{"id":"https://openalex.org/W3204100871","doi":"https://doi.org/10.1145/3440943.3444734","title":"Research on PEB-LDR Data Analysis Technique for DLL Injection Detection on ICS Engineering Workstation","display_name":"Research on PEB-LDR Data Analysis Technique for DLL Injection Detection on ICS Engineering Workstation","publication_year":2020,"publication_date":"2020-12-12","ids":{"openalex":"https://openalex.org/W3204100871","doi":"https://doi.org/10.1145/3440943.3444734","mag":"3204100871"},"language":"en","primary_location":{"id":"doi:10.1145/3440943.3444734","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3440943.3444734","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2020 ACM International Conference on Intelligent Computing and its Emerging Applications","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101913823","display_name":"Jun Won Kim","orcid":"https://orcid.org/0000-0003-1358-364X"},"institutions":[{"id":"https://openalex.org/I24541011","display_name":"Soonchunhyang University","ror":"https://ror.org/03qjsrb10","country_code":"KR","type":"education","lineage":["https://openalex.org/I24541011"]}],"countries":["KR"],"is_corresponding":true,"raw_author_name":"Junwon Kim","raw_affiliation_strings":["Department of Information Security Engineering, Soonchunhyang University, South Korea"],"affiliations":[{"raw_affiliation_string":"Department of Information Security Engineering, Soonchunhyang University, South Korea","institution_ids":["https://openalex.org/I24541011"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055766787","display_name":"Jiho Shin","orcid":"https://orcid.org/0000-0002-2697-8221"},"institutions":[{"id":"https://openalex.org/I323440827","display_name":"Korean National Police University","ror":"https://ror.org/02s89kd69","country_code":"KR","type":"education","lineage":["https://openalex.org/I323440827"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jiho Shin","raw_affiliation_strings":["Police Science Institute, Korean National Police University, South Korea"],"affiliations":[{"raw_affiliation_string":"Police Science Institute, Korean National Police University, South Korea","institution_ids":["https://openalex.org/I323440827"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5051250672","display_name":"Jung Taek Seo","orcid":"https://orcid.org/0000-0003-0971-8548"},"institutions":[{"id":"https://openalex.org/I24541011","display_name":"Soonchunhyang University","ror":"https://ror.org/03qjsrb10","country_code":"KR","type":"education","lineage":["https://openalex.org/I24541011"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jung Taek Seo","raw_affiliation_strings":["Department of Information Security Engineering, Soonchunhyang University, South Korea"],"affiliations":[{"raw_affiliation_string":"Department of Information Security Engineering, Soonchunhyang University, South Korea","institution_ids":["https://openalex.org/I24541011"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5101913823"],"corresponding_institution_ids":["https://openalex.org/I24541011"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.20190949,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12495","display_name":"Electrostatic Discharge in Electronics","score":0.7793999910354614,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12495","display_name":"Electrostatic Discharge in Electronics","score":0.7793999910354614,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.758899986743927,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12111","display_name":"Industrial Vision Systems and Defect Detection","score":0.7526000142097473,"subfield":{"id":"https://openalex.org/subfields/2209","display_name":"Industrial and Manufacturing Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/workstation","display_name":"Workstation","score":0.7012615203857422},{"id":"https://openalex.org/keywords/scada","display_name":"SCADA","score":0.699324369430542},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6379013657569885},{"id":"https://openalex.org/keywords/programmable-logic-controller","display_name":"Programmable logic controller","score":0.5461931228637695},{"id":"https://openalex.org/keywords/industrial-control-system","display_name":"Industrial control system","score":0.5220456123352051},{"id":"https://openalex.org/keywords/controller","display_name":"Controller (irrigation)","score":0.4771147072315216},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.4050023555755615},{"id":"https://openalex.org/keywords/computer-hardware","display_name":"Computer hardware","score":0.39243781566619873},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.36341917514801025},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3630768358707428},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.25918900966644287},{"id":"https://openalex.org/keywords/electrical-engineering","display_name":"Electrical