{"id":"https://openalex.org/W2605042394","doi":"https://doi.org/10.3233/978-1-61499-484-8-821","title":"Detecting Malware in Malicious Virtual Machines Using Tensor Analysis Techniques","display_name":"Detecting Malware in Malicious Virtual Machines Using Tensor Analysis Techniques","publication_year":2015,"publication_date":"2015-01-01","ids":{"openalex":"https://openalex.org/W2605042394","doi":"https://doi.org/10.3233/978-1-61499-484-8-821","mag":"2605042394"},"language":"en","primary_location":{"id":"doi:10.3233/978-1-61499-484-8-821","is_oa":false,"landing_page_url":"https://doi.org/10.3233/978-1-61499-484-8-821","pdf_url":null,"source":{"id":"https://openalex.org/S4210201731","display_name":"Frontiers in artificial intelligence and applications","issn_l":"0922-6389","issn":["0922-6389","1879-8314"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Frontiers in Artificial Intelligence and Applications","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5011466439","display_name":"Ting-Yao Chang","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Chang Ting-Yao","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":null,"display_name":"Lai Wei-Yu","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Lai Wei-Yu","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084567996","display_name":"Tien-Ruey Hsiang","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Hsiang Tien-Ruey","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5020533893","display_name":"Ching-Hao Mao","orcid":null},"institutions":[{"id":"https://openalex.org/I154864474","display_name":"National Taiwan University of Science and Technology","ror":"https://ror.org/00q09pe49","country_code":"TW","type":"education","lineage":["https://openalex.org/I154864474"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Mao Ching-Hao","raw_affiliation_strings":["National Taiwan University of Science and Technology, Taipei, Taiwan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"National Taiwan University of Science and Technology, Taipei, Taiwan","institution_ids":["https://openalex.org/I154864474"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.34242094,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"821","last_page":"830"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9872999787330627,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9509999752044678,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8729454278945923},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6973992586135864},{"id":"https://openalex.org/keywords/virtual-machine","display_name":"Virtual machine","score":0.4420020580291748},{"id":"https://openalex.org/keywords/tensor","display_name":"Tensor (intrinsic definition)","score":0.43890780210494995},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4241287410259247},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.258720338344574},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.17386537790298462},{"id":"https://openalex.org/keywords/geometry","display_name":"Geometry","score":0.04787588119506836}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8729454278945923},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6973992586135864},{"id":"https://openalex.org/C25344961","wikidata":"https://www.wikidata.org/wiki/Q192726","display_name":"Virtual machine","level":2,"score":0.4420020580291748},{"id":"https://openalex.org/C155281189","wikidata":"https://www.wikidata.org/wiki/Q3518150","display_name":"Tensor (intrinsic definition)","level":2,"score":0.43890780210494995},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4241287410259247},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.258720338344574},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.17386537790298462},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.04787588119506836}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.3233/978-1-61499-484-8-821","is_oa":false,"landing_page_url":"https://doi.org/10.3233/978-1-61499-484-8-821","pdf_url":null,"source":{"id":"https://openalex.org/S4210201731","display_name":"Frontiers in artificial intelligence and applications","issn_l":"0922-6389","issn":["0922-6389","1879-8314"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Frontiers in Artificial Intelligence and Applications","raw_type":"book-chapter"},{"id":"mag:2605042394","is_oa":false,"landing_page_url":"https://dblp.uni-trier.de/db/conf/intcompsymp/ics2014.html#ChangLHM14","pdf_url":null,"source":{"id":"https://openalex.org/S4306419857","display_name":"International Conference on Supercomputing","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":"International Conference on Supercomputing","raw_type":null}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Decent work and economic growth","score":0.4099999964237213,"id":"https://metadata.un.org/sdg/8"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W1764168690","https://openalex.org/W2537959205","https://openalex.org/W2740895074","https://openalex.org/W2772446090","https://openalex.org/W4284893819"],"abstract_inverted_index":{"Since":[0],"computers":[1],"are":[2,138],"universalized":[3],"in":[4,13,18,112,124],"every":[5,77],"aspect":[6],"of":[7,23,33,45,134,172],"modern":[8],"applications,":[9],"detecting":[10,109],"malware":[11,110,122,173],"embedded":[12],"computer":[14],"systems":[15],"is":[16],"essential":[17],"protecting":[19],"user":[20],"privacy,":[21],"robustness":[22],"services,":[24],"and":[25,66],"data":[26],"integrity.":[27],"With":[28],"the":[29,38,43,63,67,116,126,132,146,163],"rapidly":[30],"growing":[31],"popularity":[32],"cloud":[34,64,68,83],"computing":[35,101],"technologies,":[36],"although":[37],"underlying":[39],"system":[40,79,128,147,155],"virtualization":[41],"enhances":[42],"protection":[44],"service":[46,69,93],"systems,":[47],"it":[48,56],"also":[49],"brings":[50],"new":[51],"security":[52,74],"challenges.":[53],"For":[54],"example,":[55],"can":[57,168],"be":[58],"less":[59],"cost-effective,":[60],"both":[61],"to":[62,71,150],"vendor":[65],"tenants,":[70],"independently":[72],"execute":[73],"services":[75],"within":[76],"virtualized":[78],"based":[80],"on":[81,108],"common":[82],"pricing":[84],"schemes.":[85],"Also,":[86],"malicious":[87],"tenants":[88],"may":[89],"disrupt":[90],"other":[91],"tenants'":[92],"operations":[94],"by":[95,131,140],"means":[96],"such":[97],"as":[98],"exhausting":[99],"shared":[100],"resources.":[102],"In":[103],"this":[104],"paper,":[105],"we":[106],"focus":[107],"running":[111],"virtual":[113,117,136],"machines":[114],"using":[115,177],"machine":[118],"introspection":[119],"framework.":[120],"The":[121],"behaviors,":[123],"particular,":[125],"sequential":[127],"calls":[129],"translated":[130],"hypervisor":[133],"malware-infected":[135],"machines,":[137],"analyzed":[139],"tensor":[141],"factorization":[142],"techniques.":[143],"By":[144],"segmenting":[145],"logs":[148],"according":[149],"execution":[151],"time":[152],"or":[153],"accumulated":[154],"call":[156],"transition":[157],"counts,":[158],"our":[159],"experiments":[160],"shows":[161],"that":[162],"proposed":[164],"tensor-based":[165],"detection":[166],"approach":[167],"detect":[169],"most":[170],"types":[171],"with":[174],"good":[175],"accuracy":[176],"relatively":[178],"short":[179],"log":[180],"segments.":[181]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2017-04-14T00:00:00"}