{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T09:17:09Z","timestamp":1742980629072,"version":"3.40.3"},"publisher-location":"Cham","reference-count":35,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031529467"},{"type":"electronic","value":"9783031529474"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-52947-4_2","type":"book-chapter","created":{"date-parts":[[2024,1,20]],"date-time":"2024-01-20T09:02:17Z","timestamp":1705741337000},"page":"13-25","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Using Page Offsets for\u00a0Detecting Control-Flow Anomalies"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-8183-2049","authenticated-orcid":false,"given":"Engincan","family":"Varan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7044-3315","authenticated-orcid":false,"given":"Khadija","family":"Hanifi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1890-6023","authenticated-orcid":false,"given":"Aysegul Rana","family":"Erdemli","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0001-6253-6164","authenticated-orcid":false,"given":"Musa","family":"Unal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-4223-4159","authenticated-orcid":false,"given":"Yunus Emre","family":"Tat","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5964-8800","authenticated-orcid":false,"given":"Dilara","family":"Tekinoglu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9670-0295","authenticated-orcid":false,"given":"Orcun","family":"Cetin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4142-1293","authenticated-orcid":false,"given":"Ramin","family":"Fuladi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4124-2295","authenticated-orcid":false,"given":"Cemal","family":"Yilmaz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,1,21]]},"reference":[{"issue":"1","key":"2_CR1","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1609956.1609960","volume":"13","author":"M Abadi","year":"2009","unstructured":"Abadi, M., Budiu, M., Erlingsson, U., Ligatti, J.: Control-flow integrity principles, implementations, and applications. ACM Trans. Inf. Syst. Secur. (TISSEC) 13(1), 1\u201340 (2009)","journal-title":"ACM Trans. Inf. Syst. Secur. (TISSEC)"},{"issue":"5","key":"2_CR2","doi-asserted-by":"publisher","first-page":"1125","DOI":"10.1002\/spe.3181","volume":"53","author":"R Amankwah","year":"2023","unstructured":"Amankwah, R., Chen, J., Song, H., Kudjo, P.K.: Bug detection in Java code: an extensive evaluation of static analysis tools using Juliet test suites. Softw. Pract. Experience 53(5), 1125\u20131143 (2023)","journal-title":"Softw. Pract. Experience"},{"key":"2_CR3","unstructured":"Arp, D., et al.: Dos and don\u2019ts of machine learning in computer security. In: 31st USENIX Security Symposium (USENIX Security 2022), pp. 3971\u20133988 (2022)"},{"issue":"2","key":"2_CR4","first-page":"99","volume":"4","author":"AG Bardas","year":"2010","unstructured":"Bardas, A.G., et al.: Static code analysis. J. Inf. Syst. Oper. Manag. 4(2), 99\u2013107 (2010)","journal-title":"J. Inf. Syst. Oper. Manag."},{"key":"2_CR5","unstructured":"Costan, V., Devadas, S.: Intel SGX explained. Cryptology ePrint Archive (2016)"},{"key":"2_CR6","unstructured":"Cowan, C., et al.: StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks. In: USENIX Security Symposium, San Antonio, TX, vol. 98, pp. 63\u201378 (1998)"},{"key":"2_CR7","unstructured":"De Groef, W., Nikiforakis, N., Younan, Y., Piessens, F.: JITSec: just-in-time security for code injection attacks. In: Benelux Workshop on Information and System Security (WISSEC 2010), Nijmegen, The Netherlands (2010)"},{"key":"2_CR8","unstructured":"Designer, S.: Getting around non-executable stack (and fix) (1997). http:\/\/ouah.bsdjeunz.org\/solarretlibc.html"},{"key":"2_CR9","doi-asserted-by":"crossref","unstructured":"Dessouky, G., et al.: LO-FAT: low-overhead control flow attestation in hardware. In: Proceedings of the 54th Annual Design Automation Conference, pp. 1\u20136 (2017)","DOI":"10.1145\/3061639.3062276"},{"key":"2_CR10","doi-asserted-by":"crossref","unstructured":"G\u00f6ktas, E., Athanasopoulos, E., Bos, H., Portokalidis, G.: Out of control: overcoming control-flow integrity. In: 2014 IEEE Symposium on Security and Privacy, pp. 575\u2013589. IEEE (2014)","DOI":"10.1109\/SP.2014.43"},{"key":"2_CR11","unstructured":"Goodfellow, I., Bengio, Y., Courville, A.: Deep Learning. MIT Press (2016). http:\/\/www.deeplearningbook.org"},{"key":"2_CR12","doi-asserted-by":"crossref","unstructured":"Hanam, Q., Tan, L., Holmes, R., Lam, P.: Finding patterns in static analysis alerts: improving actionable alert ranking. In: Proceedings of the 11th Working Conference on Mining Software Repositories, pp. 152\u2013161 (2014)","DOI":"10.1145\/2597073.2597100"},{"key":"2_CR13","doi-asserted-by":"crossref","unstructured":"Jha, A., Reddy, C.K.: CodeAttack: code-based adversarial attacks for pre-trained programming language models. arXiv preprint arXiv:2206.00052 (2022)","DOI":"10.1609\/aaai.v37i12.26739"},{"key":"2_CR14","doi-asserted-by":"crossref","unstructured":"Kang, H.J., Aw, K.L., Lo, D.: Detecting false alarms from automatic static analysis tools: how far are we? In: Proceedings of the 44th International Conference on Software Engineering, pp. 698\u2013709 (2022)","DOI":"10.1145\/3510003.3510214"},{"key":"2_CR15","unstructured":"Kleen, A., Strong, B.: Intel processor trace on Linux. Tracing Summit 2015 (2015)"},{"key":"2_CR16","doi-asserted-by":"crossref","unstructured":"Lacombe, G., F\u00e9liot, D., Boespflug, E., Potet, M.L.: Combining static analysis and dynamic symbolic execution in a toolchain to detect fault injection vulnerabilities. J. Cryptographic Eng. 1\u201318 (2023)","DOI":"10.1007\/s13389-023-00310-8"},{"key":"2_CR17","doi-asserted-by":"crossref","unstructured":"Lee, B., Lu, L., Wang, T., Kim, T., Lee, W.: From zygote to morula: fortifying weakened ASLR on Android. In: 2014 IEEE Symposium on Security and Privacy, pp. 424\u2013439. IEEE (2014)","DOI":"10.1109\/SP.2014.34"},{"key":"2_CR18","doi-asserted-by":"crossref","unstructured":"Liu, Y., Shi, P., Wang, X., Chen, H., Zang, B., Guan, H.: Transparent and efficient CFI enforcement with intel processor trace. In: 2017 IEEE International Symposium on High Performance Computer Architecture (HPCA), pp. 529\u2013540. IEEE (2017)","DOI":"10.1109\/HPCA.2017.18"},{"key":"2_CR19","unstructured":"Marcelli, A., Graziano, M., Ugarte-Pedrero, X., Fratantonio, Y., Mansouri, M., Balzarotti, D.: How machine learning is solving the binary function similarity problem. In: 31st USENIX Security Symposium (USENIX Security 2022), pp. 2099\u20132116 (2022)"},{"issue":"14","key":"2_CR20","doi-asserted-by":"publisher","first-page":"2928","DOI":"10.3390\/app9142928","volume":"9","author":"H Marco-Gisbert","year":"2019","unstructured":"Marco-Gisbert, H., Ripoll Ripoll, I.: Address space layout randomization next generation. Appl. Sci. 9(14), 2928 (2019)","journal-title":"Appl. Sci."},{"issue":"4","key":"2_CR21","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1145\/3583112","volume":"66","author":"JA Navas","year":"2023","unstructured":"Navas, J.A., Gehani, A.: OCCAM-v2: combining static and dynamic analysis for effective and efficient whole-program specialization. Commun. ACM 66(4), 40\u201347 (2023)","journal-title":"Commun. ACM"},{"issue":"5","key":"2_CR22","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3329786","volume":"52","author":"O Or-Meir","year":"2019","unstructured":"Or-Meir, O., Nissim, N., Elovici, Y., Rokach, L.: Dynamic malware analysis in the modern era-a state of the art survey. ACM Compu. Surv. (CSUR) 52(5), 1\u201348 (2019)","journal-title":"ACM Compu. Surv. (CSUR)"},{"issue":"1","key":"2_CR23","doi-asserted-by":"publisher","first-page":"26","DOI":"10.1109\/TSE.2015.2442577","volume":"42","author":"B Ozcelik","year":"2015","unstructured":"Ozcelik, B., Yilmaz, C.: Seer: a lightweight online failure prediction approach. IEEE Trans. Softw. Eng. 42(1), 26\u201346 (2015)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"2_CR24","doi-asserted-by":"publisher","unstructured":"Ozcelik, B., Yilmaz, C.: Seer: a lightweight online failure prediction approach. In: 2017 IEEE 41st Annual Computer Software and Applications Conference (COMPSAC), vol. 1, pp. 624\u2013625 (2017). https:\/\/doi.org\/10.1109\/COMPSAC.2017.210","DOI":"10.1109\/COMPSAC.2017.210"},{"key":"2_CR25","doi-asserted-by":"crossref","unstructured":"Shen, H., Fang, J., Zhao, J.: EFindBugs: effective error ranking for findbugs. In: 2011 Fourth IEEE International Conference on Software Testing, Verification and Validation, pp. 299\u2013308. IEEE (2011)","DOI":"10.1109\/ICST.2011.51"},{"key":"2_CR26","doi-asserted-by":"crossref","unstructured":"Srinivasan, R., Subalalitha, C.: Sentimental analysis from imbalanced code-mixed data using machine learning approaches. Distrib. Parallel Databases 1\u201316 (2021)","DOI":"10.1007\/s10619-021-07331-4"},{"key":"2_CR27","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2021.108394","volume":"198","author":"D Tian","year":"2021","unstructured":"Tian, D., Ying, Q., Jia, X., Ma, R., Hu, C., Liu, W.: MDCHD: a novel malware detection method in cloud using hardware trace and deep learning. Comput. Netw. 198, 108394 (2021)","journal-title":"Comput. Netw."