{"id":"https://openalex.org/W3092506376","doi":"https://doi.org/10.15439/2020f73","title":"An incremental malware detection model for meta-feature API and system call sequence","display_name":"An incremental malware detection model for meta-feature API and system call sequence","publication_year":2020,"publication_date":"2020-09-26","ids":{"openalex":"https://openalex.org/W3092506376","doi":"https://doi.org/10.15439/2020f73","mag":"3092506376"},"language":"en","primary_location":{"id":"doi:10.15439/2020f73","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2020f73","pdf_url":"https://annals-csis.org/proceedings/2020/drp/pdf/73.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://annals-csis.org/proceedings/2020/drp/pdf/73.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5102126034","display_name":"Pushkar Kishore","orcid":null},"institutions":[{"id":"https://openalex.org/I16292982","display_name":"National Institute of Technology Rourkela","ror":"https://ror.org/011gmn932","country_code":"IN","type":"education","lineage":["https://openalex.org/I16292982"]}],"countries":["IN"],"is_corresponding":true,"raw_author_name":"Pushkar Kishore","raw_affiliation_strings":["Dept. of C","NIT Rourkela,Dept. of C.S.E.,Odisha,India"],"affiliations":[{"raw_affiliation_string":"Dept. of C","institution_ids":[]},{"raw_affiliation_string":"NIT Rourkela,Dept. of C.S.E.,Odisha,India","institution_ids":["https://openalex.org/I16292982"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020147267","display_name":"Swadhin Kumar Barisal","orcid":"https://orcid.org/0000-0002-5226-2657"},"institutions":[{"id":"https://openalex.org/I16292982","display_name":"National Institute of Technology Rourkela","ror":"https://ror.org/011gmn932","country_code":"IN","type":"education","lineage":["https://openalex.org/I16292982"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Swadhin Kumar Barisal","raw_affiliation_strings":["NIT Rourkela Odisha, India","NIT Rourkela,Dept. of C.S.E.,Odisha,India"],"affiliations":[{"raw_affiliation_string":"NIT Rourkela Odisha, India","institution_ids":["https://openalex.org/I16292982"]},{"raw_affiliation_string":"NIT Rourkela,Dept. of C.S.E.,Odisha,India","institution_ids":["https://openalex.org/I16292982"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5057535978","display_name":"Durga Prasad Mohapatra","orcid":"https://orcid.org/0000-0002-4824-7091"},"institutions":[{"id":"https://openalex.org/I16292982","display_name":"National Institute of Technology Rourkela","ror":"https://ror.org/011gmn932","country_code":"IN","type":"education","lineage":["https://openalex.org/I16292982"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Durga Prasad Mohapatra","raw_affiliation_strings":["Dept. of C.S.E. NIT Rourkela Odisha, India","NIT Rourkela,Dept. of C.S.E.,Odisha,India"],"affiliations":[{"raw_affiliation_string":"Dept. of C.S.E. NIT Rourkela Odisha, India","institution_ids":["https://openalex.org/I16292982"]},{"raw_affiliation_string":"NIT Rourkela,Dept. of C.S.E.,Odisha,India","institution_ids":["https://openalex.org/I16292982"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5102126034"],"corresponding_institution_ids":["https://openalex.org/I16292982"],"apc_list":null,"apc_paid":null,"fwci":1.1784,"has_fulltext":true,"cited_by_count":8,"citation_normalized_percentile":{"value":0.8095952,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"21","issue":null,"first_page":"629","last_page":"638"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9929999709129333,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.8615015745162964},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7874380350112915},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.7735267877578735},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.5403684973716736},{"id":"https://openalex.org/keywords/sequence","display_name":"Sequence (biology)","score":0.5320084691047668},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4143933057785034},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2826072573661804},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.26031965017318726}],"concepts":[{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.8615015745162964},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7874380350112915},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.7735267877578735},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.5403684973716736},{"id":"https://openalex.org/C2778112365","wikidata":"https://www.wikidata.org/wiki/Q3511065","display_name":"Sequence (biology)","level":2,"score":0.5320084691047668},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4143933057785034},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2826072573661804},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.26031965017318726},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C54355233","wikidata":"https://www.wikidata.org/wiki/Q7162","display_name":"Genetics","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.15439/2020f73","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2020f73","pdf_url":"https://annals-csis.org/proceedings/2020/drp/pdf/73.