{"id":"https://openalex.org/W4403536563","doi":"https://doi.org/10.1145/3691620.3695024","title":"Detecting and Explaining Anomalies Caused by Web Tamper Attacks via Building Consistency-based Normality","display_name":"Detecting and Explaining Anomalies Caused by Web Tamper Attacks via Building Consistency-based Normality","publication_year":2024,"publication_date":"2024-10-18","ids":{"openalex":"https://openalex.org/W4403536563","doi":"https://doi.org/10.1145/3691620.3695024"},"language":"en","primary_location":{"id":"doi:10.1145/3691620.3695024","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3691620.3695024","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":null,"display_name":"Yifan Liao","orcid":"https://orcid.org/0009-0000-1088-3714"},"institutions":[{"id":"https://openalex.org/I165932596","display_name":"National University of Singapore","ror":"https://ror.org/01tgyzw49","country_code":"SG","type":"education","lineage":["https://openalex.org/I165932596"]},{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]}],"countries":["CN","SG"],"is_corresponding":true,"raw_author_name":"Yifan Liao","raw_affiliation_strings":["National University of Singapore, Singapore, Singapore","Shanghai Jiaotong University, Shanghai, China"],"raw_orcid":"https://orcid.org/0009-0000-1088-3714","affiliations":[{"raw_affiliation_string":"National University of Singapore, Singapore, Singapore","institution_ids":["https://openalex.org/I165932596"]},{"raw_affiliation_string":"Shanghai Jiaotong University, Shanghai, China","institution_ids":["https://openalex.org/I183067930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100629750","display_name":"Ming Xu","orcid":"https://orcid.org/0000-0003-1061-819X"},"institutions":[{"id":"https://openalex.org/I165932596","display_name":"National University of Singapore","ror":"https://ror.org/01tgyzw49","country_code":"SG","type":"education","lineage":["https://openalex.org/I165932596"]},{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]}],"countries":["CN","SG"],"is_corresponding":false,"raw_author_name":"Ming Xu","raw_affiliation_strings":["National University of Singapore, Singapore, Singapore","Shanghai Jiaotong University, Shanghai, China"],"raw_orcid":"https://orcid.org/0000-0003-1061-819X","affiliations":[{"raw_affiliation_string":"National University of Singapore, Singapore, Singapore","institution_ids":["https://openalex.org/I165932596"]},{"raw_affiliation_string":"Shanghai Jiaotong University, Shanghai, China","institution_ids":["https://openalex.org/I183067930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063706766","display_name":"Yun Lin","orcid":"https://orcid.org/0000-0001-8255-0118"},"institutions":[{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yun Lin","raw_affiliation_strings":["Shanghai Jiao Tong University, Shanghai, China"],"raw_orcid":"https://orcid.org/0000-0001-8255-0118","affiliations":[{"raw_affiliation_string":"Shanghai Jiao Tong University, Shanghai, China","institution_ids":["https://openalex.org/I183067930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017597090","display_name":"Xiwen Teoh","orcid":null},"institutions":[{"id":"https://openalex.org/I165932596","display_name":"National University of Singapore","ror":"https://ror.org/01tgyzw49","country_code":"SG","type":"education","lineage":["https://openalex.org/I165932596"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Xiwen Teoh","raw_affiliation_strings":["National University of Singapore, Singapore, Singapore"],"raw_orcid":"https://orcid.org/0009-0009-8528-9088","affiliations":[{"raw_affiliation_string":"National University of Singapore, Singapore, Singapore","institution_ids":["https://openalex.org/I165932596"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084396416","display_name":"Xiaofei Xie","orcid":"https://orcid.org/0000-0002-1288-6502"},"institutions":[{"id":"https://openalex.org/I79891267","display_name":"Singapore Management University","ror":"https://ror.org/050qmg959","country_code":"SG","type":"education","lineage":["https://openalex.org/I79891267"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Xiaofei Xie","raw_affiliation_strings":["Singapore Management University, Singapore, Singapore"],"raw_orcid":"https://orcid.org/0000-0002-1288-6502","affiliations":[{"raw_affiliation_string":"Singapore Management University, Singapore, Singapore","institution_ids":["https://openalex.org/I79891267"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032257261","display_name":"Ruitao Feng","orcid":"https://orcid.org/0000-0001-9080-6865"},"institutions":[{"id":"https://openalex.org/I79891267","display_name":"Singapore Management University","ror":"https://ror.org/050qmg959","country_code":"SG","type":"education","lineage":["https://openalex.org/I79891267"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Ruitao Feng","raw_affiliation_strings":["Singapore Management University, Singapore, Singapore"],"raw_orcid":"https://orcid.org/0000-0001-9080-6865","affiliations":[{"raw_affiliation_string":"Singapore Management University, Singapore, Singapore","institution_ids":["https://openalex.org/I79891267"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037567618","display_name":"Frank Liaw","orcid":"https://orcid.org/0000-0002-0368-3949"},"institutions":[{"id":"https://openalex.org/I2802950585","display_name":"Defence Science and Technology Agency","ror":"https://ror.org/02rvm6b03","country_code":"SG","type":"government","lineage":["https://openalex.org/I1325159990","https://openalex.org/I2802950585"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Frank Liaw","raw_affiliation_strings":["Government Technology Agency of Singapore, Singapore, Singapore"],"raw_orcid":"https://orcid.org/0009-0009-1462-9794","affiliations":[{"raw_affiliation_string":"Government Technology Agency of Singapore, Singapore, Singapore","institution_ids":["https://openalex.org/I2802950585"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100412598","display_name":"Hongyu Zhang","orcid":"https://orcid.org/0000-0002-3063-9425"},"institutions":[{"id":"https://openalex.org/I158842170","display_name":"Chongqing University","ror":"https://ror.org/023rhb549","country_code":"CN","type":"education","lineage":["https://openalex.org/I158842170"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hongyu