{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,22]],"date-time":"2025-10-22T10:49:47Z","timestamp":1761130187695,"version":"3.40.3"},"publisher-location":"Singapore","reference-count":43,"publisher":"Springer Nature Singapore","isbn-type":[{"type":"print","value":"9789819751006"},{"type":"electronic","value":"9789819751013"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-981-97-5101-3_13","type":"book-chapter","created":{"date-parts":[[2024,7,14]],"date-time":"2024-07-14T18:01:46Z","timestamp":1720980106000},"page":"235-255","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["TS-HMD: Explainable Deep Learning for\u00a0Time Series HPCs Based IoT Malware Detection"],"prefix":"10.1007","author":[{"given":"Xiangyi","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jian","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zheng","family":"Meng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,7,15]]},"reference":[{"key":"13_CR1","doi-asserted-by":"publisher","unstructured":"Alasmary, H., Khormali, A., Anwar, A., Park, J., Choi, J., et\u00a0al.: A.A.: Analyzing and detecting emerging internet of things malware: A graph-based approach. IEEE Internet Things J. 6(5), 8977\u20138988 (2019). https:\/\/doi.org\/10.1109\/JIOT.2019.2925929","DOI":"10.1109\/JIOT.2019.2925929"},{"key":"13_CR2","unstructured":"Alrawi, O., Lever, C., Valakuzhy, K., Court, R., Snow, K.Z., Monrose, F., Antonakakis, M.: The circle of life: a large-scale study of the iot malware lifecycle. In: 30th USENIX Security Symposium, pp. 3505\u20133522. Vancouver, B.C., Canada, August 2021"},{"key":"13_CR3","doi-asserted-by":"publisher","first-page":"512","DOI":"10.1109\/TIFS.2019.2924549","volume":"15","author":"K Basu","year":"2020","unstructured":"Basu, K., Krishnamurthy, P., Khorrami, F., Karri, R.: A theoretical study of hardware performance counters-based malware detection. IEEE Trans. Inf. Forensics Secur. 15, 512\u2013525 (2020). https:\/\/doi.org\/10.1109\/TIFS.2019.2924549","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"13_CR4","doi-asserted-by":"publisher","unstructured":"Das, S., Werner, J., Antonakakis, M., Polychronakis, M., Monrose, F.: SoK: the challenges, pitfalls, and perils of using hardware performance counters for security. In: IEEE Symposium on Security and Privacy (SP), pp. 20\u201338. San Francisco, CA, USA (2019). https:\/\/doi.org\/10.1109\/SP.2019.00021","DOI":"10.1109\/SP.2019.00021"},{"key":"13_CR5","doi-asserted-by":"publisher","unstructured":"Dinakarrao, S.M.P., Sayadi, H., Makrani, H.M., Nowzari, C., Rafatirad, S., Homayoun, H.: Lightweight node-level malware detection and network-level malware confinement in iot networks. In: 2019 Design, Automation & Test in Europe Conference & Exhibition (DATE), pp. 776\u2013781 (2019). https:\/\/doi.org\/10.23919\/DATE.2019.8715057,","DOI":"10.23919\/DATE.2019.8715057"},{"key":"13_CR6","unstructured":"Downing, E., Mirsky, Y., Park, K., Lee, W.: Deepreflect: discovering malicious functionality through binary reconstruction. In: 30th USENIX Security Symposium (USENIX Security 21), pp. 3469\u20133486. USENIX Association (2021)"},{"issue":"7","key":"13_CR7","doi-asserted-by":"publisher","first-page":"2066","DOI":"10.1109\/TCAD.2021.3102007","volume":"41","author":"R Elnaggar","year":"2022","unstructured":"Elnaggar, R., Servadei, L., Mathur, S., Wille, R., Ecker, W., Chakrabarty, K.: Accurate and robust malware detection: Running xgboost on runtime data from performance counters. IEEE Trans. Comput. Aided Des. Integr. Circuits Syst. 41(7), 2066\u20132079 (2022). https:\/\/doi.org\/10.1109\/TCAD.2021.3102007","journal-title":"IEEE Trans. Comput. Aided Des. Integr. Circuits Syst."