{"id":"https://openalex.org/W2981997606","doi":"https://doi.org/10.1145/3360664.3360727","title":"Combined side-channels malware detection for NFV infrastructure","display_name":"Combined side-channels malware detection for NFV infrastructure","publication_year":2019,"publication_date":"2019-10-23","ids":{"openalex":"https://openalex.org/W2981997606","doi":"https://doi.org/10.1145/3360664.3360727","mag":"2981997606"},"language":"en","primary_location":{"id":"doi:10.1145/3360664.3360727","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3360664.3360727","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Third Central European Cybersecurity Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5035418735","display_name":"Andrew Sergeev","orcid":"https://orcid.org/0000-0002-1165-9148"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Andrew Sergeev","raw_affiliation_strings":["ADVA Optical Networking, Raanana, Israel"],"affiliations":[{"raw_affiliation_string":"ADVA Optical Networking, Raanana, Israel","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072061180","display_name":"Eyal Ben-Sa'adon","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Eyal Ben-Sa'adon","raw_affiliation_strings":["ADVA Optical Networking, Raanana, Israel"],"affiliations":[{"raw_affiliation_string":"ADVA Optical Networking, Raanana, Israel","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047319200","display_name":"Elad Tannenbaum","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Elad Tannenbaum","raw_affiliation_strings":["ADVA Optical Networking, Raanana, Israel"],"affiliations":[{"raw_affiliation_string":"ADVA Optical Networking, Raanana, Israel","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5081332855","display_name":"Asi Saar","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Asi Saar","raw_affiliation_strings":["ADVA Optical Networking, Raanana, Israel"],"affiliations":[{"raw_affiliation_string":"ADVA Optical Networking, Raanana, Israel","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5035418735"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.3537,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.64064833,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"2"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12326","display_name":"Network Packet Processing and Optimization","score":0.9955999851226807,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8214670419692993},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8187833428382874},{"id":"https://openalex.org/keywords/performance-indicator","display_name":"Performance indicator","score":0.47216174006462097},{"id":"https://openalex.org/keywords/virtualization","display_name":"Virtualization","score":0.43435561656951904},{"id":"https://openalex.org/keywords/side-channel-attack","display_name":"Side channel attack","score":0.41945287585258484},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.41738373041152954},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3935199975967407},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.36028769612312317},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3378921449184418},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3309193253517151},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.32937151193618774},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.1373051106929779}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8214670419692993},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8187833428382874},{"id":"https://openalex.org/C135510737","wikidata":"https://www.wikidata.org/wiki/Q860554","display_name":"Performance indicator","level":2,"score":0.47216174006462097},{"id":"https://openalex.org/C513985346","wikidata":"https://www.wikidata.org/wiki/Q270471","display_name":"Virtualization","level":3,"score":0.43435561656951904},{"id":"https://openalex.org/C49289754","wikidata":"https://www.wikidata.org/wiki/Q2267081","display_name":"Side channel attack","level":3,"score":0.41945287585258484},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.41738373041152954},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3935199975967407},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.36028769612312317},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3378921449184418},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3309193253517151},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.32937151193618774},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.1373051106929779},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3360664.3360727","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3360664.3360727","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Third Central European Cybersecurity Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9","score":0.6800000071525574}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":2,"referenced_works":["https://openalex.org/W2742269917","https://openalex.org/W2950774332"],"related_works":["https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W1764168690","https://openalex.org/W2537959205","https://openalex.org/W2740895074","https://openalex.org/W2772446090","https://openalex.org/W4284893819","https://openalex.org/W2249809453","https://openalex.org/W3152891574","https://openalex.org/W4316881845"],"abstract_inverted_index":{"Network":[0,115],"Function":[1],"Virtualization":[2],"(NFV)":[3],"is":[4,45,49],"an":[5,32,110],"emerging":[6],"approach":[7,148],"gaining":[8],"popularity":[9],"among":[10],"network":[11],"providers.":[12],"Nowadays,":[13],"NFV":[14,107],"infrastructure":[15],"platforms":[16],"are,":[17],"predominantly":[18],"based":[19],"on":[20],"x86":[21],"architecture":[22,29],"CPUs.":[23],"However,":[24],"vulnerabilities":[25],"of":[26,67,96,106,159],"the":[27,65,79,103,135,160],"CPU":[28,97],"may":[30],"allow":[31,150],"attacker":[33],"to":[34,39,112,152],"obtain":[35],"root":[36],"privileges":[37],"and":[38,134],"plant":[40],"malware.":[41,161],"Among":[42],"such":[43],"malware":[44,54,74],"crypto":[46],"mining,":[47],"which":[48],"hardly":[50],"detectable":[51],"either":[52],"by":[53,57,157],"scanner":[55],"or":[56],"a":[58,94,113,131,139],"firewall.":[59],"In":[60],"this":[61],"paper":[62],"we":[63,91],"investigate":[64],"applicability":[66],"side-channels":[68],"Key":[69],"Performance":[70],"Indicators":[71],"(KPIs)":[72],"for":[73,102],"detection.":[75],"We":[76],"propose":[77],"detecting":[78],"abnormal":[80,154],"behavior":[81,155],"using":[82,93,124],"Machine":[83],"Learning":[84],"tools.":[85],"Upon":[86],"analyzing":[87],"different":[88],"side-channel":[89],"technologies,":[90],"suggest":[92],"combination":[95],"performance":[98],"KPIs":[99,101],"with":[100],"forwarding":[104],"latency":[105],"applications":[108],"as":[109],"input":[111],"Neural":[114],"model.":[116],"The":[117,146],"model":[118],"shall":[119],"be":[120],"trained":[121],"in":[122],"advance":[123],"two":[125],"data":[126],"sets:":[127],"one":[128],"set":[129,137],"representing":[130],"clean":[132],"system":[133,141],"second":[136],"--":[138],"compromised":[140],"(containing":[142],"planted":[143],"crypto-mining":[144],"malware).":[145],"proposed":[147],"would":[149],"us":[151],"detect":[153],"caused":[156],"activation":[158]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}