{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,24]],"date-time":"2026-02-24T19:22:52Z","timestamp":1771960972623,"version":"3.50.1"},"reference-count":32,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"6","license":[{"start":{"date-parts":[[2019,6,1]],"date-time":"2019-06-01T00:00:00Z","timestamp":1559347200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,6,1]],"date-time":"2019-06-01T00:00:00Z","timestamp":1559347200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2019,6,1]],"date-time":"2019-06-01T00:00:00Z","timestamp":1559347200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans.Inform.Forensic Secur."],"published-print":{"date-parts":[[2019,6]]},"DOI":"10.1109\/tifs.2018.2883177","type":"journal-article","created":{"date-parts":[[2018,11,23]],"date-time":"2018-11-23T19:21:14Z","timestamp":1543000874000},"page":"1638-1653","source":"Crossref","is-referenced-by-count":25,"title":["Vesper: Using Echo Analysis to Detect Man-in-the-Middle Attacks in LANs"],"prefix":"10.1109","volume":"14","author":[{"given":"Yisroel","family":"Mirsky","sequence":"first","affiliation":[]},{"given":"Naor","family":"Kalbo","sequence":"additional","affiliation":[]},{"given":"Yuval","family":"Elovici","sequence":"additional","affiliation":[]},{"given":"Asaf","family":"Shabtai","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref32","first-page":"1","article-title":"Device identification via analog signal fingerprinting: A matched filter approach","author":"gerdes","year":"2006","journal-title":"Proc NDSS"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2005.26"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1016\/j.patrec.2005.10.010"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/SECUREWARE.2007.4385321"},{"key":"ref11","year":"2017","journal-title":"Percentage of Web Pages Loaded by Firefox Using HTTPS"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/iThings\/CPSCom.2011.34"},{"key":"ref13","first-page":"535","article-title":"A messy state of the union: Taming the composite state machines of TLS","author":"beurdouche","year":"2015","journal-title":"Proc IEEE Symp Secur Privacy (SP)"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23418"},{"key":"ref15","year":"2013","journal-title":"How do Threat Actors Move Deeper into Your Network?"},{"key":"ref16","year":"2018","journal-title":"What is Arpdefender Designed For?"},{"key":"ref17","author":"green","year":"2005","journal-title":"DNS spoofing by the man in the middle"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2003.1254311"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2007.05.007"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1016\/0098-1354(92)80051-A"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/GLOCOM.2006.282"},{"key":"ref27","first-page":"1","author":"maes","year":"2013","journal-title":"Introduction and Preview"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/ICCSIT.2010.5563900"},{"key":"ref6","first-page":"466","article-title":"The hitchhiker’s guide to DNS cache poisoning","author":"son","year":"2010","journal-title":"Proc Int Conf Secur Privacy Commun Syst"},{"key":"ref29","author":"demuth","year":"2014","journal-title":"Neural Network Design"},{"key":"ref5","author":"gangan","year":"2015","journal-title":"A review of man-in-the-middle attacks"},{"key":"ref8","year":"2014","journal-title":"Capec-94 Man in the Middle Attack"},{"key":"ref7","author":"stewart","year":"2003","journal-title":"DNS cache poisoning - the next generation"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/LCOMM.2010.02.092108"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2016.2548426"},{"key":"ref1","article-title":"Six ways you could become a victim of man-in-the-middle (MiTM) attacks this holiday season","author":"gregg","year":"2016"},{"key":"ref20","author":"bhaiji","year":"2008","journal-title":"Network Security Technologies and Solutions"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/SAINT.2004.1266117"},{"key":"ref21","first-page":"229","article-title":"Snort—Lightweight intrusion detection for networks","author":"roesch","year":"1999","journal-title":"Proc LISA"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-30441-0"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/TIM.2005.858115"},{"key":"ref26","author":"postel","year":"1981","journal-title":"Internet control message protocol"},{"key":"ref25","first-page":"249","article-title":"Comparison of different impulse response measurement techniques","volume":"50","author":"stan","year":"2002","journal-title":"J Audio Eng Soc"}],"container-title":["IEEE Transactions on Information Forensics and Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10206\/8639028\/08543616.pdf?arnumber=8543616","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,13]],"date-time":"2022-07-13T21:15:47Z","timestamp":1657746947000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8543616\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,6]]},"references-count":32,"journal-issue":{"issue":"6"},"URL":"https:\/\/doi.org\/10.1109\/tifs.2018.2883177","relation":{},"ISSN":["1556-6013","1556-6021"],"issn-type":[{"value":"1556-6013","type":"print"},{"value":"1556-6021","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,6]]}}}