{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T11:22:10Z","timestamp":1778498530293,"version":"3.51.4"},"reference-count":25,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017,10]]},"DOI":"10.1109\/malware.2017.8323956","type":"proceedings-article","created":{"date-parts":[[2018,3,26]],"date-time":"2018-03-26T21:04:19Z","timestamp":1522098259000},"page":"47-54","source":"Crossref","is-referenced-by-count":28,"title":["Behavioral anomaly detection of malware on home routers"],"prefix":"10.1109","author":[{"given":"Ni","family":"An","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alexander","family":"Duff","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gaurav","family":"Naik","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Michalis","family":"Faloutsos","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Steven","family":"Weber","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Spiros","family":"Mancoridis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2013.6698896"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/1127345.1127348"},{"key":"ref12","author":"steven","year":"2008","journal-title":"Ftrace - Function Tracer"},{"key":"ref13","author":"duff","year":"2015","journal-title":"Heimdal"},{"key":"ref14","year":"2017","journal-title":"MAWI working group traffic archive"},{"key":"ref15","year":"0","journal-title":"VirusShare"},{"key":"ref16","author":"gayer","year":"2015","journal-title":"Lax security opens the door for mass-scale abuse of SOHO routers"},{"key":"ref17","year":"2016","journal-title":"Mirai-Source-Code"},{"key":"ref18","article-title":"Hackers create more IoT botnets with mirai source code","author":"kan","year":"2016","journal-title":"ITworld"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1145\/1090191.1080118"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/SURV.2014.022714.00160"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2017.62"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/MALWARE.2015.7413681"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.csda.2008.01.028"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2008.69"},{"key":"ref7","first-page":"1","article-title":"Towards a theory of generalizing system call representation for inexecution malware detection","author":"mehdi","year":"2010","journal-title":"Communications (ICC) 2010 IEEE International Conference"},{"key":"ref2","year":"2016","journal-title":"Iot devices being increasingly used for ddos attacks"},{"key":"ref9","author":"kim","year":"2016","journal-title":"Lstm-based system-call language modeling and robust ensemble method for designing host-based intrusion detection systems"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2013.01.010"},{"key":"ref20","author":"bishop","year":"2006","journal-title":"Pattern Recognition and Machine Learning"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1162\/089976601750264965"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.2013.2278017"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/18.61115"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1996.502675"},{"key":"ref25","author":"hsu","year":"2003","journal-title":"A Practical Guide to Support Vector Classification"}],"event":{"name":"2017 12th International Conference on Malicious and Unwanted Software (MALWARE)","location":"Fajardo","start":{"date-parts":[[2017,10,11]]},"end":{"date-parts":[[2017,10,14]]}},"container-title":["2017 12th International Conference on Malicious and Unwanted Software (MALWARE)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8318523\/8323944\/08323956.pdf?arnumber=8323956","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,26]],"date-time":"2022-01-26T06:48:44Z","timestamp":1643179724000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/8323956\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,10]]},"references-count":25,"URL":"https:\/\/doi.org\/10.1109\/malware.2017.8323956","relation":{},"subject":[],"published":{"date-parts":[[2017,10]]}}}