},{"key":"2_CR28","doi-asserted-by":"crossref","unstructured":"Tzermias, Z., Sykiotakis, G., Polychronakis, M., Markatos, E.P.: Combining static and dynamic analysis for the detection of malicious documents. In: Proceedings of the Fourth European Workshop on System Security, pp. 1\u20136 (2011)","DOI":"10.1145\/1972551.1972555"},{"key":"2_CR29","unstructured":"Wagle, P., Cowan, C., et al.: StackGuard: simple stack smash protection for GCC. In: Proceedings of the GCC Developers Summit, vol. 1 (2003)"},{"key":"2_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"341","DOI":"10.1007\/978-3-030-30215-3_17","volume-title":"Information Security","author":"C Yagemann","year":"2019","unstructured":"Yagemann, C., Sultana, S., Chen, L., Lee, W.: Barnum: detecting document malware via control flow anomalies in hardware traces. In: Lin, Z., Papamanthou, C., Polychronakis, M. (eds.) ISC 2019. LNCS, vol. 11723, pp. 341\u2013359. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-30215-3_17"},{"issue":"1","key":"2_CR31","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1186\/s13635-019-0084-4","volume":"2019","author":"SY Yerima","year":"2019","unstructured":"Yerima, S.Y., Alzaylaee, M.K., Sezer, S.: Machine learning-based dynamic analysis of android apps with improved code coverage. EURASIP J. Inf. Secur. 2019(1), 1\u201324 (2019)","journal-title":"EURASIP J. Inf. Secur."},{"key":"2_CR32","doi-asserted-by":"crossref","unstructured":"Yilmaz, C., Porter, A.: Combining hardware and software instrumentation to classify program executions. In: Proceedings of the Eighteenth ACM SIGSOFT International Symposium on Foundations of Software Engineering, pp. 67\u201376 (2010)","DOI":"10.1145\/1882291.1882304"},{"key":"2_CR33","doi-asserted-by":"crossref","unstructured":"Y\u00fcksel, U., S\u00f6zer, H.: Automated classification of static code analysis alerts: a case study. In: 2013 IEEE International Conference on Software Maintenance, pp. 532\u2013535. IEEE (2013)","DOI":"10.1109\/ICSM.2013.89"},{"key":"2_CR34","doi-asserted-by":"crossref","unstructured":"Zaazaa, O., El Bakkali, H.: Dynamic vulnerability detection approaches and tools: state of the art. In: 2020 Fourth International Conference on Intelligent Computing in Data Sciences (ICDS), pp. 1\u20136. IEEE (2020)","DOI":"10.1109\/ICDS50568.2020.9268686"},{"key":"2_CR35","doi-asserted-by":"crossref","unstructured":"Zhauniarovich, Y., Ahmad, M., Gadyatskaya, O., Crispo, B., Massacci, F.: StaDynA: addressing the problem of dynamic code updates in the security Analysis of android applications. In: Proceedings of the 5th ACM Conference on Data and Application Security and Privacy, pp. 37\u201348 (2015)","DOI":"10.1145\/2699026.2699105"}],"container-title":["Lecture Notes in Computer Science","Innovative Security Solutions for Information Technology and Communications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-52947-4_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,20]],"date-time":"2024-01-20T09:02:48Z","timestamp":1705741368000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-52947-4_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031529467","9783031529474"],"references-count":35,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-52947-4_2","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"21 January 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecITC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Technology and Communications Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bucharest","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Romania","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 November 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 November 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"itc2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/secitc.eu\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"57","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"14","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"25% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2.21","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2.57","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}