},{"issue":"12","key":"13_CR8","doi-asserted-by":"publisher","first-page":"8477","DOI":"10.1109\/TII.2022.3167672","volume":"18","author":"B Esmaeili","year":"2022","unstructured":"Esmaeili, B., Azmoodeh, A., Dehghantanha, A., Karimipour, H., Zolfaghari, B., Hammoudeh, M.: Iiot deep malware threat hunting: From adversarial example detection to adversarial scenario detection. IEEE Trans. Industr. Inf. 18(12), 8477\u20138486 (2022). https:\/\/doi.org\/10.1109\/TII.2022.3167672","journal-title":"IEEE Trans. Industr. Inf."},{"key":"13_CR9","unstructured":"European Commission: Ethics guidelines for trustworthy ai. https:\/\/ec.europa.eu\/digital-single-market\/en\/news\/ethics-guidelines-trustworthy-ai\/. Accessed 18 May 18 2023"},{"key":"13_CR10","unstructured":"Flashpoint: Mirai botnet linked to dyn dns ddos attacks (2023). https:\/\/www.flashpointintel.com\/. Accessed 18 May 2023"},{"issue":"3","key":"13_CR11","doi-asserted-by":"publisher","first-page":"600","DOI":"10.1109\/TC.2022.3173149","volume":"72","author":"GO Ganfure","year":"2023","unstructured":"Ganfure, G.O., Wu, C.F., Chang, Y.H., Shih, W.K.: Deepware: imaging performance counters with deep learning to detect ransomware. IEEE Trans. Comput. 72(3), 600\u2013613 (2023). https:\/\/doi.org\/10.1109\/TC.2022.3173149","journal-title":"IEEE Trans. Comput."},{"issue":"8","key":"13_CR12","doi-asserted-by":"publisher","first-page":"1735","DOI":"10.1162\/neco.1997.9.8.1735","volume":"9","author":"S Hochreiter","year":"1997","unstructured":"Hochreiter, S., Schmidhuber, J.: Long short-term memory. Neural Comput. 9(8), 1735\u20131780 (1997)","journal-title":"Neural Comput."},{"key":"13_CR13","unstructured":"Intel: Intel 64 and ia-32 architectures software developer\u2019s manual, volume 3b: System programming guide (2016)"},{"issue":"7","key":"13_CR14","doi-asserted-by":"publisher","first-page":"4830","DOI":"10.1109\/TII.2021.3119778","volume":"18","author":"J Jeon","year":"2022","unstructured":"Jeon, J., Jeong, B., Baek, S., Jeong, Y.S.: Hybrid malware detection based on bi-lstm and spp-net for smart iot. IEEE Trans. Industr. Inf. 18(7), 4830\u20134837 (2022). https:\/\/doi.org\/10.1109\/TII.2021.3119778","journal-title":"IEEE Trans. Industr. Inf."},{"issue":"1","key":"13_CR15","doi-asserted-by":"publisher","first-page":"791","DOI":"10.1109\/TVCG.2021.3114793","volume":"28","author":"S Jia","year":"2022","unstructured":"Jia, S., Li, Z., Chen, N., Zhang, J.: Towards visual explainable active learning for zero-shot classification. IEEE Trans. Visual Comput. Graphics 28(1), 791\u2013801 (2022). https:\/\/doi.org\/10.1109\/TVCG.2021.3114793","journal-title":"IEEE Trans. Visual Comput. Graphics"},{"key":"13_CR16","unstructured":"Kaspersky: New iot-malware grew three-fold in h1 2018 (2023). https:\/\/www.kaspersky.com. Accessed 18 May 2023"},{"key":"13_CR17","doi-asserted-by":"publisher","unstructured":"Khasawneh, K.N., Ozsoy, M., Donovick, C., Abu-Ghazaleh, N., Ponomarev, D.: Ensemblehmd: accurate hardware malware detectors with specialized ensemble classifiers. IEEE Trans. Dependable Secure Comput. 