engineering","score":0.10381004214286804},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.07449319958686829}],"concepts":[{"id":"https://openalex.org/C67953723","wikidata":"https://www.wikidata.org/wiki/Q192525","display_name":"Workstation","level":2,"score":0.7012615203857422},{"id":"https://openalex.org/C113863187","wikidata":"https://www.wikidata.org/wiki/Q17498","display_name":"SCADA","level":2,"score":0.699324369430542},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6379013657569885},{"id":"https://openalex.org/C37374048","wikidata":"https://www.wikidata.org/wiki/Q188674","display_name":"Programmable logic controller","level":2,"score":0.5461931228637695},{"id":"https://openalex.org/C40071531","wikidata":"https://www.wikidata.org/wiki/Q2513962","display_name":"Industrial control system","level":3,"score":0.5220456123352051},{"id":"https://openalex.org/C203479927","wikidata":"https://www.wikidata.org/wiki/Q5165939","display_name":"Controller (irrigation)","level":2,"score":0.4771147072315216},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.4050023555755615},{"id":"https://openalex.org/C9390403","wikidata":"https://www.wikidata.org/wiki/Q3966","display_name":"Computer hardware","level":1,"score":0.39243781566619873},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.36341917514801025},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3630768358707428},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.25918900966644287},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.10381004214286804},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.07449319958686829},{"id":"https://openalex.org/C6557445","wikidata":"https://www.wikidata.org/wiki/Q173113","display_name":"Agronomy","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3440943.3444734","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3440943.3444734","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2020 ACM International Conference on Intelligent Computing and its Emerging Applications","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5656676459","display_name":null,"funder_award_id":"2020-0-00913","funder_id":"https://openalex.org/F4320328359","funder_display_name":"Ministry of Science and ICT, South Korea"},{"id":"https://openalex.org/G8200122838","display_name":null,"funder_award_id":"NRF-2020R1A2C1012187","funder_id":"https://openalex.org/F4320322120","funder_display_name":"National Research Foundation of Korea"}],"funders":[{"id":"https://openalex.org/F4320322120","display_name":"National Research Foundation of Korea","ror":"https://ror.org/013aysd81"},{"id":"https://openalex.org/F4320328359","display_name":"Ministry of Science and ICT, South Korea","ror":"https://ror.org/01wpjm123"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":2,"referenced_works":["https://openalex.org/W1540198462","https://openalex.org/W1573946010"],"related_works":["https://openalex.org/W2516092834","https://openalex.org/W2309980522","https://openalex.org/W2187618570","https://openalex.org/W4252573951","https://openalex.org/W2902958991","https://openalex.org/W1980447405","https://openalex.org/W2801513872","https://openalex.org/W2961381604","https://openalex.org/W2615554433","https://openalex.org/W2804225172"],"abstract_inverted_index":{"In":[0],"the":[1,22,25,31,35,42,72,80,123],"field":[2],"of":[3,24,52,70,75,103],"Industrial":[4],"Control":[5],"Systems":[6],"(ICS),":[7],"engineering":[8,76],"workstations":[9,77],"are":[10],"used":[11,78],"to":[12,49,86,91,111],"manage":[13],"and":[14,33,83,130],"control":[15,51],"processes":[16],"better.":[17],"It":[18],"can":[19,59],"involve":[20],"monitoring":[21],"status":[23],"PLC":[26,36],"(Programming":[27],"Logic":[28],"Controller)":[29],"constituting":[30],"ICS":[32,81],"observing":[34],"data":[37,88],"in":[38,79],"real":[39],"time":[40],"using":[41,122],"HMI":[43],"function.":[44],"Nonetheless,":[45],"it":[46],"is":[47,109],"possible":[48],"gain":[50],"SCADA":[53],"through":[54],"a":[55,61,68,84,101,116,131],"DLL":[56,73,92,106,127],"injection,":[57],"which":[58],"cause":[60],"fatal":[62],"accident.":[63],"Therefore,":[64],"this":[65],"paper":[66],"proposes":[67],"method":[69,102,125],"detecting":[71,104],"Injection":[74,93,128],"environment":[82],"technique":[85],"detect":[87],"change":[89],"due":[90],"by":[94],"analyzing":[95],"PEB-LDR":[96],"data.":[97],"We":[98],"also":[99],"propose":[100],"malicious":[105],"when":[107,126],"such":[108],"suspected":[110],"have":[112],"been":[113],"loaded.":[114],"As":[115],"result,":[117],"successful":[118],"detection":[119],"was":[120],"realized":[121],"suggested":[124],"occurred,":[129],"warning":[132],"message":[133],"could":[134],"be":[135],"displayed.":[136]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}