{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,8]],"date-time":"2026-06-08T23:30:05Z","timestamp":1780961405192,"version":"3.54.1"},"publisher-location":"Berlin, Heidelberg","reference-count":15,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540229872","type":"print"},{"value":"9783540301080","type":"electronic"}],"license":[{"start":{"date-parts":[[2004,1,1]],"date-time":"2004-01-01T00:00:00Z","timestamp":1072915200000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2004]]},"DOI":"10.1007\/978-3-540-30108-0_22","type":"book-chapter","created":{"date-parts":[[2010,9,16]],"date-time":"2010-09-16T14:15:03Z","timestamp":1284646503000},"page":"352-368","source":"Crossref","is-referenced-by-count":10,"title":["A Host Intrusion Prevention System for Windows Operating Systems"],"prefix":"10.1007","author":[{"given":"Roberto","family":"Battistoni","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Emanuele","family":"Gabrielli","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Luigi V.","family":"Mancini","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","reference":[{"key":"22_CR1","unstructured":"One, A.: Smashing the stack for fun and profit. Phrack Magazine!\u00a049 (1996)"},{"key":"22_CR2","unstructured":"Borate, Dabak, Phadke: Undocumented Windows NT. M&T Books (1999)"},{"key":"22_CR3","unstructured":"Borate, Dabak, Phadke: Undocumented Windows NT, M&T Books (1999)"},{"key":"22_CR4","unstructured":"Cogswell, Russinovich: Windows NT System-Call Hooking, Dr. Dobb\u2019s Journal, 261 (1997)"},{"key":"22_CR5","unstructured":"Cowan, et al.: Buffer Overflows: attacks and defences for the vulnerability of the decade. In: Proc. IEEE DARPA Information Survivability Conference and Expo, Hilton Head, South Carolina (2000)"},{"key":"22_CR6","unstructured":"Epstein, et al.: Using Operating System Wrappers to Increase the Resiliency of Commercial Firewalls. In: Proc. ACM Annual Computer Security Applications Conference, Louisiana, USA (December 2000)"},{"key":"22_CR7","volume-title":"Writing Secure Code","author":"Howard","year":"2001","unstructured":"Howard, LeBlanc: Writing Secure Code. Microsoft Press, Redmond (2001)"},{"key":"22_CR8","doi-asserted-by":"crossref","unstructured":"Moore, Paxson, Savage, Shannon, Staniford, Weaver: Inside the slammer worm. IEEE Security&Privacy, pp. 33\u201339 (July-August 2003)","DOI":"10.1109\/MSECP.2003.1219056"},{"key":"22_CR9","unstructured":"Microsoft, Well-Known Security Identifiers in Windows 2000, Knowledge Base 243330 (2002), \n                  \n                    http:\/\/support.microsoft.com\/default.aspx?scid=KB;ENUS;Q243330&"},{"key":"22_CR10","unstructured":"Nebbet, Windows NT\/2000: Native API reference, Macmillan Technical Publishing, MTP (2000)"},{"key":"22_CR11","unstructured":"OSR Open System Resources Inc, Nt vs. Zw - Clearing Confusion On The Native API, The NT Insider, Vol 10, Issue 4 (August 2003)"},{"key":"22_CR12","volume-title":"Inside Windows 2000","author":"Russinovich","year":"2001","unstructured":"Russinovich, Solomon: Inside Windows 2000, 3rd edn. Microsoft Press, Redmond (2001)","edition":"3"},{"key":"22_CR13","unstructured":"Russinovich: Inside the Native API, Systems Internals (1998), \n                  \n                    http:\/\/www.sysinternals.com\/ntdll.htm"},{"key":"22_CR14","unstructured":"Schmidt: Microsoft Windows 2000 Security Handbook, Que Publishing (2001)"},{"key":"22_CR15","volume-title":"Undocumented Windows 2000 Secrets","author":"Schreiber","year":"2001","unstructured":"Schreiber: Undocumented Windows 2000 Secrets. Addison Wesley, Reading (2001)"}],"container-title":["Lecture Notes in Computer Science","Computer Security \u2013 ESORICS 2004"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-30108-0_22","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,2]],"date-time":"2019-06-02T20:34:16Z","timestamp":1559507656000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-30108-0_22"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2004]]},"ISBN":["9783540229872","9783540301080"],"references-count":15,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-30108-0_22","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2004]]}}}