{"id":"https://openalex.org/W3208020858","doi":"https://doi.org/10.1145/3458903.3458909","title":"Position Paper: Consider Hardware-enhanced Defenses for Rootkit Attacks","display_name":"Position Paper: Consider Hardware-enhanced Defenses for Rootkit Attacks","publication_year":2020,"publication_date":"2020-10-17","ids":{"openalex":"https://openalex.org/W3208020858","doi":"https://doi.org/10.1145/3458903.3458909","mag":"3208020858"},"language":"en","primary_location":{"id":"doi:10.1145/3458903.3458909","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3458903.3458909","pdf_url":null,"source":{"id":"https://openalex.org/S4306418514","display_name":"Hardware and Architectural Support for Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hardware and Architectural Support for Security and Privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5051022189","display_name":"Guangyuan Hu","orcid":"https://orcid.org/0009-0000-9554-258X"},"institutions":[{"id":"https://openalex.org/I20089843","display_name":"Princeton University","ror":"https://ror.org/00hx57361","country_code":"US","type":"education","lineage":["https://openalex.org/I20089843"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Guangyuan Hu","raw_affiliation_strings":["Princeton University, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Princeton University, USA","institution_ids":["https://openalex.org/I20089843"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101591102","display_name":"Tianwei Zhang","orcid":"https://orcid.org/0000-0001-7335-7367"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Tianwei Zhang","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5035657440","display_name":"Ruby B. Lee","orcid":"https://orcid.org/0000-0001-9497-0777"},"institutions":[{"id":"https://openalex.org/I20089843","display_name":"Princeton University","ror":"https://ror.org/00hx57361","country_code":"US","type":"education","lineage":["https://openalex.org/I20089843"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ruby B. Lee","raw_affiliation_strings":["Princeton University, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Princeton University, USA","institution_ids":["https://openalex.org/I20089843"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.30074407,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9958999752998352,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/rootkit","display_name":"Rootkit","score":0.9400020241737366},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6688426733016968},{"id":"https://openalex.org/keywords/position","display_name":"Position (finance)","score":0.5357031226158142},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.41855719685554504},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.40623199939727783},{"id":"https://openalex.org/keywords/computer-hardware","display_name":"Computer hardware","score":0.3596994876861572},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.3015475869178772},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.11996576189994812}],"concepts":[{"id":"https://openalex.org/C10144332","wikidata":"https://www.wikidata.org/wiki/Q14645","display_name":"Rootkit","level":3,"score":0.9400020241737366},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6688426733016968},{"id":"https://openalex.org/C198082294","wikidata":"https://www.wikidata.org/wiki/Q3399648","display_name":"Position (finance)","level":2,"score":0.5357031226158142},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.41855719685554504},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40623199939727783},{"id":"https://openalex.org/C9390403","wikidata":"https://www.wikidata.org/wiki/Q3966","display_name":"Computer hardware","level":1,"score":0.3596994876861572},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.3015475869178772},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.11996576189994812},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3458903.3458909","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3458903.3458909","pdf_url":null,"source":{"id":"https://openalex.org/S4306418514","display_name":"Hardware and Architectural Support for Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hardware and Architectural Support for Security and Privacy","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.41999998688697815,"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":29,"referenced_works":["https://openalex.org/W6385438","https://openalex.org/W57172993","https://openalex.org/W173413620","https://openalex.org/W1528086994","https://openalex.org/W1641762327","https://openalex.org/W1963581527","https://openalex.org/W2036329595","https://openalex.org/W2059063827","https://openalex.org/W2061643296","https://openalex.org/W2071289869","https://openalex.org/W2087740020","https://openalex.org/W2101177960","https://openalex.org/W2109921293","https://openalex.org/W2112731379","https://openalex.org/W2117882778","https://openalex.org/W2119982986","https://openalex.org/W2120077409","https://openalex.org/W2120118950","https://openalex.org/W2135162105","https://openalex.org/W2138580357","https://openalex.org/W2140807364","https://openalex.org/W2144006591","https://openalex.org/W2155316442","https://openalex.org/W2159265516","https://openalex.org/W2602229646","https://openalex.org/W2741593962","https://openalex.org/W2883613460","https://openalex.org/W2963311060","https://openalex.org/W3151341281"],"related_works":["https://openalex.org/W1994712384","https://openalex.org/W4240186231","https://openalex.org/W2166844173","https://openalex.org/W3170525725","https://openalex.org/W3089468277","https://openalex.org/W4310805820","https://openalex.org/W2119580333","https://openalex.org/W3200236636","https://openalex.org/W1838401043","https://openalex.org/W2809416438"],"abstract_inverted_index":{"Rootkits":[0],"are":[1,54,85],"malware":[2],"that":[3],"attempt":[4],"to":[5,77,131,138],"compromise":[6],"the":[7,71,82,121,142],"system\u2019s":[8],"functionalities":[9],"while":[10],"hiding":[11],"their":[12,67],"existence.":[13],"Various":[14],"rootkits":[15,65],"have":[16],"been":[17],"proposed":[18],"as":[19,21,36,45],"well":[20],"different":[22,61,125],"software":[23],"defenses,":[24],"but":[25],"only":[26],"very":[27],"few":[28],"hardware":[29,48,143],"defenses.":[30],"We":[31,58,74,97,119],"position":[32],"hardware-enhanced":[33],"rootkit":[34,89],"defenses":[35,49],"an":[37,113],"interesting":[38],"research":[39,133],"opportunity":[40],"for":[41,50,135],"computer":[42],"architects,":[43],"especially":[44],"many":[46],"new":[47],"speculative":[51],"execution":[52],"attacks":[53,140],"being":[55],"actively":[56],"considered.":[57],"first":[59],"describe":[60],"techniques":[62],"used":[63],"by":[64],"and":[66,91,106],"prime":[68],"targets":[69],"in":[70,86,112,141],"operating":[72],"system.":[73],"then":[75],"try":[76],"shed":[78],"insights":[79],"on":[80],"what":[81],"main":[83],"challenges":[84],"providing":[87],"a":[88,100,108],"defense,":[90],"how":[92,99],"these":[93],"may":[94],"be":[95,104],"overcome.":[96],"show":[98],"hypervisor-based":[101],"defense":[102,126],"can":[103],"implemented,":[105],"provide":[107],"full":[109],"prototype":[110],"implementation":[111],"open-source":[114],"cloud":[115],"computing":[116],"platform,":[117],"OpenStack.":[118],"evaluate":[120],"performance":[122],"overhead":[123],"of":[124],"mechanisms.":[127],"Finally,":[128],"we":[129],"point":[130],"some":[132],"opportunities":[134],"enhancing":[136],"resilience":[137],"rootkit-like":[139],"architecture.":[144]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}