{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T09:19:38Z","timestamp":1743067178529,"version":"3.40.3"},"publisher-location":"Cham","reference-count":27,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031649530"},{"type":"electronic","value":"9783031649547"}],"license":[{"start":{"date-parts":[[2024,10,15]],"date-time":"2024-10-15T00:00:00Z","timestamp":1728950400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,10,15]],"date-time":"2024-10-15T00:00:00Z","timestamp":1728950400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-64954-7_4","type":"book-chapter","created":{"date-parts":[[2024,10,14]],"date-time":"2024-10-14T10:02:17Z","timestamp":1728900137000},"page":"60-79","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["MVTBA: A Novel Hybrid Deep Learning Model for\u00a0Encrypted Malicious Traffic Identification"],"prefix":"10.1007","author":[{"given":"Zuwei","family":"Fan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shunliang","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,10,15]]},"reference":[{"key":"4_CR1","unstructured":"Google Transparency Report. https:\/\/transparencyreport.google.com\/https\/overview. Accessed 18 June 2023"},{"key":"4_CR2","unstructured":"Malware Capture Facility Project. https:\/\/www.stratosphereips.org\/datasets-malware. Accessed 18 June 2023"},{"key":"4_CR3","unstructured":"Malware-traffic-analysis.net. https:\/\/malware-traffic-analysis.net. Accessed 18 June 2023"},{"key":"4_CR4","unstructured":"Spoiler: New ThreatLabz Report Reveals Over 85% of Attacks Are Encrypted. ThreatLabz State of Encrypted Attacks 2022 Report. https:\/\/www.zscaler.com\/blogs\/security-research\/2022-encrypted-attacks-report. Accessed 18 June 2023"},{"key":"4_CR5","doi-asserted-by":"crossref","unstructured":"Anderson, B., McGrew, D.: Machine learning for encrypted malware traffic classification: accounting for noisy labels and non-stationarity. In: Proceedings of the 23rd ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, pp. 1723\u20131732 (2017)","DOI":"10.1145\/3097983.3098163"},{"key":"4_CR6","doi-asserted-by":"crossref","unstructured":"Bazuhair, W., Lee, W.: Detecting malign encrypted network traffic using perlin noise and convolutional neural network. In: 2020 10th Annual Computing and Communication Workshop and Conference (CCWC), pp. 0200\u20130206. IEEE (2020)","DOI":"10.1109\/CCWC47524.2020.9031116"},{"issue":"9","key":"4_CR7","doi-asserted-by":"publisher","first-page":"7489","DOI":"10.1007\/s11227-020-03372-1","volume":"76","author":"L Chen","year":"2020","unstructured":"Chen, L., Gao, S., Liu, B., Lu, Z., Jiang, Z.: THS-IDPC: a three-stage hierarchical sampling method based on improved density peaks clustering algorithm for encrypted malicious traffic detection. J. Supercomput. 76(9), 7489\u20137518 (2020)","journal-title":"J. Supercomput."},{"issue":"4","key":"4_CR8","doi-asserted-by":"publisher","first-page":"807","DOI":"10.1109\/TC.2013.13","volume":"63","author":"G Creech","year":"2013","unstructured":"Creech, G., Hu, J.: A semantic approach to host-based intrusion detection systems using contiguous and discontiguous system call patterns. IEEE Trans. Comput. 63(4), 807\u2013819 (2013)","journal-title":"IEEE Trans. Comput."},{"key":"4_CR9","doi-asserted-by":"crossref","unstructured":"Dai, R., Gao, C., Lang, B., Yang, L., Liu, H., Chen, S.: SSL malicious traffic detection based on multi-view features. In: Proceedings of the 2019 the 9th International Conference on Communication and Network Security, pp. 40\u201346 (2019)","DOI":"10.1145\/3371676.3371697"},{"key":"4_CR10","doi-asserted-by":"crossref","unstructured":"Draper-Gil, G., Lashkari, A.H., Mamun, M.S.I., Ghorbani, A.A.: Characterization of encrypted and VPN traffic using time-related. In: Proceedings of the 2nd International Conference on Information Systems Security and Privacy (ICISSP), pp. 407\u2013414 (2016)","DOI":"10.5220\/0005740704070414"},{"key":"4_CR11","doi-asserted-by":"crossref","unstructured":"Fu, C., Li, Q., Xu, K.: Detecting unknown encrypted malicious traffic in real time via flow interaction graph analysis. ArXiv abs\/2301.13686 (2023). https:\/\/api.semanticscholar.org\/CorpusID:256415981","DOI":"10.14722\/ndss.2023.23080"},{"key":"4_CR12","doi-asserted-by":"crossref","unstructured":"Fu, Z., et al.: Encrypted malware traffic detection via graph-based network analysis. In: Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses (2022). https:\/\/api.semanticscholar.org\/CorpusID:252910591","DOI":"10.1145\/3545948.3545983"},{"key":"4_CR13","unstructured":"Gu, Y., Hao, X., Zhang, X.: Multi-granularity representation learning for encrypted malicious traffic detection. Chin. J. Comput. 1\u201312 (2023). https:\/\/kns.cnki.net\/kcms\/detail\/11.1826.tp.20230421.1719.020.html"},{"key":"4_CR14","doi-asserted-by":"publisher","unstructured":"He, H.Y., Yang, Z.G., Chen, X.N.: PERT: payload encoding representation from transformer for encrypted traffic classification. In: 2020 ITU Kaleidoscope: Industry-Driven Digital Transformation (ITU K), pp.