{"id":"https://openalex.org/W2788455797","doi":"https://doi.org/10.1155/2018/7178164","title":"DDoS-Capable IoT Malwares: Comparative Analysis and Mirai Investigation","display_name":"DDoS-Capable IoT Malwares: Comparative Analysis and Mirai Investigation","publication_year":2018,"publication_date":"2018-01-01","ids":{"openalex":"https://openalex.org/W2788455797","doi":"https://doi.org/10.1155/2018/7178164","mag":"2788455797"},"language":"en","primary_location":{"id":"doi:10.1155/2018/7178164","is_oa":true,"landing_page_url":"https://doi.org/10.1155/2018/7178164","pdf_url":"http://downloads.hindawi.com/journals/scn/2018/7178164.pdf","source":{"id":"https://openalex.org/S120683614","display_name":"Security and Communication Networks","issn_l":"1939-0114","issn":["1939-0114","1939-0122"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319869","host_organization_name":"Hindawi Publishing Corporation","host_organization_lineage":["https://openalex.org/P4310319869"],"host_organization_lineage_names":["Hindawi Publishing Corporation"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Security and Communication Networks","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"http://downloads.hindawi.com/journals/scn/2018/7178164.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049334028","display_name":"Michele De Donno","orcid":"https://orcid.org/0000-0001-9056-9281"},"institutions":[{"id":"https://openalex.org/I96673099","display_name":"Technical University of Denmark","ror":"https://ror.org/04qtj9h94","country_code":"DK","type":"education","lineage":["https://openalex.org/I96673099"]}],"countries":["DK"],"is_corresponding":false,"raw_author_name":"Michele De Donno","raw_affiliation_strings":["DTU Compute, Technical University of Denmark, Kongens Lyngby, Denmark"],"raw_orcid":"https://orcid.org/0000-0001-9056-9281","affiliations":[{"raw_affiliation_string":"DTU Compute, Technical University of Denmark, Kongens Lyngby, Denmark","institution_ids":["https://openalex.org/I96673099"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006444565","display_name":"Nicola Dragoni","orcid":"https://orcid.org/0000-0001-9575-2990"},"institutions":[{"id":"https://openalex.org/I26437253","display_name":"\u00d6rebro University","ror":"https://ror.org/05kytsw45","country_code":"SE","type":"education","lineage":["https://openalex.org/I26437253"]},{"id":"https://openalex.org/I96673099","display_name":"Technical University of Denmark","ror":"https://ror.org/04qtj9h94","country_code":"DK","type":"education","lineage":["https://openalex.org/I96673099"]}],"countries":["DK","SE"],"is_corresponding":true,"raw_author_name":"Nicola Dragoni","raw_affiliation_strings":["Centre for Applied Autonomous Sensor Systems (AASS), \u00d6rebro University, \u00d6rebro, Sweden","DTU Compute, Technical University of Denmark, Kongens Lyngby, Denmark"],"raw_orcid":"https://orcid.org/0000-0001-9575-2990","affiliations":[{"raw_affiliation_string":"Centre for Applied Autonomous Sensor Systems (AASS), \u00d6rebro University, \u00d6rebro, Sweden","institution_ids":["https://openalex.org/I26437253"]},{"raw_affiliation_string":"DTU Compute, Technical University of Denmark, Kongens Lyngby, Denmark","institution_ids":["https://openalex.org/I96673099"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5004767362","display_name":"Alberto Giaretta","orcid":"https://orcid.org/0000-0001-9293-7711"},"institutions":[{"id":"https://openalex.org/I26437253","display_name":"\u00d6rebro University","ror":"https://ror.org/05kytsw45","country_code":"SE","type":"education","lineage":["https://openalex.org/I26437253"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Alberto Giaretta","raw_affiliation_strings":["Centre for Applied Autonomous Sensor Systems (AASS), \u00d6rebro University, \u00d6rebro, Sweden"],"raw_orcid":"https://orcid.org/0000-0001-9293-7711","affiliations":[{"raw_affiliation_string":"Centre for Applied Autonomous Sensor Systems (AASS), \u00d6rebro University, \u00d6rebro, Sweden","institution_ids":["https://openalex.org/I26437253"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5066856623","display_name":"Angelo Spognardi","orcid":"https://orcid.org/0000-0001-6935-0701"},"institutions":[{"id":"https://openalex.org/I861853513","display_name":"Sapienza University of Rome","ror":"https://ror.org/02be6w209","country_code":"IT","type":"education","lineage":["https://openalex.org/I861853513"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Angelo Spognardi","raw_affiliation_strings":["Computer Science Department, Sapienza University of Rome, Rome, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Computer Science Department, Sapienza University of