{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,8]],"date-time":"2026-03-08T01:38:18Z","timestamp":1772933898018,"version":"3.50.1"},"reference-count":29,"publisher":"IEEE","license":[{"start":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T00:00:00Z","timestamp":1765152000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T00:00:00Z","timestamp":1765152000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025,12,8]]},"DOI":"10.1109\/bigdata66926.2025.11401769","type":"proceedings-article","created":{"date-parts":[[2026,3,6]],"date-time":"2026-03-06T20:57:57Z","timestamp":1772830677000},"page":"1-10","source":"Crossref","is-referenced-by-count":0,"title":["Steganographic Data Exfiltration for Model Stealing: A Case Study on Energy Critical Infrastructure IEC 61850 Datasets"],"prefix":"10.1109","author":[{"given":"Gustavo","family":"S\u00e1nchez","sequence":"first","affiliation":[{"name":"Karlsruhe Institute of Technology (KIT),KASTEL Security Research Labs (SRL),Eggenstein-Leopoldshafen,Germany"}]},{"given":"Muhammad","family":"Qasim","sequence":"additional","affiliation":[{"name":"Karlsruhe Institute of Technology (KIT),KASTEL Security Research Labs (SRL),Eggenstein-Leopoldshafen,Germany"}]},{"given":"Ghada","family":"Elbez","sequence":"additional","affiliation":[{"name":"Karlsruhe Institute of Technology (KIT),KASTEL Security Research Labs (SRL),Eggenstein-Leopoldshafen,Germany"}]},{"given":"Veit","family":"Hagenmeyer","sequence":"additional","affiliation":[{"name":"Karlsruhe Institute of Technology (KIT),KASTEL Security Research Labs (SRL),Eggenstein-Leopoldshafen,Germany"}]}],"member":"263","reference":[{"key":"ref1","article-title":"Deploying indicators of compromise (iocs) for network defense","author":"Kimberly K.","year":"2021","journal-title":"Cybersecurity Automation and Threat Intelligence Sharing Best Practices, CISA"},{"key":"ref2","volume-title":"Digital Watermarking and Steganography","author":"Cox","year":"2007"},{"key":"ref3","first-page":"147","article-title":"Embedding Covert Channels in IP Packet Headers","volume-title":"Proceedings of the 5th International Workshop on Privacy Enhancing Technologies (PET)","author":"Murdoch","year":"2005"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484758"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/DSN-S60304.2024.00017"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1117\/12.3034843"},{"key":"ref7","volume-title":"Deep Learning","author":"Goodfellow","year":"2018"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9781139192903"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP60621.2024.00038"},{"key":"ref10","article-title":"The Duqu Incident: Steganographic Data Exfiltration Techniques","volume-title":"Technical Report","author":"Security Response","year":"2011"},{"key":"ref11","volume-title":"Regin: Sophisticated State-Sponsored Espionage Platform Use of Steganography","author":"Labs","year":"2014"},{"key":"ref12","article-title":"Turla: The Use of Image-based Steganography in Advanced Espionage Campaigns","volume-title":"Kaspersky Lab APT Research Team","year":"2018"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.5555\/3241094.3241142"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1186\/s42400-023-00171-y"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3052973.3053009"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/TPS-ISA67132.2025.00034"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2807385"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/BigDataSecurity-HPSC-IDS49724.2020.00027"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/CVPR42600.2020.01291"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/WIFS47025.2019.9035101"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-99-8070-3_14"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/SmartGridComm60555.2024.10738043"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-69781-5_9"},{"key":"ref24","article-title":"EPICA_Dataset: Electric power intrusion and cyberattack dataset","volume-title":"smartgridadsc","year":"2025"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/SmartGridComm60555.2024.10738031"},{"key":"ref26","first-page":"3319","article-title":"Axiomatic Attribution for Deep Networks","volume-title":"Proceedings of the 34th International Conference on Machine Learning (ICML)","volume":"70","author":"Sundararajan","year":"2017"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.3321\/j.issn:0529-6579.2007.z1.029"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00073"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/CICN.2013.89"}],"event":{"name":"2025 IEEE International Conference on Big Data (BigData)","location":"Macau, China","start":{"date-parts":[[2025,12,8]]},"end":{"date-parts":[[2025,12,11]]}},"container-title":["2025 IEEE International Conference on Big Data (BigData)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11400704\/11400712\/11401769.pdf?arnumber=11401769","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,3,7]],"date-time":"2026-03-07T06:54:43Z","timestamp":1772866483000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11401769\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,12,8]]},"references-count":29,"URL":"https:\/\/doi.org\/10.1109\/bigdata66926.2025.11401769","relation":{},"subject":[],"published":{"date-parts":[[2025,12,8]]}}}