{"id":"https://openalex.org/W4415222223","doi":"https://doi.org/10.1145/3730567.3732915","title":"Dive into the Cloud: Unveiling the (Ab)Usage of Serverless Cloud Function in the Wild","display_name":"Dive into the Cloud: Unveiling the (Ab)Usage of Serverless Cloud Function in the Wild","publication_year":2025,"publication_date":"2025-10-15","ids":{"openalex":"https://openalex.org/W4415222223","doi":"https://doi.org/10.1145/3730567.3732915"},"language":"en","primary_location":{"id":"doi:10.1145/3730567.3732915","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3730567.3732915","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3730567.3732915","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM Internet Measurement Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3730567.3732915","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5018887688","display_name":"Yaxiong LIU","orcid":null},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yijing Liu","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":"https://orcid.org/0009-0009-9204-111X","affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044762405","display_name":"Mingxuan Liu","orcid":"https://orcid.org/0000-0002-2163-6505"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mingxuan Liu","raw_affiliation_strings":["Zhongguancun Laboratory, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-2163-6505","affiliations":[{"raw_affiliation_string":"Zhongguancun Laboratory, Beijing, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5070997167","display_name":"Yiming Zhang","orcid":"https://orcid.org/0000-0002-6774-5299"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yiming Zhang","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-6774-5299","affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101694986","display_name":"Baojun Liu","orcid":"https://orcid.org/0000-0002-9032-8063"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Baojun Liu","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-9032-8063","affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018723138","display_name":"Jia Zhang","orcid":"https://orcid.org/0000-0001-7896-3382"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jia Zhang","raw_affiliation_strings":["Tsinghua University, Beijing, China and Quancheng Laboratory, Jinan, China"],"raw_orcid":"https://orcid.org/0000-0001-7896-3382","affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China and Quancheng Laboratory, Jinan, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054807919","display_name":"Geng Hong","orcid":"https://orcid.org/0000-0003-1811-9432"},"institutions":[{"id":"https://openalex.org/I24943067","display_name":"Fudan University","ror":"https://ror.org/013q1eq08","country_code":"CN","type":"education","lineage":["https://openalex.org/I24943067"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Geng Hong","raw_affiliation_strings":["Fudan University, Shanghai, China"],"raw_orcid":"https://orcid.org/0000-0003-1811-9432","affiliations":[{"raw_affiliation_string":"Fudan University, Shanghai, China","institution_ids":["https://openalex.org/I24943067"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5067799841","display_name":"Haixin Duan","orcid":"https://orcid.org/0000-0003-0083-733X"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haixin Duan","raw_affiliation_strings":["Tsinghua University, Beijing, China and QI-ANXIN Technology Research Institute, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0003-0083-733X","affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China and QI-ANXIN Technology Research Institute, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5052437722","display_name":"Min Yang","orcid":"https://orcid.org/0000-0001-9714-5545"},"institutions":[{"id":"https://openalex.org/I24943067","display_name":"Fudan University","ror":"https://ror.org/013q1eq08","country_code":"CN","type":"education","lineage":["https://openalex.org/I24943067"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Min Yang","raw_affiliation_strings":["Fudan University, Shanghai, China"],"raw_orcid":"https://orcid.org/0000-0001-9714-5545","affiliations":[{"raw_affiliation_string":"Fudan University, Shanghai, China","institution_ids":["https://openalex.org/I24943067"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":8,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.39202936,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"63","last_page":"77"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10101","display_name":"Cloud Computing and Resource Management","score":0.9962999820709229,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.8733999729156494},{"id":"https://openalex.org/keywords/function","display_name":"Function (biology)","score":0.5335999727249146},{"id":"https://openalex.org/keywords/covert","display_name":"Covert","score":0.49810001254081726},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.4684999883174896},{"id":"https://openalex.org/keywords/cloud-service-provider","display_name":"Cloud service provider","score":0.41600000858306885},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.3991999924182892},{"id":"https://openalex.org/keywords/cloud-server","display_name":"Cloud server","score":0.3919000029563904}],"concepts":[{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.8733999729156494},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7354000210762024},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5541999936103821},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.5335999727249146},{"id":"https://openalex.org/C2779338814","wikidata":"https://www.wikidata.org/wiki/Q5179285","display_name":"Covert","level":2,"score":0.49810001254081726},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.4684999883174896},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.45980000495910645},{"id":"https://openalex.org/C2983819522","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud service provider","level":4,"score":0.41600000858306885},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.3991999924182892},{"id":"https://openalex.org/C2987335383","wikidata":"https://www.wikidata.org/wiki/Q878048","display_name":"Cloud server","level":3,"score":0.3919000029563904},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.36070001125335693},{"id":"https://openalex.org/C116537","wikidata":"https://www.wikidata.org/wiki/Q2169973","display_name":"Service provider","level":3,"score":0.34279999136924744},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.3310999870300293},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.3212999999523163},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.2903999984264374},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.2535000145435333},{"id":"https://openalex.org/C191267431","wikidata":"https://www.wikidata.org/wiki/Q911932","display_name":"Honeypot","level":2,"score":0.25130000710487366},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.2506999969482422}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3730567.3732915","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3730567.3732915","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3730567.3732915","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM Internet Measurement Conference","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3730567.3732915","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3730567.3732915","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3730567.3732915","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM Internet Measurement Conference","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G2580485080","display_name":null,"funder_award_id":"62302258","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4259928007","display_name":null,"funder_award_id":"62102218","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4415222223.pdf","grobid_xml":"https://content.openalex.org/works/W4415222223.grobid-xml"},"referenced_works_count":17,"referenced_works":["https://openalex.org/W55692819","https://openalex.org/W95608104","https://openalex.org/W1603231998","https://openalex.org/W2054143615","https://openalex.org/W2512503597","https://openalex.org/W2912568927","https://openalex.org/W2914379250","https://openalex.org/W2914452207","https://openalex.org/W3166416521","https://openalex.org/W4205983429","https://openalex.org/W4232212103","https://openalex.org/W4254700426","https://openalex.org/W4306406240","https://openalex.org/W4308469411","https://openalex.org/W4311165758","https://openalex.org/W4404343279","https://openalex.org/W4413176214"],"related_works":[],"abstract_inverted_index":{"Serverless":[0],"cloud":[1,32,87,136,173,196],"functions":[2,33,137,149],"transfer":[3],"server":[4],"management":[5],"responsibilities":[6],"to":[7,46,76,100,186],"service":[8],"providers,":[9],"offering":[10],"scalability":[11],"and":[12,51,111,126,175,189],"cost-efficiency.":[13],"This":[14],"convenience":[15],"not":[16],"only":[17],"facilitates":[18],"normal":[19],"activities":[20],"but":[21],"also":[22],"raises":[23],"abuse":[24,114],"concerns.":[25],"So":[26],"far,":[27],"public":[28],"understanding":[29],"of":[30,56,85,108,135],"real-world":[31],"remains":[34],"limited.":[35],"To":[36],"fill":[37],"this":[38],"gap,":[39],"we":[40,63,103,184],"conducted":[41],"an":[42],"in-depth":[43],"measurement":[44],"study":[45],"uncover":[47],"their":[48],"practical":[49],"usage":[50,83],"abuse.":[52],"Through":[53],"empirical":[54],"analysis":[55],"nine":[57],"leading":[58],"providers":[59],"(e.g.,":[60],"AWS,":[61],"Tencent),":[62],"identified":[64,112],"531,089":[65],"function":[66,197],"domains":[67],"from":[68],"a":[69],"passive":[70],"DNS":[71],"dataset":[72],"spanning":[73],"April":[74],"2022":[75],"March":[77],"2024.":[78],"We":[79],"first":[80],"investigated":[81],"the":[82,90,171],"status":[84],"serverless":[86,164,172],"functions,":[88,102],"showing":[89],"different":[91],"practices":[92],"between":[93],"providers.":[94,198],"Additionally,":[95],"based":[96],"on":[97],"active":[98],"requests":[99],"these":[101],"pointed":[104],"out":[105],"privacy":[106],"risks":[107],"unauthorized":[109],"access":[110],"four":[113,147],"types,":[115],"including":[116],"covert":[117],"C2":[118],"communication,":[119],"hosting":[120],"malicious":[121],"websites,":[122],"promoting":[123],"illicit":[124],"services,":[125],"abusing":[127],"egress":[128],"nodes":[129],"as":[130],"IP":[131],"proxies.":[132],"Alarmingly,":[133],"4.89%":[134],"are":[138],"being":[139],"abused,":[140],"with":[141],"over":[142],"614k":[143],"invocations":[144],"recorded.":[145],"Only":[146],"abused":[148],"were":[150],"flagged":[151],"by":[152],"existing":[153],"threat":[154],"intelligence":[155],"systems,":[156],"indicating":[157],"critical":[158],"gaps":[159],"in":[160],"security":[161],"monitoring":[162],"for":[163,178],"environments.":[165],"Our":[166],"work":[167],"offers":[168],"insights":[169],"into":[170],"ecosystem":[174],"provides":[176],"recommendations":[177],"better":[179],"management.":[180],"With":[181],"responsible":[182],"disclosure,":[183],"hope":[185],"raise":[187],"awareness":[188],"improve":[190],"protective":[191],"measures":[192],"against":[193],"abuses":[194],"among":[195]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-16T00:00:00"}