17(3), 620\u2013633 (2020). https:\/\/doi.org\/10.1109\/TDSC.2018.2801858","DOI":"10.1109\/TDSC.2018.2801858"},{"issue":"4","key":"13_CR18","doi-asserted-by":"publisher","first-page":"23","DOI":"10.1109\/MDAT.2022.3143438","volume":"39","author":"C Konstantinou","year":"2022","unstructured":"Konstantinou, C., Wang, X., Krishnamurthy, P., Khorrami, F., Maniatakos, M., Karri, R.: Hpc-based malware detectors actually work: transition to practice after a decade of research. IEEE Design Test 39(4), 23\u201332 (2022). https:\/\/doi.org\/10.1109\/MDAT.2022.3143438","journal-title":"IEEE Design Test"},{"key":"13_CR19","doi-asserted-by":"publisher","unstructured":"Kuruvila, A.P., Karmakar, S., Basu, K.: Time series-based malware detection using hardware performance counters. In: 2021 IEEE International Symposium on Hardware Oriented Security and Trust (HOST), pp. 102\u2013112 (2021). https:\/\/doi.org\/10.1109\/HOST49136.2021.9702291","DOI":"10.1109\/HOST49136.2021.9702291"},{"issue":"11","key":"13_CR20","doi-asserted-by":"publisher","first-page":"4952","DOI":"10.1109\/TCAD.2022.3149745","volume":"41","author":"AP Kuruvila","year":"2022","unstructured":"Kuruvila, A.P., Meng, X., Kundu, S., Pandey, G., Basu, K.: Explainable machine learning for intrusion detection via hardware performance counters. IEEE Trans. Comput. Aided Des. Integr. Circuits Syst. 41(11), 4952\u20134964 (2022). https:\/\/doi.org\/10.1109\/TCAD.2022.3149745","journal-title":"IEEE Trans. Comput. Aided Des. Integr. Circuits Syst."},{"issue":"4","key":"13_CR21","doi-asserted-by":"publisher","first-page":"6668","DOI":"10.1109\/JIOT.2019.2909745","volume":"6","author":"T Lei","year":"2019","unstructured":"Lei, T., Qin, Z., Wang, Z., Li, Q., Ye, D.: Evedroid: event-aware android malware detection against model degrading for iot devices. IEEE Internet Things J. 6(4), 6668\u20136680 (2019). https:\/\/doi.org\/10.1109\/JIOT.2019.2909745","journal-title":"IEEE Internet Things J."},{"issue":"23","key":"13_CR22","doi-asserted-by":"publisher","first-page":"16946","DOI":"10.1109\/JIOT.2021.3075694","volume":"8","author":"Q Li","year":"2021","unstructured":"Li, Q., Mi, J., Li, W., Wang, J., Cheng, M.: Cnn-based malware variants detection method for internet of things. IEEE Internet Things J. 8(23), 16946\u201316962 (2021). https:\/\/doi.org\/10.1109\/JIOT.2021.3075694","journal-title":"IEEE Internet Things J."},{"key":"13_CR23","unstructured":"Lundberg, S., Lee, S.I.: A unified approach to interpreting model predictions. In: Proceedings of the 31st International Conference on Neural Information Processing System, pp. 4768\u20134777. Long Beach, California, USA (2017)"},{"key":"13_CR24","unstructured":"LXC: Lxc (2023). https:\/\/linuxcontainers.org\/lxd\/. Accessed 18 May 2023"},{"key":"13_CR25","doi-asserted-by":"publisher","unstructured":"Makhdoom, I., Abolhasan, M., Lipman, J., Liu, R., Ni, W.: Anatomy of threats to the internet of things. IEEE Commun. Surv. Tutorials 21(2), 1636\u20131675 (2019). https:\/\/doi.org\/10.1109\/COMST.2018.2874978","DOI":"10.1109\/COMST.2018.2874978"},{"key":"13_CR26","unstructured":"Melo, A.C.D.: The new linux\u2019perf\u2019tools. Slides from Linux Kongress, vol. 18 (2010)"},{"issue":"11","key":"13_CR27","doi-asserted-by":"publisher","first-page":"8298","DOI":"10.1109\/TII.2022.3152814","volume":"18","author":"TN Nguyen","year":"2022","unstructured":"Nguyen, T.N., Ngo, Q.D., Nguyen, H.T., Nguyen, G.L.: An advanced computing approach for iot-botnet detection in industrial internet of things. IEEE Trans. Industr. Inf. 18(11), 8298\u20138306 (2022). https:\/\/doi.org\/10.1109\/TII.2022.3152814","journal-title":"IEEE Trans. Industr. Inf."