{"id":"https://openalex.org/W7141556424","doi":"https://doi.org/10.1145/3805033","title":"PCAP-Backdoor: Backdoor Generator in Network Traffic for Intrusion Detection Systems","display_name":"PCAP-Backdoor: Backdoor Generator in Network Traffic for Intrusion Detection Systems","publication_year":2026,"publication_date":"2026-03-27","ids":{"openalex":"https://openalex.org/W7141556424","doi":"https://doi.org/10.1145/3805033"},"language":"en","primary_location":{"id":"doi:10.1145/3805033","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3805033","pdf_url":null,"source":{"id":"https://openalex.org/S2506189754","display_name":"ACM Transactions on Cyber-Physical Systems","issn_l":"2378-962X","issn":["2378-962X","2378-9638"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Cyber-Physical Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://doi.org/10.1145/3805033","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5013859689","display_name":"Ajesh Koyatan Chathoth","orcid":null},"institutions":[{"id":"https://openalex.org/I170201317","display_name":"University of Pittsburgh","ror":"https://ror.org/01an3r305","country_code":"US","type":"education","lineage":["https://openalex.org/I170201317"]},{"id":"https://openalex.org/I4210092318","display_name":"Education Management Corporation (United States)","ror":"https://ror.org/00df8wr13","country_code":"US","type":"company","lineage":["https://openalex.org/I4210092318"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ajesh Koyatan Chathoth","raw_affiliation_strings":["University of Pittsburgh, Pittsburgh, Pennsylvania, USA and Eaton Corporation, Pittsburgh, Pennsylvania, USA"],"raw_orcid":"https://orcid.org/0009-0006-0375-0749","affiliations":[{"raw_affiliation_string":"University of Pittsburgh, Pittsburgh, Pennsylvania, USA and Eaton Corporation, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I4210092318","https://openalex.org/I170201317"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5130764362","display_name":"Karandeep Parashar","orcid":null},"institutions":[{"id":"https://openalex.org/I170201317","display_name":"University of Pittsburgh","ror":"https://ror.org/01an3r305","country_code":"US","type":"education","lineage":["https://openalex.org/I170201317"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Karandeep Parashar","raw_affiliation_strings":["University of Pittsburgh, Pittsburgh, Pennsylvania, USA"],"raw_orcid":"https://orcid.org/0009-0008-4277-7797","affiliations":[{"raw_affiliation_string":"University of Pittsburgh, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I170201317"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100596868","display_name":"Anfeng Peng","orcid":null},"institutions":[{"id":"https://openalex.org/I170201317","display_name":"University of Pittsburgh","ror":"https://ror.org/01an3r305","country_code":"US","type":"education","lineage":["https://openalex.org/I170201317"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Anfeng Peng","raw_affiliation_strings":["University of Pittsburgh, Pittsburgh, Pennsylvania, USA"],"raw_orcid":"https://orcid.org/0009-0005-8229-2821","affiliations":[{"raw_affiliation_string":"University of Pittsburgh, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I170201317"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100650753","display_name":"Stephen Lee","orcid":"https://orcid.org/0000-0001-9022-4259"},"institutions":[{"id":"https://openalex.org/I170201317","display_name":"University of Pittsburgh","ror":"https://ror.org/01an3r305","country_code":"US","type":"education","lineage":["https://openalex.org/I170201317"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Stephen Lee","raw_affiliation_strings":["University of Pittsburgh, Pittsburgh, Pennsylvania, USA"],"raw_orcid":"https://orcid.org/0000-0001-9022-4259","affiliations":[{"raw_affiliation_string":"University of Pittsburgh, Pittsburgh, Pennsylvania, USA","institution_ids":["https://openalex.org/I170201317"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5013859689"],"corresponding_institution_ids":["https://openalex.org/I170201317","https://openalex.org/I4210092318"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.53049236,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"10","issue":"3","first_page":"1","last_page":"25"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9143999814987183,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9143999814987183,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.025499999523162842,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.014999999664723873,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/backdoor","display_name":"Backdoor","score":0.9973999857902527},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6628999710083008},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.621399998664856},{"id":"https://openalex.org/keywords/intrusion","display_name":"Intrusion","score":0.4104999899864197},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.3707999885082245},{"id":"https://openalex.org/keywords/generator","display_name":"Generator (circuit theory)","score":0.37049999833106995}],"concepts":[{"id":"https://openalex.org/C2781045450","wikidata":"https://www.wikidata.org/wiki/Q254569","display_name":"Backdoor","level":2,"score":0.9973999857902527},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7024000287055969},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6628999710083008},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.621399998664856},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5461000204086304},{"id":"https://openalex.org/C158251709","wikidata":"https://www.wikidata.org/wiki/Q354025","display_name":"Intrusion","level":2,"score":0.4104999899864197},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.3707999885082245},{"id":"https://openalex.org/C2780992000","wikidata":"https://www.wikidata.org/wiki/Q17016113","display_name":"Generator (circuit theory)","level":3,"score":0.37049999833106995},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.3693999946117401},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3366999924182892},{"id":"https://openalex.org/C137524506","wikidata":"https://www.wikidata.org/wiki/Q2247688","display_name":"Anomaly-based intrusion detection system","level":3,"score":0.2976999878883362},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.29319998621940613},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.27970001101493835},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.2770000100135803},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.2750000059604645},{"id":"https://openalex.org/C27061796","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion prevention system","level":3,"score":0.26159998774528503},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.25450000166893005},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.2515000104904175}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3805033","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3805033","pdf_url":null,"source":{"id":"https://openalex.org/S2506189754","display_name":"ACM Transactions on Cyber-Physical Systems","issn_l":"2378-962X","issn":["2378-962X","2378-9638"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Cyber-Physical Systems","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1145/3805033","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3805033","pdf_url":null,"source":{"id":"https://openalex.org/S2506189754","display_name":"ACM Transactions on Cyber-Physical Systems","issn_l":"2378-962X","issn":["2378-962X","2378-9638"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Cyber-Physical Systems","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.6251923441886902}],"awards":[{"id":"https://openalex.org/G2364596853","display_name":null,"funder_award_id":"RRID:SCR_022735","funder_id":"https://openalex.org/F4320333934","funder_display_name":"Center for Research Computing, University of Pittsburgh"},{"id":"https://openalex.org/G7988040447","display_name":null,"funder_award_id":"#DECR0000041","funder_id":"https://openalex.org/F4320306084","funder_display_name":"U.S. Department of Energy"}],"funders":[{"id":"https://openalex.org/F4320306084","display_name":"U.S. Department of Energy","ror":"https://ror.org/01bj3aw27"},{"id":"https://openalex.org/F4320332517","display_name":"Mascaro Center for Sustainable Innovation, University of Pittsburgh","ror":"https://ror.org/01an3r305"},{"id":"https://openalex.org/F4320333934","display_name":"Center for Research Computing, University of Pittsburgh","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W2399941526","https://openalex.org/W2799758613","https://openalex.org/W2807363941","https://openalex.org/W2908140179","https://openalex.org/W2934843808","https://openalex.org/W2942091739","https://openalex.org/W2963726920","https://openalex.org/W2973217491","https://openalex.org/W3008482244","https://openalex.org/W3011203842","https://openalex.org/W3155871095","https://openalex.org/W3168924310","https://openalex.org/W3208785972","https://openalex.org/W4214564822","https://openalex.org/W4283753393","https://openalex.org/W4312329299","https://openalex.org/W4385187298","https://openalex.org/W4386076050","https://openalex.org/W4389543229","https://openalex.org/W7133236147"],"related_works":[],"abstract_inverted_index":{"The":[0],"rapid":[1],"expansion":[2],"of":[3,80,90,101,130,152,192],"connected":[4],"devices":[5],"has":[6,55],"made":[7],"them":[8],"prime":[9],"targets":[10],"for":[11,29],"cyberattacks.":[12],"To":[13],"address":[14],"these":[15],"threats,":[16],"deep":[17,58,91],"learning-based,":[18],"data-driven":[19],"intrusion":[20],"detection":[21],"systems":[22,94],"(IDS)":[23],"have":[24],"emerged":[25],"as":[26,146,148],"powerful":[27],"tools":[28],"detecting":[30,193],"and":[31,44,77,128],"mitigating":[32],"such":[33],"attacks.":[34],"These":[35],"IDSs":[36],"analyze":[37],"network":[38,81,102,133],"traffic":[39,103,134,169,181],"to":[40,63,73,95,178],"identify":[41],"unusual":[42],"patterns":[43],"anomalies":[45],"that":[46,57,114,137,160],"may":[47],"indicate":[48],"potential":[49],"security":[50],"breaches.":[51],"However,":[52],"prior":[53],"research":[54],"shown":[56],"learning":[59],"models":[60],"are":[61],"vulnerable":[62],"backdoor":[64,96,116,141,201],"attacks,":[65],"where":[66],"attackers":[67,138],"inject":[68],"triggers":[69],"into":[70,167],"the":[71,88,99,153,175,183,190],"model":[72,143,171,177],"manipulate":[74],"its":[75],"behavior":[76],"cause":[78,174],"misclassifications":[79],"traffic.":[82],"In":[83],"this":[84,194],"article,":[85],"we":[86,158,188],"explore":[87],"susceptibility":[89],"learning-based":[92],"IDS":[93],"attacks":[97,117],"in":[98],"context":[100],"analysis.":[104],"We":[105],"introduce":[106,164],"PCAP":[107,119],"-":[108],"Backdoor":[109],",":[110],"a":[111,142,165],"novel":[112],"technique":[113],"facilitates":[115],"on":[118,123],"datasets.":[120],"Our":[121],"experiments":[122],"real-world":[124],"Cyber-Physical":[125],"Systems":[126],"(CPS)":[127],"Internet":[129],"Things":[131],"(IoT)":[132],"datasets":[135],"demonstrate":[136],"can":[139,163],"effectively":[140],"by":[144],"poisoning":[145],"little":[147],"2%":[149],"or":[150],"less":[151],"entire":[154],"training":[155,172],"dataset.":[156],"Moreover,":[157],"show":[159],"an":[161],"attacker":[162],"trigger":[166,184],"benign":[168],"during":[170],"yet":[173],"backdoored":[176],"misclassify":[179],"malicious":[180],"when":[182,198],"is":[185],"present.":[186],"Finally,":[187],"highlight":[189],"difficulty":[191],"trigger-based":[195],"backdoor,":[196],"even":[197],"using":[199],"existing":[200],"defense":[202],"techniques.":[203]},"counts_by_year":[],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2026-03-28T00:00:00"}