{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T01:02:44Z","timestamp":1743037364321,"version":"3.40.3"},"publisher-location":"Cham","reference-count":19,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319414829"},{"type":"electronic","value":"9783319414836"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-41483-6_24","type":"book-chapter","created":{"date-parts":[[2016,7,1]],"date-time":"2016-07-01T11:09:11Z","timestamp":1467371351000},"page":"347-363","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Runtime Detection of Zero-Day Vulnerability Exploits in Contemporary Software Systems"],"prefix":"10.1007","author":[{"given":"Olgierd","family":"Pieczul","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Simon N.","family":"Foley","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,7,2]]},"reference":[{"issue":"9","key":"24_CR1","doi-asserted-by":"publisher","first-page":"1128","DOI":"10.1109\/TKDE.2004.47","volume":"16","author":"van der Aalst","year":"2004","unstructured":"van der Aalst, et al.: Workflow mining: Discovering process models from event logs. IEEE Trans. Knowl. Data Eng. 16(9), 1128\u20131142 (2004)","journal-title":"IEEE Trans. Knowl. Data Eng."},{"key":"24_CR2","unstructured":"Ashraf, Z.: Analysis of recent struts vulnerabilities in parameters and cookie interceptors, their impact and exploitation. IBM Security Intelligence portal (2014). Accessed 21 May 2015"},{"issue":"5","key":"24_CR3","doi-asserted-by":"publisher","first-page":"823","DOI":"10.1109\/TKDE.2010.235","volume":"24","author":"V Chandola","year":"2012","unstructured":"Chandola, V., Banerjee, A., Kumar, V.: Anomaly detection for discrete sequences: a survey. IEEE Trans. Knowl. Data Eng. 24(5), 823\u2013839 (2012)","journal-title":"IEEE Trans. Knowl. Data Eng."},{"key":"24_CR4","doi-asserted-by":"publisher","first-page":"807","DOI":"10.1109\/TC.2013.13","volume":"63","author":"G Creech","year":"2014","unstructured":"Creech, G., Hu, J.: A semantic approach to host-based intrusion detection systems using contiguous and discontiguous system call patterns. IEEE Trans. Comp. 63, 807\u2013819 (2014)","journal-title":"IEEE Trans. Comp."},{"issue":"12","key":"24_CR5","doi-asserted-by":"publisher","first-page":"859","DOI":"10.1109\/TSE.2004.91","volume":"30","author":"N Delgado","year":"2004","unstructured":"Delgado, N., Gates, A.Q., Roach, S.: A taxonomy and catalog of runtime software-fault monitoring tools. IEEE Trans. Softw. Eng. 30(12), 859\u2013872 (2004)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"24_CR6","doi-asserted-by":"crossref","unstructured":"Forrest, S., Hofmeyr, S., Somayaji, A.: The evolution of system-call monitoring. In: Proceedings of the Annual Computer Security Applications Conference (2008)","DOI":"10.1109\/ACSAC.2008.54"},{"key":"24_CR7","unstructured":"Forrest, S., Hofmeyr, S.A., Somayaji, A., Longstaff, T.A.: A sense of self for unix processes. In: IEEE Symposium on Security and Privacy (1996)"},{"issue":"9","key":"24_CR8","doi-asserted-by":"publisher","first-page":"886","DOI":"10.1109\/32.241771","volume":"19","author":"P Helman","year":"1993","unstructured":"Helman, P., Liepins, G.E.: Statistical foundations of audit trail analysis for the detection of computer misuse. IEEE Trans. Softw. Eng. 19(9), 886\u2013901 (1993)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"3","key":"24_CR9","doi-asserted-by":"publisher","first-page":"192","DOI":"10.1016\/j.cose.2004.08.006","volume":"24","author":"A Herzog","year":"2005","unstructured":"Herzog, A., Shahmehri, N.: Performance of the java security manager. Comput. Secur. 24(3), 192\u2013207 (2005)","journal-title":"Comput. Secur."