{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,11]],"date-time":"2026-04-11T18:31:49Z","timestamp":1775932309999,"version":"3.50.1"},"reference-count":15,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"6","license":[{"start":{"date-parts":[[2024,11,1]],"date-time":"2024-11-01T00:00:00Z","timestamp":1730419200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2024,11,1]],"date-time":"2024-11-01T00:00:00Z","timestamp":1730419200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2024,11,1]],"date-time":"2024-11-01T00:00:00Z","timestamp":1730419200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Network"],"published-print":{"date-parts":[[2024,11]]},"DOI":"10.1109\/mnet.2024.3389734","type":"journal-article","created":{"date-parts":[[2024,4,23]],"date-time":"2024-04-23T19:44:43Z","timestamp":1713901483000},"page":"324-333","source":"Crossref","is-referenced-by-count":27,"title":["Combating Advanced Persistent Threats: Challenges and Solutions"],"prefix":"10.1109","volume":"38","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-3810-7076","authenticated-orcid":false,"given":"Yuntao","family":"Wang","sequence":"first","affiliation":[{"name":"School of Cyber Science and Engineering, Xi’an Jiaotong University, Xi’an, China"}]},{"given":"Han","family":"Liu","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Engineering, Xi’an Jiaotong University, Xi’an, China"}]},{"given":"Zhendong","family":"Li","sequence":"additional","affiliation":[{"name":"School of Information and Communication Engineering, Xi’an Jiaotong University, Xi’an, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6518-3130","authenticated-orcid":false,"given":"Zhou","family":"Su","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Engineering, Xi’an Jiaotong University, Xi’an, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9506-3634","authenticated-orcid":false,"given":"Jiliang","family":"Li","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Engineering, Xi’an Jiaotong University, Xi’an, China"}]}],"member":"263","reference":[{"key":"ref1","first-page":"3005","article-title":"ATLAS: A sequence-based learning approach for attack investigation","volume-title":"Proc. USENIX Security","author":"Alsaheel"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00096"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833632"},{"key":"ref4","first-page":"1723","article-title":"Dependence-preserving data compaction for scalable forensic analysis","volume-title":"Proc. USENIX Secur. Symp.","author":"Hossain"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2020.24046"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2020.24167"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2023.24207"},{"key":"ref8","first-page":"487","article-title":"SLEUTH: Real-time attack scenario reconstruction from COTS audit data","volume-title":"Proc. USENIX Secur. Symp.","author":"Hossain"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23349"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3363217"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00026"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/2939672.2939783"},{"key":"ref13","first-page":"2461","article-title":"Back-propagating system dependency impact for attack investigation","volume-title":"Proc. USENIX Security","author":"Fang"},{"key":"ref14","first-page":"1199","article-title":"Evading provenance-based ML detectors with adversarial system actions","volume-title":"Proc. USENIX Security","author":"Mukherjee"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.3724\/SP.J.1016.2011.00055"}],"container-title":["IEEE Network"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/65\/10759075\/10507737.pdf?arnumber=10507737","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,11,27]],"date-time":"2024-11-27T18:55:38Z","timestamp":1732733738000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10507737\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,11]]},"references-count":15,"journal-issue":{"issue":"6"},"URL":"https:\/\/doi.org\/10.1109\/mnet.2024.3389734","relation":{},"ISSN":["0890-8044","1558-156X"],"issn-type":[{"value":"0890-8044","type":"print"},{"value":"1558-156X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,11]]}}}