalex.org/W2538865281","https://openalex.org/W2618851150","https://openalex.org/W2732916693","https://openalex.org/W2761942534","https://openalex.org/W2771963642","https://openalex.org/W2774688517","https://openalex.org/W2786715987","https://openalex.org/W2789326120","https://openalex.org/W2837911466","https://openalex.org/W2890991187","https://openalex.org/W2902792499","https://openalex.org/W2911964244","https://openalex.org/W2962772482","https://openalex.org/W2962862931","https://openalex.org/W2964121744","https://openalex.org/W3012889073","https://openalex.org/W3102476541","https://openalex.org/W4252684946","https://openalex.org/W4365799995"],"related_works":["https://openalex.org/W2160606508","https://openalex.org/W1986582023","https://openalex.org/W2966829450","https://openalex.org/W2149234266","https://openalex.org/W2390942931","https://openalex.org/W1932157736","https://openalex.org/W1981680180","https://openalex.org/W2033963098","https://openalex.org/W1601957798","https://openalex.org/W2125461068"],"abstract_inverted_index":{"A":[0],"malware":[1,32],"signature":[2,62],"including":[3],"behavioral":[4],"artifacts,":[5],"namely":[6],"Indicator":[7],"of":[8,57],"Compromise":[9],"(IOC)":[10],"plays":[11],"an":[12],"important":[13],"role":[14],"in":[15,39,73],"security":[16],"operations,":[17],"such":[18],"as":[19],"endpoint":[20],"detection":[21],"and":[22,34,64],"incident":[23,37],"response.":[24],"While":[25],"building":[26],"IOC":[27],"enables":[28],"us":[29],"to":[30],"detect":[31],"efficiently":[33],"perform":[35],"the":[36],"analysis":[38],"a":[40,71],"timely":[41],"manner,":[42],"it":[43],"has":[44,70],"not":[45],"been":[46],"fully-automated":[47],"yet.":[48],"To":[49],"address":[50],"this":[51],"issue,":[52],"there":[53],"are":[54],"two":[55],"lines":[56],"promising":[58],"approaches:":[59],"regular":[60],"expression-based":[61],"generation":[63],"machine":[65],"learning.":[66],"However,":[67],"each":[68],"approach":[69],"limitation":[72],"accuracy":[74],"or":[75],"interpretability,":[76],"respectively.":[77]},"counts_by_year":[{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":7},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":3},{"year":2020,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2019-12-05T00:00:00"}