},{"key":"13_CR28","doi-asserted-by":"publisher","unstructured":"Nisarg, P., Avesta, S., Houman, H.: Analyzing hardware based malware detectors. In: Proceedings of the 54th Annual Design Automation Conference, pp. 9\u201315 (2017). https:\/\/doi.org\/10.1109\/PESGM.2017.8274502","DOI":"10.1109\/PESGM.2017.8274502"},{"key":"13_CR29","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2022.102809","volume":"120","author":"W Niu","year":"2022","unstructured":"Niu, W., Zhou, J., Zhao, Y., Zhang, X., Peng, Y., Huang, C.: Uncovering apt malware traffic using deep learning combined with time sequence and association analysis. Comput. Secur. 120, 120189 (2022). https:\/\/doi.org\/10.1016\/j.cose.2022.102809","journal-title":"Comput. Secur."},{"key":"13_CR30","unstructured":"Pa, Y.M.P., Suzuki, S., oshioka, K.Y., Matsumoto, T., Kasama, T., Rossow, C.: Iotpot: analysing the rise of iot compromises. In: Proceedings of the 9th USENIX Conference on Offensive Technologies, pp. 9\u201317. Washington, DC, USA, August 2015"},{"issue":"12","key":"13_CR31","doi-asserted-by":"publisher","first-page":"3308","DOI":"10.1109\/TC.2022.3150573","volume":"71","author":"Z Pan","year":"2022","unstructured":"Pan, Z., Sheldon, J., Mishra, P.: Hardware-assisted malware detection and localization using explainable machine learning. IEEE Trans. Comput. 71(12), 3308\u20133321 (2022). https:\/\/doi.org\/10.1109\/TC.2022.3150573","journal-title":"IEEE Trans. Comput."},{"key":"13_CR32","unstructured":"QEMU: Qemu (2023). https:\/\/www.qemu.org\/. Accessed 18 May 2023"},{"key":"13_CR33","unstructured":"Research, J.: Juniper research (2023). https:\/\/www.helpnetsecurity.com\/tag\/juniper-research. Accessed 18 May 2023"},{"key":"13_CR34","unstructured":"Sandbox, L.: Lisa sandbox (2023). https:\/\/github.com\/danieluhricek\/LiSa. Accessed 18 May 2023"},{"key":"13_CR35","doi-asserted-by":"publisher","unstructured":"Sayadi, H., Makrani, H.M., Dinakarrao, S.M.P., Mohsenin, T., Sasan, A., Rafatirad, S., Houman, H.: 2smart: A two-stage machine learning-based approach for run-time specialized hardware-assisted malware detection. In: 2019 Design, Automation & Test in Europe Conference & Exhibition (DATE), pp. 728\u2013733 (2019). https:\/\/doi.org\/10.23919\/DATE.2019.8715080","DOI":"10.23919\/DATE.2019.8715080"},{"key":"13_CR36","doi-asserted-by":"crossref","unstructured":"Sayadi, H., Patel, N., D., S.M.P., Sasan, A., Rafatirad, S., Homayoun, H.: Ensemble learning for effective run-time hardware-based malware detection: a comprehensive analysis and classification. In: 2018 55th ACM\/ESDA\/IEEE Design Automation Conference (DAC), pp.