{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,29]],"date-time":"2024-10-29T12:34:13Z","timestamp":1730205253068,"version":"3.28.0"},"reference-count":55,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018,9]]},"DOI":"10.1109\/ceec.2018.8674214","type":"proceedings-article","created":{"date-parts":[[2019,3,29]],"date-time":"2019-03-29T06:21:25Z","timestamp":1553840485000},"page":"113-118","source":"Crossref","is-referenced-by-count":1,"title":["First Line Defense Against Spreading New Malware in the Network"],"prefix":"10.1109","author":[{"given":"Ban M.","family":"Khammas","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sami","family":"Hasan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Noor","family":"Nateq","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Joseph Stephen","family":"Bassi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ismahani","family":"Ismail","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Muhammad Nadzir","family":"Marsono","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.2001.924286"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1109\/ISI.2008.4565046"},{"key":"ref33","first-page":"2721","article-title":"Learning to detect and classify malicious executables in the wild","volume":"7","author":"kolter","year":"2006","journal-title":"The Journal of Machine Learning Research"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2012.10.002"},{"key":"ref31","doi-asserted-by":"crossref","first-page":"226","DOI":"10.1007\/11856214_12","article-title":"Anagram: A content anomaly detector resistant to mimicry attack","author":"wang","year":"2006","journal-title":"Recent Advances in Intrusion Detection"},{"key":"ref30","first-page":"121","article-title":"Spectrogram: A mixture of markov chains model for anomaly detection in web traffic","author":"song","year":"2009","journal-title":"Proceedings Network and Distributed System Security Symposium 2009"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-39235-1_3"},{"journal-title":"Suricata","year":"0","key":"ref36"},{"journal-title":"Bro","year":"0","key":"ref35"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-009-0122-8"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1007\/11663812_12"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2008.11.011"},{"key":"ref29","doi-asserted-by":"crossref","first-page":"203","DOI":"10.1007\/978-3-540-30143-1_11","article-title":"Anomalous payload-based network intrusion detection","author":"wang","year":"2004","journal-title":"Recent Advances in Intrusion Detection"},{"key":"ref2","first-page":"1","article-title":"Network malware classification comparison using dpi and flow packet headers","author":"boukhtouta","year":"2015","journal-title":"Journal of Computer Virology and Hacking Techniques"},{"journal-title":"Methods and systems to detect an evasion attack","year":"2013","author":"varghese","key":"ref1"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/WAINA.2012.149"},{"key":"ref22","doi-asserted-by":"crossref","first-page":"2326","DOI":"10.1016\/j.eswa.2007.03.011","article-title":"Detecting attack signatures in the real network traffic with annida","volume":"34","author":"de silva","year":"2008","journal-title":"Expert Systems with Applications"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/NOMS.2008.4575234"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-011-0156-6"},{"key":"ref23","doi-asserted-by":"crossref","first-page":"471","DOI":"10.1002\/nem.1913","article-title":"Incorporating known malware signatures to classify new malware variants in network traffic","volume":"25","author":"ismail","year":"2015","journal-title":"International Journal of Network Management"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/IWSCN.2011.6827720"},{"journal-title":"Network Traffic Characterization Using (p n)-grams Packet Representation","year":"2014","author":"hijazi","key":"ref25"},{"journal-title":"Wireshark","year":"0","key":"ref50"},{"journal-title":"Proc IDA","year":"0","key":"ref51"},{"journal-title":"Rapidly-fabricated architectures of parallel multidimension algorithms","year":"2017","author":"hasan","key":"ref55"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1109\/AIC-MITCSA.2016.7759920"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1109\/TPDS.2015.2475267"},{"journal-title":"Fpga implementations for parallel multidimensional filtering algorithms","year":"2013","author":"hasan","key":"ref52"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1016\/j.amc.2013.12.059"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1016\/j.istr.2009.03.003"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/NBiS.2011.104"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.10.014"},{"key":"ref13","doi-asserted-by":"crossref","first-page":"947","DOI":"10.1002\/sec.229","article-title":"Monitoring, analysis, and filtering system for purifying network traffic of known and unknown malicious content","volume":"4","author":"potashnik","year":"2011","journal-title":"Security and Communication Networks"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.4236\/jis.2014.52006"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-08624-8_1"},{"journal-title":"Measuring malware evolution","year":"2015","author":"ponnambalam","key":"ref16"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/IJCNN.2004.1380190"},{"key":"ref18","doi-asserted-by":"crossref","first-page":"468","DOI":"10.1007\/978-3-540-73547-2_48","article-title":"Malicious codes detection based on ensemble learning","author":"zhang","year":"2007","journal-title":"Autonomic and Trusted Computing"},{"journal-title":"Naive bayes classification with domain knowledge for new malware variants and stateless packet level detections","year":"2013","author":"ismail","key":"ref19"},{"journal-title":"Eigenvalue Analysis for Metamorphic Detection","year":"2013","author":"sayali","key":"ref4"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.06.002"},{"key":"ref6","first-page":"1","article-title":"Static analysis for the detection of metamorphic computer viruses using repeatedinstructions counting heuristics","author":"canfora","year":"2013","journal-title":"Journal of Computer Virology and Hacking Techniques"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-008-0105-1"},{"key":"ref8","first-page":"24","article-title":"A method to detect metamorphic computer viruses","volume":"10","author":"mohammed","year":"2003","journal-title":"The IEEE Computer Society's Student Magazine"},{"key":"ref7","doi-asserted-by":"crossref","first-page":"418","DOI":"10.1007\/978-3-642-32759-9_34","article-title":"Efficient malware detection using modelchecking","author":"song","year":"2012","journal-title":"FM 2012 Formal Methods"},{"journal-title":"WEKA","year":"0","key":"ref49"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-70542-0_11"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1186\/2190-8532-1-1"},{"key":"ref45","first-page":"64","article-title":"Fileprints: Identifying file types by n-gram analysis","author":"li","year":"2005","journal-title":"Proceedings from the Sixth Annual IEEE SMC Information Assurance Workshop 2005 IAW’05"},{"key":"ref48","doi-asserted-by":"crossref","first-page":"42","DOI":"10.1007\/978-3-540-74320-0_3","article-title":"Comparing anomaly detection techniques for http","author":"ingham","year":"2007","journal-title":"Recent Advances in Intrusion Detection"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.10.011"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-22786-8_6"},{"key":"ref41","first-page":"41","article-title":"N-grambased detection of new malicious code","volume":"2","author":"abou-assaleh","year":"2004","journal-title":"Proceedings of the 28th Annual International Computer Software and Applications Conference COMPSAC 2004"},{"key":"ref44","doi-asserted-by":"crossref","first-page":"156s","DOI":"10.1016\/j.diin.2015.05.007","article-title":"Automatic classification of object code using machine learning","volume":"14","author":"clemens","year":"2015","journal-title":"Digital Investigation"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.5220\/0001863603170320"}],"event":{"name":"2018 10th Computer Science and Electronic Engineering (CEEC)","start":{"date-parts":[[2018,9,19]]},"location":"Colchester, United Kingdom","end":{"date-parts":[[2018,9,21]]}},"container-title":["2018 10th Computer Science and Electronic Engineering (CEEC)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8672424\/8674179\/08674214.pdf?arnumber=8674214","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,27]],"date-time":"2022-01-27T06:39:30Z","timestamp":1643265570000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8674214\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,9]]},"references-count":55,"URL":"https:\/\/doi.org\/10.1109\/ceec.2018.8674214","relation":{},"subject":[],"published":{"date-parts":[[2018,9]]}}}