{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T13:52:04Z","timestamp":1742997124745,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":23,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540895978"},{"type":"electronic","value":"9783540895985"}],"license":[{"start":{"date-parts":[[2008,1,1]],"date-time":"2008-01-01T00:00:00Z","timestamp":1199145600000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2008]]},"DOI":"10.1007\/978-3-540-89598-5_10","type":"book-chapter","created":{"date-parts":[[2008,11,22]],"date-time":"2008-11-22T03:40:04Z","timestamp":1227325204000},"page":"152-166","source":"Crossref","is-referenced-by-count":0,"title":["Return Value Predictability Profiles for Self\u2013healing"],"prefix":"10.1007","author":[{"given":"Michael E.","family":"Locasto","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Angelos","family":"Stavrou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gabriela F.","family":"Cretu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Angelos D.","family":"Keromytis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Salvatore J.","family":"Stolfo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"10_CR1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-74320-0_1","volume-title":"Proceedings of the International Symposium on Recent Advances in Intrusion Detection (RAID)","author":"D. Mutz","year":"2007","unstructured":"Mutz, D., Robertson, W., Vigna, G., Kemmerer, R.: Exploiting Execution Context for the Detection of Anomalous System Calls. In: Kruegel, C., Lippmann, R., Clark, A. (eds.) RAID 2007. LNCS, vol.\u00a04637, pp. 1\u201320. Springer, Heidelberg (2007)"},{"key":"10_CR2","unstructured":"Chari, S.N., Cheng, P.C.: BlueBoX: A Policy\u2013driven, Host\u2013Based Intrusion Detection System. In: Proceedings of the 9 th Symposium on Network and Distributed Systems Security (NDSS 2002) (2002)"},{"key":"10_CR3","unstructured":"Somayaji, A., Forrest, S.: Automated Response Using System-Call Delays. In: Proceedings of the 9 th USENIX Security Symposium (August 2000)"},{"key":"10_CR4","doi-asserted-by":"crossref","unstructured":"Feng, H.H., Kolesnikov, O., Fogla, P., Lee, W., Gong, W.: Anomaly Detection Using Call Stack Information. In: Proceedings of the 2003 IEEE Symposium on Security and Privacy (May 2003)","DOI":"10.1109\/SECPRI.2003.1199328"},{"key":"10_CR5","doi-asserted-by":"crossref","unstructured":"Gao, D., Reiter, M.K., Song, D.: Gray-Box Extraction of Execution Graphs for Anomaly Detection. In: Proceedings of the ACM Conference on Computer and Communications Security (CCS) (2004)","DOI":"10.1145\/1030083.1030126"},{"key":"10_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"63","DOI":"10.1007\/11663812_4","volume-title":"Recent Advances in Intrusion Detection","author":"D. Gao","year":"2006","unstructured":"Gao, D., Reiter, M.K., Song, D.: Behavioral Distance for Intrusion Detection. In: Valdes, A., Zamboni, D. (eds.) RAID 2005. LNCS, vol.\u00a03858, pp. 63\u201381. Springer, Heidelberg (2006)"},{"key":"10_CR7","doi-asserted-by":"crossref","unstructured":"Wagner, D., Soto, P.: Mimicry Attacks on Host-Based Intrusion Detection Systems. In: Proceedings of the ACM Conference on Computer and Communications Security (CCS) (November 2002)","DOI":"10.1145\/586110.586145"},{"key":"10_CR8","doi-asserted-by":"crossref","unstructured":"Chen, S., Xu, J., Sezer, E.C., Gauriar, P., Iyer, R.K.: Non-Control-Data Attacks Are Realistic Threats. In: Proceedings of the 14 th USENIX Security Symposium, August 2005, pp. 177\u2013191 (2005)","DOI":"10.1016\/S1353-4858(05)00200-X"},{"key":"10_CR9","doi-asserted-by":"crossref","unstructured":"Luk, C.K., Cohn, R., Muth, R., Patil, H., Klauser, A., Lowney, G., Wallace, S., Reddi, V.J., Hazelwood, K.: Pin: Building Customized Program Analysis Tools with Dynamic Instrumentation. In: Proceedings of Programming Language Design and Implementation (PLDI) (June 2005)","DOI":"10.1145\/1065010.1065034"},{"key":"10_CR10","unstructured":"Rinard, M., Cadar, C., Dumitran, D., Roy, D., Leu, T.: Enhancing Server Availability and Security Through Failure-Oblivious Computing. In: Proceedings 6 th Symposium on Operating Systems Design and Implementation (OSDI) (December 2004)"},{"key":"10_CR11","doi-asserted-by":"crossref","unstructured":"Qin, F., Tucek, J., Sundaresan, J., Zhou, Y.: Rx: Treating Bugs as Allergies \u2013 A Safe Method to Survive Software Failures. In: Proceedings of the Symposium on Systems and Operating Systems Principles (SOSP) (2005)","DOI":"10.1145\/1095810.1095833"},{"key":"10_CR12","unstructured":"Sidiroglou, S., Locasto, M.E., Boyd, S.W., Keromytis, A.D.: Building a Reactive Immune System for Software Services. In: Proceedings of the USENIX Annual Technical Conference, April 2005, pp. 149\u2013161 (2005)"},{"key":"10_CR13","unstructured":"Smirnov, A., Chiueh, T.: DIRA: Automatic Detection, Identification, and Repair of Control-Hijacking Attacks. In: Proceedings of the 12 th Symposium on Network and Distributed System Security (NDSS) (February 2005)"},{"key":"10_CR14","doi-asserted-by":"crossref","unstructured":"Brown, A., Patterson, D.A.: Rewind, Repair, Replay: Three R\u2019s to dependability. In: 10 th ACM SIGOPS European Workshop, Saint-Emilion, France (September 2002)","DOI":"10.1145\/1133373.1133387"},{"key":"10_CR15","doi-asserted-by":"crossref","unstructured":"Sidiroglou, S., Laadan, O., Keromytis, A.D., Nieh, J.: Using Rescue Points to Navigate Software Recovery (Short Paper). In: Proceedings of the IEEE Symposium on Security and Privacy (May 2007)","DOI":"10.1109\/SP.2007.38"},{"key":"10_CR16","unstructured":"Provos, N.: Improving Host Security with System Call Policies. In: Proceedings of the 12 th USENIX Security Symposium, August 2003, pp. 207\u2013225 (2003)"},{"key":"10_CR17","doi-asserted-by":"crossref","unstructured":"Lam, L.C., Cker Chiueh, T.: Automatic Extraction of Accurate Application-Specific Sandboxing Policy. In: Proceedings of the 7 th International Symposium on Recent Advances in Intrusion Detection (September 2004)","DOI":"10.1007\/978-3-540-30143-1_1"},{"key":"10_CR18","unstructured":"Locasto, M.E., Stavrou, A., Cretu, G.F., Keromytis, A.D.: From STEM to SEAD: Speculative Execution for Automatic Defense. In: Proceedings of the USENIX Annual Technical Conference, June 2007, pp. 219\u2013232 (2007)"},{"issue":"3","key":"10_CR19","doi-asserted-by":"publisher","first-page":"151","DOI":"10.3233\/JCS-980109","volume":"6","author":"S.A. Hofmeyr","year":"1998","unstructured":"Hofmeyr, S.A., Somayaji, A., Forrest, S.: Intrusion Detection System Using Sequences of System Calls. Journal of Computer Security\u00a06(3), 151\u2013180 (1998)","journal-title":"Journal of Computer Security"},{"key":"10_CR20","unstructured":"Bhatkar, S., Chaturvedi, A., Sekar, R.: Improving Attack Detection in Host-Based IDS by Learning Properties of System Call Arguments. In: Proceedings of the IEEE Symposium on Security and Privacy (2006)"},{"key":"10_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"185","DOI":"10.1007\/11663812_10","volume-title":"Recent Advances in Intrusion Detection","author":"J.T. Giffin","year":"2006","unstructured":"Giffin, J.T., Dagon, D., Jha, S., Lee, W., Miller, B.P.: Environment-Sensitive Intrusion Detection. In: Valdes, A., Zamboni, D. (eds.) RAID 2005. LNCS, vol.\u00a03858, pp. 185\u2013206. Springer, Heidelberg (2006)"},{"issue":"1","key":"10_CR22","doi-asserted-by":"publisher","first-page":"61","DOI":"10.1145\/1127345.1127348","volume":"9","author":"D. Mutz","year":"2006","unstructured":"Mutz, D., Valeur, F., Vigna, G., Kruegel, C.: Anomalous System Call Detection. ACM Transactions on Information and System Security\u00a09(1), 61\u201393 (2006)","journal-title":"ACM Transactions on Information and System Security"},{"key":"10_CR23","doi-asserted-by":"crossref","unstructured":"Eskin, E., Lee, W., Stolfo, S.J.: Modeling System Calls for Intrusion Detection with Dynamic Window Sizes. In: Proceedings of DARPA Information Survivabilty Conference and Exposition II (DISCEX II) (June 2001)","DOI":"10.1109\/DISCEX.2001.932213"}],"container-title":["Lecture Notes in Computer Science","Advances in Information and Computer Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-89598-5_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,15]],"date-time":"2019-05-15T13:30:01Z","timestamp":1557927001000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-89598-5_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2008]]},"ISBN":["9783540895978","9783540895985"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-89598-5_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2008]]}}}