{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,4]],"date-time":"2026-06-04T15:20:12Z","timestamp":1780586412588,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":42,"publisher":"ACM","license":[{"start":{"date-parts":[[2005,11,7]],"date-time":"2005-11-07T00:00:00Z","timestamp":1131321600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2005,11,7]]},"DOI":"10.1145\/1102120.1102150","type":"proceedings-article","created":{"date-parts":[[2006,2,6]],"date-time":"2006-02-06T15:52:40Z","timestamp":1139241160000},"page":"213-222","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":77,"title":["Fast and automated generation of attack signatures"],"prefix":"10.1145","author":[{"given":"Zhenkai","family":"Liang","sequence":"first","affiliation":[{"name":"Stony Brook University, Stony Brook, NY"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"R.","family":"Sekar","sequence":"additional","affiliation":[{"name":"Stony Brook University, Stony Brook, NY"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2005,11,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"The PaX team. http:\/\/pax.grsecurity.net.  The PaX team. http:\/\/pax.grsecurity.net."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.5555\/1267724.1267745"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948147"},{"key":"e_1_3_2_1_4_1","volume-title":"USENIX Security","author":"Bhatkar S.","year":"2003"},{"key":"e_1_3_2_1_5_1","volume-title":"USENIX Security","author":"Bhatkar S.","year":"2005"},{"key":"e_1_3_2_1_6_1","volume-title":"USENIX Security","author":"Chen S.","year":"2005"},{"key":"e_1_3_2_1_7_1","volume-title":"ICDCS","author":"Chiueh T.","year":"2001"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1016\/B978-1-55860-377-6.50023-2"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1095810.1095824"},{"key":"e_1_3_2_1_10_1","volume-title":"USENIX Security","author":"Cowan C.","year":"1998"},{"key":"e_1_3_2_1_11_1","unstructured":"H. Etoh and K. Yoda. Protecting from stack-smashing attacks. http:\/\/www.trl.ibm.com\/projects\/security\/ssp\/main.html 2000.  H. Etoh and K. Yoda. Protecting from stack-smashing attacks. http:\/\/www.trl.ibm.com\/projects\/security\/ssp\/main.html 2000."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2004.14"},{"key":"e_1_3_2_1_13_1","volume-title":"USENIX Annual Technical Conference","author":"Jim T.","year":"2002"},{"key":"e_1_3_2_1_14_1","volume-title":"Intl. Workshop on Automated Debugging","author":"Jones R.","year":"1997"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948146"},{"key":"e_1_3_2_1_16_1","volume-title":"USENIX Security","author":"Kim H.","year":"2004"},{"key":"e_1_3_2_1_17_1","volume-title":"HotNets-II","author":"Kreibich C.","year":"2003"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2005.12"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/11663812_5"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/503272.503286"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2005.15"},{"key":"e_1_3_2_1_22_1","volume-title":"NDSS","author":"Newsome J.","year":"2005"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/NOMS.2004.1317662"},{"key":"e_1_3_2_1_24_1","volume-title":"International Workshop on Automated and Algorithmic Debugging","author":"Patil H.","year":"1995"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.5555\/820756.821786"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2004.2"},{"key":"e_1_3_2_1_27_1","volume-title":"NDSS","author":"Ruwase O.","year":"2004"},{"key":"e_1_3_2_1_28_1","unstructured":"R. Sekar M. Bendre P. Bollineni and D. Dhurjati. A fast automaton-based method for detecting anomalous program behaviors. In IEEE S&P 2001.   R. Sekar M. Bendre P. Bollineni and D. Dhurjati. A fast automaton-based method for detecting anomalous program behaviors. In IEEE S&P 2001."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1030083.1030124"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.5555\/1106275.1106298"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.5555\/1247360.1247371"},{"key":"e_1_3_2_1_32_1","volume-title":"OSDI","author":"Singh S.","year":"2004"},{"key":"e_1_3_2_1_33_1","volume-title":"NDSS","author":"Smirnov A.","year":"2005"},{"key":"e_1_3_2_1_34_1","unstructured":"Snort. Open source network intrusion detection system. http:\/\/www.snort.org.  Snort. Open source network intrusion detection system. http:\/\/www.snort.org."},{"key":"e_1_3_2_1_35_1","volume-title":"USENIX Security","author":"Sovarel A.","year":"2005"},{"key":"e_1_3_2_1_36_1","volume-title":"INFOCOM","author":"Tang Y.","year":"2005"},{"key":"e_1_3_2_1_37_1","volume-title":"RAID","author":"Toth T.","year":"2002"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/1015467.1015489"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-30143-1_11"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/1102120.1102151"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/1029894.1029913"},{"key":"e_1_3_2_1_42_1","volume-title":"USENIX Security","author":"Yegneswaran V.","year":"2005"}],"event":{"name":"CCS05: 12th ACM Conference on Computer and Communications Security 2005","location":"Alexandria VA USA","acronym":"CCS05","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control","ACM Association for Computing Machinery"]},"container-title":["Proceedings of the 12th ACM conference on Computer and communications security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1102120.1102150","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1102120.1102150","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T16:08:07Z","timestamp":1750262887000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1102120.1102150"}},"subtitle":["a basis for building self-protecting servers"],"short-title":[],"issued":{"date-parts":[[2005,11,7]]},"references-count":42,"alternative-id":["10.1145\/1102120.1102150","10.1145\/1102120"],"URL":"https:\/\/doi.org\/10.1145\/1102120.1102150","relation":{},"subject":[],"published":{"date-parts":[[2005,11,7]]},"assertion":[{"value":"2005-11-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}