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},{"id":"pmh:oai:doaj.org/article:11d983c4367b4ce89f1cf6106eeda322","is_oa":true,"landing_page_url":"https://doaj.org/article/11d983c4367b4ce89f1cf6106eeda322","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Annals of computer science and information systems, Vol 21, Pp 629-638 (2020)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.15439/2020f73","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2020f73","pdf_url":"https://annals-csis.org/proceedings/2020/drp/pdf/73.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3092506376.pdf","grobid_xml":"https://content.openalex.org/works/W3092506376.grobid-xml"},"referenced_works_count":32,"referenced_works":["https://openalex.org/W1639956611","https://openalex.org/W1964357740","https://openalex.org/W2016238911","https://openalex.org/W2029530130","https://openalex.org/W2032724464","https://openalex.org/W2033117307","https://openalex.org/W2034994178","https://openalex.org/W2075004139","https://openalex.org/W2126734536","https://openalex.org/W2294407885","https://openalex.org/W2296172486","https://openalex.org/W2346090183","https://openalex.org/W2444442705","https://openalex.org/W2490191290","https://openalex.org/W2538623560","https://openalex.org/W2548296896","https://openalex.org/W2558411713","https://openalex.org/W2559568760","https://openalex.org/W2590683580","https://openalex.org/W2608847424","https://openalex.org/W2610354682","https://openalex.org/W2613221482","https://openalex.org/W2620661538","https://openalex.org/W2627037849","https://openalex.org/W2761574137","https://openalex.org/W2791541601","https://openalex.org/W2802756541","https://openalex.org/W2891545356","https://openalex.org/W2963106521","https://openalex.org/W2995242986","https://openalex.org/W4297747285","https://openalex.org/W6745899033"],"related_works":["https://openalex.org/W2439951656","https://openalex.org/W1998188341","https://openalex.org/W1573526548","https://openalex.org/W4360982091","https://openalex.org/W3176864451","https://openalex.org/W2053632570","https://openalex.org/W2187910102","https://openalex.org/W4389341938","https://openalex.org/W2128507946","https://openalex.org/W4254552916"],"abstract_inverted_index":{"In":[0,42],"this":[1,43],"technical":[2],"world,":[3],"the":[4,61,74,113,126,138,150,153,178,215,232],"detection":[5,50,144,205],"of":[6,17,29,67,76,96,152,207,217],"malware":[7,18,31,49,143,160],"variants":[8,16],"is":[9,146,198,211,227],"getting":[10],"cumbersome":[11],"day":[12],"by":[13,230],"day.":[14],"Newer":[15],"make":[19],"it":[20],"even":[21],"tougher":[22],"to":[23,34,136,148],"detect":[24],"them.":[25],"The":[26,204],"enormous":[27],"amount":[28],"diversified":[30],"enforced":[32],"us":[33],"stumble":[35],"on":[36],"new":[37],"techniques":[38],"like":[39],"machine":[40],"learning.":[41],"work,":[44],"we":[45,80,92],"propose":[46],"an":[47],"incremental":[48,142],"model":[51,145,175,197,210],"for":[52,88,99],"meta-feature":[53],"API":[54,68,90,101,114],"and":[55,70,87,166,186,191,200,220,236],"system":[56,71,78],"call":[57,85,102,115],"sequence.":[58],"We":[59,110,124,158,213],"represent":[60],"host":[62],"behaviour":[63],"using":[64,104,129],"a":[65,94,130,134,169],"sequence":[66,103,116],"calls":[69],"calls.":[72],"For":[73],"creation":[75],"sequential":[77,89],"calls,":[79,91],"use":[81],"NITRSCT":[82],"(NITR":[83],"System":[84],"Tracer)":[86],"generate":[93],"list":[95],"anomaly":[97],"scores":[98],"each":[100],"Numenta":[105],"Hierarchical":[106],"Temporal":[107],"Memory":[108],"(N-HTM).":[109],"have":[111],"converted":[112],"into":[117,162],"six":[118],"meta-features":[119],"that":[120,195],"narrates":[121],"its":[122],"influence.":[123],"do":[125],"feature":[127],"selection":[128],"correlation":[131],"matrix":[132],"with":[133],"heatmap":[135],"select":[137],"best":[139],"meta-features.":[140],"An":[141],"proposed":[147,174,209],"decide":[149],"label":[151],"binary":[154],"executable":[155],"under":[156],"study.":[157],"classify":[159],"samples":[161],"their":[163],"respective":[164],"types":[165],"demonstrated":[167],"via":[168],"case":[170],"study":[171],"that,":[172],"our":[173,196,208],"can":[176],"reduce":[177],"effort":[179],"required":[180],"in":[181],"STS-Tool(Socio-Technical":[182],"Security":[183],"Tool)":[184],"approach":[185],"Abuse":[187],"case.":[188],"Theoretical":[189],"analysis":[190],"real-life":[192],"experiments":[193],"show":[194],"efficient":[199],"achieves":[201],"95.2%":[202],"accuracy.":[203],"speed":[206],"0.03s.":[212],"resolve":[214],"issue":[216],"limited":[218],"precision":[219],"recall":[221],"while":[222],"detecting":[223],"malware.":[224],"User's":[225],"requirement":[226],"also":[228],"met":[229],"fixing":[231],"trade-off":[233],"between":[234],"accuracy":[235],"speed.":[237]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}