Zhang","raw_affiliation_strings":["Chongqing University, Chongqing, China"],"raw_orcid":"https://orcid.org/0000-0002-3063-9425","affiliations":[{"raw_affiliation_string":"Chongqing University, Chongqing, China","institution_ids":["https://openalex.org/I158842170"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5085067496","display_name":"Jin Song Dong","orcid":"https://orcid.org/0000-0002-6512-8326"},"institutions":[{"id":"https://openalex.org/I165932596","display_name":"National University of Singapore","ror":"https://ror.org/01tgyzw49","country_code":"SG","type":"education","lineage":["https://openalex.org/I165932596"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Jin Song Dong","raw_affiliation_strings":["National University of Singapore, Singapore, Singapore"],"raw_orcid":"https://orcid.org/0000-0002-6512-8326","affiliations":[{"raw_affiliation_string":"National University of Singapore, Singapore, Singapore","institution_ids":["https://openalex.org/I165932596"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":9,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I165932596","https://openalex.org/I183067930"],"apc_list":null,"apc_paid":null,"fwci":0.332,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.61455211,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"531","last_page":"543"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9887999892234802,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/normality","display_name":"Normality","score":0.793350100517273},{"id":"https://openalex.org/keywords/consistency","display_name":"Consistency (knowledge bases)","score":0.7509661912918091},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5860558152198792},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.46345943212509155},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.40724271535873413},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.34325748682022095},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2674369513988495},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.23152223229408264},{"id":"https://openalex.org/keywords/statistics","display_name":"Statistics","score":0.21057233214378357},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.19099590182304382}],"concepts":[{"id":"https://openalex.org/C2776157432","wikidata":"https://www.wikidata.org/wiki/Q1375683","display_name":"Normality","level":2,"score":0.793350100517273},{"id":"https://openalex.org/C2776436953","wikidata":"https://www.wikidata.org/wiki/Q5163215","display_name":"Consistency (knowledge bases)","level":2,"score":0.7509661912918091},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5860558152198792},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.46345943212509155},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40724271535873413},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.34325748682022095},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2674369513988495},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.23152223229408264},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.21057233214378357},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.19099590182304382}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3691620.3695024","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3691620.3695024","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":36,"referenced_works":["https://openalex.org/W1980694458","https://openalex.org/W2010895736","https://openalex.org/W2113606713","https://openalex.org/W2121818394","https://openalex.org/W2124081952","https://openalex.org/W2136646111","https://openalex.org/W2136656815","https://openalex.org/W2150990363","https://openalex.org/W2162720432","https://openalex.org/W2590567727","https://openalex.org/W2767094836","https://openalex.org/W2768513189","https://openalex.org/W2807405309","https://openalex.org/W2809376319","https://openalex.org/W2899279326","https://openalex.org/W2947815220","https://openalex.org/W2965838158","https://openalex.org/W2973461969","https://openalex.org/W3010215199","https://openalex.org/W3090513121","https://openalex.org/W3095840026","https://openalex.org/W3100178186","https://openalex.org/W3123326965","https://openalex.org/W3147048975","https://openalex.org/W3161997752","https://openalex.org/W3162473118","https://openalex.org/W3163667769","https://openalex.org/W3194768773","https://openalex.org/W3212260481","https://openalex.org/W4205965165","https://openalex.org/W4284665614","https://openalex.org/W4284688717","https://openalex.org/W4388214674","https://openalex.org/W4388483447","https://openalex.org/W4402264500","https://openalex.org/W6767958195"],"related_works":["https://openalex.org/W4321650139","https://openalex.org/W2169275958","https://openalex.org/W2106922074","https://openalex.org/W2917687159","https://openalex.org/W2000721663","https://openalex.org/W2506314341","https://openalex.org/W2405714784","https://openalex.org/W4391002904","https://openalex.org/W4285364886","https://openalex.org/W2912770476"],"abstract_inverted_index":{"Web":[0],"applications":[1],"are":[2],"crucial":[3],"infrastructures":[4],"in":[5,71],"the":[6,24,27,40,45,59,85],"modern":[7],"society,":[8],"which":[9,38],"have":[10],"high":[11],"demand":[12],"of":[13],"reliability":[14],"and":[15,87,90],"security.":[16],"However,":[17],"their":[18],"frontend":[19,28],"can":[20,30,75],"be":[21,31],"manipulable":[22],"by":[23,81],"clients":[25],"(e.g.,":[26],"code":[29],"modified":[32],"to":[33,62],"bypass":[34],"some":[35],"validation":[36],"steps),":[37],"incurs":[39],"runtime":[41],"anomaly":[42,50],"when":[43],"operating":[44],"web":[46],"service.":[47],"Existing":[48],"state-of-the-art":[49],"detectors":[51],"largely":[52],"learn":[53],"a":[54,67],"deep":[55],"learning":[56],"model":[57],"from":[58,77],"collected":[60],"logs":[61,65,89],"predict":[63],"abnormal":[64],"with":[66],"probability.":[68],"While":[69],"effective":[70],"general,":[72],"those":[73],"approaches":[74],"suffer":[76],"(1)":[78],"inaccuracy":[79],"caused":[80],"subtle":[82],"difference":[83],"between":[84],"normal":[86],"abnormal/attack":[88],"(2)":[91],"additional":[92],"efforts":[93],"for":[94],"root":[95],"cause":[96],"analysis.":[97]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-05-05T08:41:31.759640","created_date":"2025-10-10T00:00:00"}