{"id":"https://openalex.org/W4396758700","doi":"https://doi.org/10.1145/3589334.3645719","title":"Fingerprinting the Shadows: Unmasking Malicious Servers with Machine Learning-Powered TLS Analysis","display_name":"Fingerprinting the Shadows: Unmasking Malicious Servers with Machine Learning-Powered TLS Analysis","publication_year":2024,"publication_date":"2024-05-08","ids":{"openalex":"https://openalex.org/W4396758700","doi":"https://doi.org/10.1145/3589334.3645719"},"language":"en","primary_location":{"id":"doi:10.1145/3589334.3645719","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3589334.3645719","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM Web Conference 2024","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3589334.3645719","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5097028514","display_name":"Andreas Theofanous","orcid":null},"institutions":[{"id":"https://openalex.org/I8901234","display_name":"Foundation for Research and Technology Hellas","ror":"https://ror.org/052rphn09","country_code":"GR","type":"facility","lineage":["https://openalex.org/I8901234"]}],"countries":["GR"],"is_corresponding":true,"raw_author_name":"Andreas Theofanous","raw_affiliation_strings":["Foundation for Research and Technology - Hellas, Heraklion, Greece"],"affiliations":[{"raw_affiliation_string":"Foundation for Research and Technology - Hellas, Heraklion, Greece","institution_ids":["https://openalex.org/I8901234"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5073423719","display_name":"Eva Papadogiannaki","orcid":"https://orcid.org/0000-0003-0205-964X"},"institutions":[{"id":"https://openalex.org/I55741626","display_name":"Technical University of Crete","ror":"https://ror.org/03f8bz564","country_code":"GR","type":"education","lineage":["https://openalex.org/I55741626"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Eva Papadogiannaki","raw_affiliation_strings":["Technical University of Crete, Chania, Greece"],"affiliations":[{"raw_affiliation_string":"Technical University of Crete, Chania, Greece","institution_ids":["https://openalex.org/I55741626"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060700878","display_name":"Alexander Shevtsov","orcid":"https://orcid.org/0000-0001-5072-5569"},"institutions":[{"id":"https://openalex.org/I55741626","display_name":"Technical University of Crete","ror":"https://ror.org/03f8bz564","country_code":"GR","type":"education","lineage":["https://openalex.org/I55741626"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Alexander Shevtsov","raw_affiliation_strings":["Technical University of Crete, Chania, Greece"],"affiliations":[{"raw_affiliation_string":"Technical University of Crete, Chania, Greece","institution_ids":["https://openalex.org/I55741626"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5022073151","display_name":"Sotiris Ioannidis","orcid":"https://orcid.org/0000-0001-9340-2241"},"institutions":[{"id":"https://openalex.org/I55741626","display_name":"Technical University of Crete","ror":"https://ror.org/03f8bz564","country_code":"GR","type":"education","lineage":["https://openalex.org/I55741626"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Sotiris Ioannidis","raw_affiliation_strings":["Technical University of Crete, Chania, Greece"],"affiliations":[{"raw_affiliation_string":"Technical University of Crete, Chania, Greece","institution_ids":["https://openalex.org/I55741626"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5097028514"],"corresponding_institution_ids":["https://openalex.org/I8901234"],"apc_list":null,"apc_paid":null,"fwci":2.044,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.88151742,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1933","last_page":"1944"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.791407585144043},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.7805200815200806},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.7755224704742432},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.7519997358322144},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.6015558242797852},{"id":"https://openalex.org/keywords/pipeline","display_name":"Pipeline (software)","score":0.5015120506286621},{"id":"https://openalex.org/keywords/metadata","display_name":"Metadata","score":0.4923635721206665},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.48551464080810547},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4748185873031616},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.1926962435245514},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1814109981060028},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.14522722363471985}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.791407585144043},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.7805200815200806},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.7755224704742432},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.7519997358322144},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.6015558242797852},{"id":"https://openalex.org/C43521106","wikidata":"https://www.wikidata.org/wiki/Q2165493","display_name":"Pipeline (software)","level":2,"score":0.5015120506286621},{"id":"https://openalex.org/C93518851","wikidata":"https://www.wikidata.org/wiki/Q180160","display_name":"Metadata","level":2,"score":0.4923635721206665},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.48551464080810547},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4748185873031616},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.1926962435245514},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1814109981060028},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.14522722363471985}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3589334.3645719","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3589334.3645719","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM Web Conference 2024","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3589334.3645719","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3589334.3645719","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM Web Conference 2024","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G3438030729","display_name":null,"funder_award_id":"101070599","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G500475356","display_name":null,"funder_award_id":"101070416","funder_id":"https://openalex.org/F4320323817","funder_display_name":"Universitas Brawijaya"},{"id":"https://openalex.org/G6322478514","display_name":"Energy-efficient AI-ready Data Spaces","funder_award_id":"101070416","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G7101359132","display_name":"Bridging the security, privacy and data protection gap for smaller enterprises in Europe","funder_award_id":"101021659","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G8051717526","display_name":null,"funder_award_id":"Grant","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"}],"funders":[{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320323817","display_name":"Universitas Brawijaya","ror":"https://ror.org/01wk3d929"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":25,"referenced_works":["https://openalex.org/W1680797894","https://openalex.org/W1989763988","https://openalex.org/W2000756828","https://openalex.org/W2001637908","https://openalex.org/W2054143615","https://openalex.org/W2071698610","https://openalex.org/W2164117960","https://openalex.org/W2761748950","https://openalex.org/W2895807258","https://openalex.org/W2947585023","https://openalex.org/W2963065250","https://openalex.org/W2978116268","https://openalex.org/W2980759281","https://openalex.org/W2982387504","https://openalex.org/W2984717769","https://openalex.org/W3044183949","https://openalex.org/W3104045421","https://openalex.org/W3152517439","https://openalex.org/W3181596493","https://openalex.org/W3198759872","https://openalex.org/W3206818901","https://openalex.org/W4200562425","https://openalex.org/W4206646568","https://openalex.org/W4324009745","https://openalex.org/W4386214697"],"related_works":["https://openalex.org/W2294483539","https://openalex.org/W2378449000","https://openalex.org/W3187581118","https://openalex.org/W2938399969","https://openalex.org/W2616994865","https://openalex.org/W3143747655","https://openalex.org/W2002178493","https://openalex.org/W2929621094","https://openalex.org/W1996006176","https://openalex.org/W4285325964"],"abstract_inverted_index":{"Over":[0],"the":[1,5,54,66],"last":[2],"few":[3],"years,":[4],"adoption":[6],"of":[7,18,65],"encryption":[8,29],"in":[9,53,60],"network":[10,28],"traffic":[11],"has":[12],"been":[13,44],"constantly":[14],"increasing.":[15],"The":[16],"percentage":[17],"encrypted":[19,69],"communications":[20],"worldwide":[21],"is":[22],"estimated":[23,58],"to":[24,33],"exceed":[25],"90%.":[26],"Although":[27],"protocols":[30],"mainly":[31],"aim":[32],"secure":[34],"and":[35,40],"protect":[36],"users'":[37],"online":[38],"activities":[39],"communications,":[41],"they":[42],"have":[43],"exploited":[45],"by":[46],"malicious":[47],"entities":[48],"that":[49,59],"hide":[50],"their":[51],"presence":[52],"network.":[55],"It":[56],"was":[57],"2022,":[61],"more":[62],"than":[63],"85%":[64],"malware":[67],"used":[68],"communication":[70],"channels.":[71]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":3}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2024-05-09T00:00:00"}