{"id":"https://openalex.org/W4400976736","doi":"https://doi.org/10.1145/3664476.3664483","title":"Towards Reducing Business-Risk of Data Theft Implementing Automated Simulation Procedures of Evil Data Exfiltration","display_name":"Towards Reducing Business-Risk of Data Theft Implementing Automated Simulation Procedures of Evil Data Exfiltration","publication_year":2024,"publication_date":"2024-07-25","ids":{"openalex":"https://openalex.org/W4400976736","doi":"https://doi.org/10.1145/3664476.3664483"},"language":"en","primary_location":{"id":"doi:10.1145/3664476.3664483","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3664476.3664483","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 19th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5033320415","display_name":"Michael Mundt","orcid":"https://orcid.org/0000-0002-5789-8558"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Michael Mundt","raw_affiliation_strings":["Esri Deutschland GmbH, Germany"],"raw_orcid":"https://orcid.org/0000-0002-5789-8558","affiliations":[{"raw_affiliation_string":"Esri Deutschland GmbH, Germany","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010243095","display_name":"Harald Baier","orcid":"https://orcid.org/0000-0002-9254-6398"},"institutions":[{"id":"https://openalex.org/I40527276","display_name":"Universit\u00e4t der Bundeswehr M\u00fcnchen","ror":"https://ror.org/05kkv3f82","country_code":"DE","type":"education","lineage":["https://openalex.org/I1315109972","https://openalex.org/I40527276","https://openalex.org/I4387152969"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Harald Baier","raw_affiliation_strings":["Universit\u00e4t der Bundeswehr M\u00fcnchen, Research Instiute CODE, Germany"],"raw_orcid":"https://orcid.org/0000-0002-9254-6398","affiliations":[{"raw_affiliation_string":"Universit\u00e4t der Bundeswehr M\u00fcnchen, Research Instiute CODE, Germany","institution_ids":["https://openalex.org/I40527276"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5030551795","display_name":"Antje Raab-D\u00fcsterh\u00f6ft","orcid":"https://orcid.org/0009-0000-5746-1842"},"institutions":[{"id":"https://openalex.org/I162015237","display_name":"Wismar University of Applied Sciences","ror":"https://ror.org/00s1ckt27","country_code":"DE","type":"education","lineage":["https://openalex.org/I162015237"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Antje Raab-D\u00fcsterh\u00f6ft","raw_affiliation_strings":["Hochschule Wismar, Germany"],"raw_orcid":"https://orcid.org/0009-0000-5746-1842","affiliations":[{"raw_affiliation_string":"Hochschule Wismar, Germany","institution_ids":["https://openalex.org/I162015237"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.11336054,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"12"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6288769245147705},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4949759840965271},{"id":"https://openalex.org/keywords/data-modeling","display_name":"Data modeling","score":0.47605201601982117},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.3211449384689331},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.12870201468467712}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6288769245147705},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4949759840965271},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.47605201601982117},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.3211449384689331},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.12870201468467712}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3664476.3664483","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3664476.3664483","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 19th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.5,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W220935706","https://openalex.org/W3161804663","https://openalex.org/W4205724334","https://openalex.org/W4366319386","https://openalex.org/W4386001908","https://openalex.org/W6787261464"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W2382290278","https://openalex.org/W4395014643"],"abstract_inverted_index":{"As":[0,115],"of":[1,30,35,61,78,96,102,119,131,138,148,159,185,202],"today":[2],"exposure":[3],"and":[4,47,52,59,74,106,110,167,172,189],"remediation":[5],"technologies":[6],"are":[7],"mainly":[8],"validated":[9],"by":[10],"taking":[11],"the":[12,31,40,56,94,103,142,175,183],"attacker\u2019s":[13,104],"perspective.":[14],"This":[15],"paradigm":[16],"is":[17,43],"often":[18],"referred":[19],"to":[20,55],"as":[21,200],"Know":[22],"Your":[23],"Enemy.":[24],"It":[25],"enables":[26],"a":[27,50,72,75,90,203],"realistic":[28],"assessment":[29],"actual":[32],"attack":[33,162],"surface":[34],"your":[36],"IT":[37],"infrastructure.":[38],"Furthermore,":[39],"operational":[41],"environment":[42],"becoming":[44],"increasingly":[45],"dynamic":[46],"complex.":[48],"Hence":[49],"flexible":[51],"adaptable":[53],"reaction":[54],"tactics,":[57],"techniques,":[58,122],"procedures":[60],"cyber":[62],"attackers":[63],"must":[64],"be":[65],"implemented.":[66],"In":[67],"this":[68],"work,":[69],"we":[70,88,123,155,180],"present":[71,89],"concept":[73],"prototypical":[76],"proof":[77],"concept,":[79],"which":[80,99,134],"take":[81],"both":[82],"aspects":[83],"into":[84,113,192],"account.":[85],"More":[86],"precisely":[87],"simulation-based":[91],"approach":[92],"in":[93,141],"scope":[95],"data":[97,120,166],"exfiltration,":[98],"improves":[100],"anticipation":[101],"perspective":[105],"thus":[107],"puts":[108],"effective":[109],"adapted":[111],"strategies":[112],"place.":[114],"sample":[116,161],"use":[117,147],"cases":[118],"exfiltration":[121],"shed":[124],"light":[125],"on":[126,182],"recent":[127],"techniques":[128],"like":[129],"abuse":[130],"scheduled":[132],"tasks,":[133],"presumably":[135],"will":[136],"become":[137],"increasing":[139],"importance":[140],"future.":[143],"Our":[144],"prototype":[145],"makes":[146],"common":[149],"open-source":[150],"software.":[151],"During":[152],"our":[153,160,186],"evaluation,":[154],"simulate":[156],"relevant":[157],"sections":[158],"vectors":[163],"using":[164],"test":[165],"derive":[168],"options":[169],"for":[170,205],"detection":[171],"protection":[173],"against":[174],"respective":[176],"simulated":[177],"attack.":[178],"Finally,":[179],"expound":[181],"integration":[184],"proposed":[187],"technical":[188],"organisational":[190],"measures":[191],"an":[193],"existing":[194],"Information":[195],"Security":[196],"Management":[197],"System":[198],"(ISMS)":[199],"part":[201],"process":[204],"continuous":[206],"improvement.":[207]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}