Rome, Rome, Italy","institution_ids":["https://openalex.org/I861853513"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5006444565"],"corresponding_institution_ids":["https://openalex.org/I26437253","https://openalex.org/I96673099"],"apc_list":{"value":2100,"currency":"USD","value_usd":2100},"apc_paid":{"value":2100,"currency":"USD","value_usd":2100},"fwci":16.5915,"has_fulltext":true,"cited_by_count":160,"citation_normalized_percentile":{"value":0.99291269,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":"2018","issue":null,"first_page":"1","last_page":"30"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.9345716238021851},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8284903764724731},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.7342215776443481},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.7008252143859863},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6917930841445923},{"id":"https://openalex.org/keywords/popularity","display_name":"Popularity","score":0.5799580812454224},{"id":"https://openalex.org/keywords/flooding","display_name":"Flooding (psychology)","score":0.5489004254341125},{"id":"https://openalex.org/keywords/trinoo","display_name":"Trinoo","score":0.48658978939056396},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4410545825958252},{"id":"https://openalex.org/keywords/application-layer-ddos-attack","display_name":"Application layer DDoS attack","score":0.41966119408607483},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.23149240016937256}],"concepts":[{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.9345716238021851},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8284903764724731},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.7342215776443481},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.7008252143859863},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6917930841445923},{"id":"https://openalex.org/C2780586970","wikidata":"https://www.wikidata.org/wiki/Q1357284","display_name":"Popularity","level":2,"score":0.5799580812454224},{"id":"https://openalex.org/C186594467","wikidata":"https://www.wikidata.org/wiki/Q1429176","display_name":"Flooding (psychology)","level":2,"score":0.5489004254341125},{"id":"https://openalex.org/C43639116","wikidata":"https://www.wikidata.org/wiki/Q7843050","display_name":"Trinoo","level":5,"score":0.48658978939056396},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4410545825958252},{"id":"https://openalex.org/C120865594","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Application layer DDoS attack","level":4,"score":0.41966119408607483},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.23149240016937256},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1155/2018/7178164","is_oa":true,"landing_page_url":"https://doi.org/10.1155/2018/7178164","pdf_url":"http://downloads.hindawi.com/journals/scn/2018/7178164.pdf","source":{"id":"https://openalex.org/S120683614","display_name":"Security and Communication Networks","issn_l":"1939-0114","issn":["1939-0114","1939-0122"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319869","host_organization_name":"Hindawi Publishing Corporation","host_organization_lineage":["https://openalex.org/P4310319869"],"host_organization_lineage_names":["Hindawi Publishing Corporation"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Security and Communication Networks","raw_type":"journal-article"},{"id":"pmh:oai:iris.uniroma1.it:11573/1094081","is_oa":true,"landing_page_url":"http://hdl.handle.net/11573/1094081","pdf_url":"http://hdl.handle.net/11573/1094081","source":{"id":"https://openalex.org/S4377196107","display_name":"IRIS Research product catalog (Sapienza University of Rome)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"info:eu-repo/semantics/article"},{"id":"pmh:oai:doaj.org/article:6494f9b927b34cf980055f0487f5cf67","is_oa":false,"landing_page_url":"https://doaj.org/article/6494f9b927b34cf980055f0487f5cf67","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Security and Communication Networks, Vol 2018 (2018)","raw_type":"article"},{"id":"pmh:oai:pure.atira.dk:publications/aa89d918-40d1-4d70-95c8-df777c3a2807","is_oa":true,"landing_page_url":"https://orbit.dtu.dk/en/publications/aa89d918-40d1-4d70-95c8-df777c3a2807","pdf_url":null,"source":{"id":"https://openalex.org/S4306400705","display_name":"Technical University of Denmark, DTU Orbit (Technical University of Denmark, DTU)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I96673099","host_organization_name":"Technical University of Denmark","host_organization_lineage":["https://openalex.org/I96673099"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"De Donno , M , Dragoni , N , Giaretta , A &amp; Spognardi , A 2018 , ' DDoS-Capable IoT Malwares: Comparative Analysis and Mirai Investigation ' , Security and Communication Networks , vol. 2018 , pp. 1-30 . https://doi.org/10.1155/2018/7178164","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1155/2018/7178164","is_oa":true,"landing_page_url":"https://doi.org/10.1155/2018/7178164","pdf_url":"http://downloads.hindawi.com/journals/scn/2018/7178164.pdf","source":{"id":"https://openalex.org/S120683614","display_name":"Security and Communication Networks","issn_l":"1939-0114","issn":["1939-0114","1939-0122"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319869","host_organization_name":"Hindawi Publishing Corporation","host_organization_lineage":["https://openalex.org/P4310319869"],"host_organization_lineage_names":["Hindawi Publishing Corporation"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Security and Communication Networks","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.41999998688697815,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2788455797.pdf","grobid_xml":"https://content.openalex.org/works/W2788455797.grobid-xml"},"referenced_works_count":40,"referenced_works":["https://openalex.org/W112022908","https://openalex.org/W144183181","https://openalex.org/W1570441682","https://openalex.org/W1971673042","https://openalex.org/W2018992824","https://openalex.org/W2022350629","https://openalex.org/W2032885078","https://openalex.org/W2052336620","https://openalex.org/W2059943567","https://openalex.org/W2065462850","https://openalex.org/W2084896955","https://openalex.org/W2097156747","https://openalex.org/W2104692292","https://openalex.org/W2130119598","https://openalex.org/W2137345105","https://openalex.org/W2154337851","https://openalex.org/W2155883880","https://openalex.org/W2158673492","https://openalex.org/W2159160833","https://openalex.org/W2162133150","https://openalex.org/W2162969618","https://openalex.org/W2164686665","https://openalex.org/W2167733259","https://openalex.org/W2212111137","https://openalex.org/W2482930083","https://openalex.org/W2515217738","https://openalex.org/W2548486672","https://openalex.org/W2552174487","https://openalex.org/W2560411358","https://openalex.org/W2586432806","https://openalex.org/W2593800047","https://openalex.org/W2594353089","https://openalex.org/W2729866229","https://openalex.org/W2733765803","https://openalex.org/W2738961882","https://openalex.org/W2760063353","https://openalex.org/W3000116064","https://openalex.org/W3023117642","https://openalex.org/W3099736358","https://openalex.org/W3104526589"],"related_works":["https://openalex.org/W2783466926","https://openalex.org/W4286539397","https://openalex.org/W1968168724","https://openalex.org/W2204131204","https://openalex.org/W2754163055","https://openalex.org/W4322008378","https://openalex.org/W2383770723","https://openalex.org/W2186749541","https://openalex.org/W2360429410","https://openalex.org/W4256682929"],"abstract_inverted_index":{"The":[0],"Internet":[1,27],"of":[2,18,30,32,44,56,71,78,94,112,121,129],"Things":[3],"(IoT)":[4],"revolution":[5],"has":[6],"not":[7],"only":[8],"carried":[9],"the":[10,26,28,91,108,122,126,131],"astonishing":[11],"promise":[12],"to":[13,25,85],"interconnect":[14],"a":[15,76,118],"whole":[16],"generation":[17],"traditionally":[19],"\u201cdumb\u201d":[20],"devices,":[21],"but":[22],"also":[23],"brought":[24],"menace":[29],"billions":[31],"badly":[33],"protected":[34],"and":[35,46,68,125],"easily":[36],"hackable":[37],"objects.":[38],"Not":[39],"surprisingly,":[40],"this":[41,61,82],"sudden":[42],"flooding":[43],"fresh":[45],"insecure":[47],"devices":[48],"fueled":[49],"older":[50],"threats,":[51],"such":[52],"as":[53],"Distributed":[54],"Denial":[55],"Service":[57],"(DDoS)":[58],"attacks.":[59,87],"In":[60],"paper,":[62],"we":[63,89,116],"first":[64],"propose":[65],"an":[66],"updated":[67],"comprehensive":[69],"taxonomy":[70],"DDoS":[72],"attacks,":[73],"together":[74],"with":[75],"number":[77],"examples":[79],"on":[80],"how":[81,101],"classification":[83],"maps":[84],"real-world":[86],"Then,":[88],"outline":[90],"current":[92],"situation":[93],"DDoS-enabled":[95],"malwares":[96],"in":[97,110],"IoT":[98,135],"networks,":[99],"highlighting":[100],"recent":[102],"data":[103],"support":[104],"our":[105],"concerns":[106],"about":[107],"growing":[109],"popularity":[111],"these":[113],"malwares.":[114],"Finally,":[115],"give":[117],"detailed":[119],"analysis":[120],"general":[123],"framework":[124],"operating":[127],"principles":[128],"Mirai,":[130],"most":[132],"disruptive":[133],"DDoS-capable":[134],"malware":[136],"seen":[137],"so":[138],"far.":[139]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":14},{"year":2024,"cited_by_count":15},{"year":2023,"cited_by_count":17},{"year":2022,"cited_by_count":26},{"year":2021,"cited_by_count":31},{"year":2020,"cited_by_count":20},{"year":2019,"cited_by_count":26},{"year":2018,"cited_by_count":7},{"year":2017,"cited_by_count":1},{"year":2012,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}