\u00a01\u20136 (2018)","DOI":"10.1109\/DAC.2018.8465828"},{"key":"13_CR37","doi-asserted-by":"publisher","unstructured":"Shukla, S., Dhavlle, A., D, S.M.P., Homayoun, H., Rafatirad, S.: Iron-dome: Securing iot networked systems at runtime by network and device characteristics to confine malware epidemics. In: 2022 IEEE 40th International Conference on Computer Design (ICCD), pp. 259\u2013262 (2022). https:\/\/doi.org\/10.1109\/ICCD56317.2022.00046","DOI":"10.1109\/ICCD56317.2022.00046"},{"key":"13_CR38","unstructured":"Sonicwall: Sonicwall 2022 white-papers (2023). https:\/\/www.sonicwall.com\/resources\/white-papers\/2022-sonicwall-cyber-threat-report. Accessed 18 May 2023"},{"key":"13_CR39","unstructured":"syscall Table, L.: https:\/\/filippo.io\/linux-syscall-table\/. Accessed 18 May 2023"},{"issue":"7","key":"13_CR40","doi-asserted-by":"publisher","first-page":"4337","DOI":"10.1109\/TITS.2020.3042504","volume":"22","author":"K Yu","year":"2021","unstructured":"Yu, K., Lin, L., Alazab, M., Tan, L., Gu, B.: Deep learning-based traffic safety solution for a mixture of autonomous and manual vehicles in a 5g-enabled intelligent transportation system. IEEE Trans. Intell. Transp. Syst. 22(7), 4337\u20134347 (2021). https:\/\/doi.org\/10.1109\/TITS.2020.3042504","journal-title":"IEEE Trans. Intell. Transp. Syst."},{"issue":"2","key":"13_CR41","doi-asserted-by":"publisher","first-page":"111","DOI":"10.1109\/MCE.2020.3035520","volume":"10","author":"K Yu","year":"2021","unstructured":"Yu, K., Tan, L., Shang, X., Huang, J., Srivastava, G., Chatterjee, P.: Efficient and privacy-preserving medical research support platform against covid-19: a blockchain-based approach. IEEE Consumer Electron. Mag. 10(2), 111\u2013120 (2021). https:\/\/doi.org\/10.1109\/MCE.2020.3035520","journal-title":"IEEE Consumer Electron. Mag."},{"key":"13_CR42","doi-asserted-by":"publisher","unstructured":"Yu, M., Halak, B., Zwolinski, M.: Using hardware performance counters to detect control hijacking attacks. In: 2019 IEEE 4th International Verification and Security Workshop (IVSW), pp.\u00a01\u20136 (2019). https:\/\/doi.org\/10.1109\/IVSW.2019.8854399","DOI":"10.1109\/IVSW.2019.8854399"},{"issue":"5","key":"13_CR43","doi-asserted-by":"publisher","first-page":"3770","DOI":"10.1109\/JIOT.2021.3100063","volume":"9","author":"B Yuan","year":"2022","unstructured":"Yuan, B., Wang, J., Wu, P., Qing, X.: Iot malware classification based on lightweight convolutional neural networks. IEEE Internet Things J. 9(5), 3770\u20133783 (2022). https:\/\/doi.org\/10.1109\/JIOT.2021.3100063","journal-title":"IEEE Internet Things J."}],"container-title":["Lecture Notes in Computer Science","Information Security and Privacy"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-97-5101-3_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,7,14]],"date-time":"2024-07-14T18:04:03Z","timestamp":1720980243000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-97-5101-3_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9789819751006","9789819751013"],"references-count":43,"URL":"https:\/\/doi.org\/10.1007\/978-981-97-5101-3_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"15 July 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ACISP","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Australasian Conference on Information Security and Privacy","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Sydney, NSW","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Australia","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15 July 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"17 July 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"acisp2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.acisp24.com\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}