\u00a01\u20138 (2020). https:\/\/doi.org\/10.23919\/ITUK50268.2020.9303204","DOI":"10.23919\/ITUK50268.2020.9303204"},{"key":"4_CR15","doi-asserted-by":"crossref","unstructured":"Korczy\u0144ski, M., Duda, A.: Markov chain fingerprinting to classify encrypted traffic. In: IEEE INFOCOM 2014-IEEE Conference on Computer Communications, pp. 781\u2013789. IEEE (2014)","DOI":"10.1109\/INFOCOM.2014.6848005"},{"key":"4_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"326","DOI":"10.1007\/978-3-030-92708-0_21","volume-title":"Network and System Security","author":"R Li","year":"2021","unstructured":"Li, R., Song, Z., Xie, W., Zhang, C., Zhong, G., Pei, X.: HALNet: a hybrid deep learning model for encrypted C &C malware traffic detection. In: Yang, M., Chen, C., Liu, Y. (eds.) NSS 2021. LNCS, vol. 13041, pp. 326\u2013339. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-92708-0_21"},{"key":"4_CR17","doi-asserted-by":"crossref","unstructured":"Lin, X., Xiong, G., Gou, G., Li, Z., Shi, J., Yu, J.: ET-BERT: a contextualized datagram representation with pre-training transformers for encrypted traffic classification. In: Proceedings of the ACM Web Conference 2022, pp. 633\u2013642 (2022)","DOI":"10.1145\/3485447.3512217"},{"key":"4_CR18","doi-asserted-by":"publisher","first-page":"100014","DOI":"10.1109\/ACCESS.2019.2930717","volume":"7","author":"J Liu","year":"2019","unstructured":"Liu, J., Tian, Z., Zheng, R., Liu, L.: A distance-based method for building an encrypted malware traffic identification framework. IEEE Access 7, 100014\u2013100028 (2019)","journal-title":"IEEE Access"},{"key":"4_CR19","unstructured":"Mehta, S., Rastegari, M.: MobileViT: light-weight, general-purpose, and mobile-friendly vision transformer. arXiv preprint arXiv:2110.02178 (2021)"},{"key":"4_CR20","doi-asserted-by":"publisher","first-page":"791","DOI":"10.1109\/COMST.2022.3208196","volume":"25","author":"M Shen","year":"2022","unstructured":"Shen, M., et al.: Machine learning-powered encrypted network traffic analysis: a comprehensive survey. IEEE Commun. Surv. Tutor. 25, 791\u2013824 (2022)","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"4_CR21","doi-asserted-by":"crossref","unstructured":"Van\u00a0Ede, T., et al.: FlowPrint: semi-supervised mobile-app fingerprinting on encrypted network traffic. In: Network and Distributed System Security Symposium (NDSS), vol.\u00a027 (2020)","DOI":"10.14722\/ndss.2020.24412"},{"key":"4_CR22","doi-asserted-by":"publisher","unstructured":"Wang, W., Zhu, M., Wang, J., Zeng, X., Yang, Z.: End-to-end encrypted traffic classification with one-dimensional convolution neural networks. In: 2017 IEEE International Conference on Intelligence and Security Informatics (ISI), pp. 43\u201348 (2017). https:\/\/doi.org\/10.1109\/ISI.2017.8004872","DOI":"10.1109\/ISI.2017.8004872"},{"key":"4_CR23","doi-asserted-by":"crossref","unstructured":"Wang, W., Zhu, M., Zeng, X., Ye, X., Sheng, Y.: Malware traffic classification using convolutional neural network for representation learning. In: 2017 International Conference on Information Networking (ICOIN), pp. 712\u2013717. IEEE (2017)","DOI":"10.1109\/ICOIN.2017.7899588"},{"key":"4_CR24","unstructured":"Yang, F., Xu, J., Xiong, C., Li, Z., Zhang, K.: PROGRAPHER: an anomaly detection system based on provenance graph embedding. In: USENIX Security Symposium (2023). https:\/\/api.semanticscholar.org\/CorpusID:259861739"},{"key":"4_CR25","doi-asserted-by":"crossref","unstructured":"Zhang, H., et al.: TFE-GNN: a temporal fusion encoder using graph neural networks for fine-grained encrypted traffic classification. In: Proceedings of the ACM Web Conference 2023 (2023). https:\/\/api.semanticscholar.org\/CorpusID:258333744","DOI":"10.1145\/3543507.3583227"},{"key":"4_CR26","doi-asserted-by":"publisher","unstructured":"Zhao, H., Zhang, S., Qiao, Z., Huang, X., Zhang, X.: On the performance of deep learning methods for identifying abnormal encrypted proxy traffic. In: 2022 IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp. 1416\u20131423 (2022). https:\/\/doi.org\/10.1109\/TrustCom56396.2022.00200","DOI":"10.1109\/TrustCom56396.2022.00200"},{"key":"4_CR27","doi-asserted-by":"crossref","unstructured":"Zheng, J., Zeng, Z., Feng, T.: GCN-ETA: high-efficiency encrypted malicious traffic detection. Secur. Commun. Netw. 2022 (2022)","DOI":"10.1155\/2022\/4274139"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-64954-7_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,11,29]],"date-time":"2024-11-29T16:10:19Z","timestamp":1732896619000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-64954-7_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,10,15]]},"ISBN":["9783031649530","9783031649547"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-64954-7_4","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2024,10,15]]},"assertion":[{"value":"15 October 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecureComm","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Security and Privacy in Communication Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Hong Kong","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 October 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 October 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"securecomm2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/securecomm.eai-conferences.org\/2023\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Confy +","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"180","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"50","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"28% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}