},{"key":"24_CR10","doi-asserted-by":"crossref","unstructured":"Hilsdale, E., Hugunin, J.: Advice weaving in AspectJ. In: Proceedings of the 3rd International Conference on Aspect-Oriented Software Development (2004)","DOI":"10.1145\/976270.976276"},{"issue":"2","key":"24_CR11","doi-asserted-by":"publisher","first-page":"10","DOI":"10.1109\/MS.2015.40","volume":"32","author":"GJ Holzmann","year":"2015","unstructured":"Holzmann, G.J.: Code inflation. IEEE Softw. 32(2), 10\u201313 (2015)","journal-title":"IEEE Softw."},{"key":"24_CR12","doi-asserted-by":"publisher","first-page":"381","DOI":"10.1109\/TDSC.2008.69","volume":"7","author":"F Maggi","year":"2010","unstructured":"Maggi, F., Matteucci, M., Zanero, S.: Detecting intrusions through system call sequence and argument analysis. IEEE Trans. Depend. Secur. Comput. 7, 381\u2013395 (2010)","journal-title":"IEEE Trans. Depend. Secur. Comput."},{"key":"24_CR13","doi-asserted-by":"crossref","unstructured":"Oliveira, D., et al.: It\u2019s the psychology stupid: how heuristics explain software vulnerabilities and how priming can illuminate developer\u2019s blind spots. In: Proceedings of the Annual Computer Security Applications Conference (2014)","DOI":"10.1145\/2664243.2664254"},{"issue":"12","key":"24_CR14","doi-asserted-by":"publisher","first-page":"3448","DOI":"10.1016\/j.comnet.2007.02.001","volume":"51","author":"A Patcha","year":"2007","unstructured":"Patcha, A., Park, J.M.: An overview of anomaly detection techniques: existing solutions and latest technological trends. Comput. Netw. 51(12), 3448\u20133470 (2007)","journal-title":"Comput. Netw."},{"key":"24_CR15","doi-asserted-by":"crossref","unstructured":"Pieczul, O., Foley, S.: Discovering emergent norms in security logs. In: 2013 IEEE Conference on Communications and Network Security (SafeConfig) (2013)","DOI":"10.1109\/CNS.2013.6682758"},{"key":"24_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-319-26096-9_1","volume-title":"Security Protocols XXIII","author":"O Pieczul","year":"2015","unstructured":"Pieczul, O., Foley, S.: The dark side of the code. In: Christianson, B., \u0160venda, P., Maty\u00e1\u0161, V., Malcolm, J., Stajano, F., Anderson, J. (eds.) Security Protocols 2015. LNCS, vol. 9379, pp. 1\u201311. Springer, Heidelberg (2015). doi:\n                      10.1007\/978-3-319-26096-9_1"},{"key":"24_CR17","unstructured":"Raman, P.: JaSPIn: JavaScript based Anomaly Detection of Cross-site scripting attacks. Master\u2019s thesis, Carleton University (2008)"},{"key":"24_CR18","first-page":"54","volume-title":"Lecture Notes in Computer Science","author":"Kymie M. C. Tan","year":"2002","unstructured":"Tan, K.M.C., Killourhy, K.S., Maxion, R.A.: Undermining an anomaly-based intrusion detection system using common exploits. In: Proceedings of the 5th International Conference on Recent Advances in Intrusion Detection (2002)"},{"key":"24_CR19","doi-asserted-by":"crossref","unstructured":"Wagner, D., Soto, P.: Mimicry attacks on host-based intrusion detection systems. In: ACM Conference on Computer and Communications Security (2002)","DOI":"10.1145\/586110.586145"}],"container-title":["Lecture Notes in Computer Science","Data and Applications Security and Privacy XXX"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-41483-6_24","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,7,28]],"date-time":"2020-07-28T11:19:52Z","timestamp":1595935192000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-41483-6_24"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319414829","9783319414836"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-41483-6_24","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2016]]},"assertion":[{"value":"2 July 2016","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}