{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:38:41Z","timestamp":1750307921687,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":24,"publisher":"ACM","license":[{"start":{"date-parts":[[2007,3,20]],"date-time":"2007-03-20T00:00:00Z","timestamp":1174348800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2007,3,20]]},"DOI":"10.1145\/1229285.1229313","type":"proceedings-article","created":{"date-parts":[[2007,4,5]],"date-time":"2007-04-05T19:41:00Z","timestamp":1175802060000},"page":"194-202","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":24,"title":["A novel approach for a file-system integrity monitor tool of Xen virtual machine"],"prefix":"10.1145","author":[{"given":"Nguyen Anh","family":"Quynh","sequence":"first","affiliation":[{"name":"Keio university, Fujisawa, Japan"}]},{"given":"Yoshiyasu","family":"Takefuji","sequence":"additional","affiliation":[{"name":"Keio university, Fujisawa, Japan"}]}],"member":"320","published-online":{"date-parts":[[2007,3,20]]},"reference":[{"volume-title":"Proceedings of the 2006 Ottawa Linux Symposium","year":"2006","author":"Kamble N. A.","key":"e_1_3_2_1_1_1"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_2_1","DOI":"10.1145\/1134760.1134765"},{"unstructured":"T. Atkins. SWATCH: The Simple WATCHer of Logfiles. http:\/\/swatch.sourceforge.net\/ July 2004.  T. Atkins. SWATCH: The Simple WATCHer of Logfiles. http:\/\/swatch.sourceforge.net\/ July 2004.","key":"e_1_3_2_1_3_1"},{"unstructured":"CERT Coordination Center. CERT\/CC Overview Incident and Vulnerability Trends. Technical report Carnegie Mellon Software Engineering Institute May 2003.  CERT Coordination Center. CERT\/CC Overview Incident and Vulnerability Trends. Technical report Carnegie Mellon Software Engineering Institute May 2003.","key":"e_1_3_2_1_4_1"},{"unstructured":"CMN. SAdoor: A non listening remote shell and execution server. http:\/\/cmn.listprojects.darklab.org\/ 2002.  CMN. SAdoor: A non listening remote shell and execution server. http:\/\/cmn.listprojects.darklab.org\/ 2002.","key":"e_1_3_2_1_5_1"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_6_1","DOI":"10.1145\/945445.945462"},{"unstructured":"DWARF Workgroup. DWARF Debugging Format Standard. http:\/\/dwarf.freestandards.org\/Home.php January 2006.  DWARF Workgroup. DWARF Debugging Format Standard. http:\/\/dwarf.freestandards.org\/Home.php January 2006.","key":"e_1_3_2_1_7_1"},{"unstructured":"R. Hock. Dica rootkit. http:\/\/packetstormsecurity.nl\/UNIX\/penetration\/rootkits\/dica.tgz 2002.  R. Hock. Dica rootkit. http:\/\/packetstormsecurity.nl\/UNIX\/penetration\/rootkits\/dica.tgz 2002.","key":"e_1_3_2_1_8_1"},{"unstructured":"Intersect Alliance. System iNtrusion Analysis and Reporting Environment. http:\/\/www.intersectalliance.com\/projects\/Snare\/ January 2005.  Intersect Alliance. System iNtrusion Analysis and Reporting Environment. http:\/\/www.intersectalliance.com\/projects\/Snare\/ January 2005.","key":"e_1_3_2_1_9_1"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_10_1","DOI":"10.1145\/191177.191183"},{"unstructured":"T. Miller. Analysis of the Knark rootkit. www.ossec.net\/rootkits\/studies\/knark.txt 2001.  T. Miller. Analysis of the Knark rootkit. www.ossec.net\/rootkits\/studies\/knark.txt 2001.","key":"e_1_3_2_1_11_1"},{"unstructured":"T. Miller. Analysis of the T0rn rootkit. http:\/\/www.sans.org\/y2k\/t0rn.htm 2002.  T. Miller. Analysis of the T0rn rootkit. http:\/\/www.sans.org\/y2k\/t0rn.htm 2002.","key":"e_1_3_2_1_12_1"},{"key":"e_1_3_2_1_13_1","first-page":"69","volume-title":"Proceedings of the 18th USENIX Large Installation System Administration Conference (LISA 2004","author":"Patil S.","year":"2004"},{"unstructured":"H. Pomeranz. File Integrity Assessment via SSH. http:\/\/www.samag.com\/documents\/s=9950\/sam0 602a\/0 602a.htm February 2006.  H. Pomeranz. File Integrity Assessment via SSH. http:\/\/www.samag.com\/documents\/s=9950\/sam0 602a\/0 602a.htm February 2006.","key":"e_1_3_2_1_14_1"},{"volume-title":"Proceedings of the 2005 Ottawa Linux Symposium","year":"2005","author":"Pratt I.","key":"e_1_3_2_1_15_1"},{"unstructured":"sd. Linux on-the-fly kernel patching. http:\/\/www.phrack.org\/show.php?p=58&a=7 July 2002.  sd. Linux on-the-fly kernel patching. http:\/\/www.phrack.org\/show.php?p=58&a=7 July 2002.","key":"e_1_3_2_1_16_1"},{"unstructured":"SGI Inc. LKCD - Linux Kernel Crash Dump. http:\/\/lked.sf.net April 2006.  SGI Inc. LKCD - Linux Kernel Crash Dump. http:\/\/lked.sf.net April 2006.","key":"e_1_3_2_1_17_1"},{"unstructured":"L. Somer. Linux Rootkit 5. http:\/\/packetstormsecurity.nl\/UNIX\/penetration\/rootkits\/lrk5.src.tar.gz 2000.  L. Somer. Linux Rootkit 5. http:\/\/packetstormsecurity.nl\/UNIX\/penetration\/rootkits\/lrk5.src.tar.gz 2000.","key":"e_1_3_2_1_18_1"},{"unstructured":"The AIDE team. AIDE: Advanced Intrusion Detection Environment. http:\/\/sourceforge.net\/projects\/aide November 2005.  The AIDE team. AIDE: Advanced Intrusion Detection Environment. http:\/\/sourceforge.net\/projects\/aide November 2005.","key":"e_1_3_2_1_19_1"},{"unstructured":"The Osiris team. Osiris host integrity monitoring. http:\/\/www.hostintegrity.com\/osiris\/ September 2005.  The Osiris team. Osiris host integrity monitoring. http:\/\/www.hostintegrity.com\/osiris\/ September 2005.","key":"e_1_3_2_1_20_1"},{"unstructured":"The Samhain Labs. Samhain manual. http:\/\/la-samhna.de\/samhain\/manual\/index.html 2004.  The Samhain Labs. Samhain manual. http:\/\/la-samhna.de\/samhain\/manual\/index.html 2004.","key":"e_1_3_2_1_21_1"},{"unstructured":"The Samhain Labs. The SAMHAIN file integrity\/intrusion detection system. http:\/\/la-samhna.de\/samhain\/ January 2006.  The Samhain Labs. The SAMHAIN file integrity\/intrusion detection system. http:\/\/la-samhna.de\/samhain\/ January 2006.","key":"e_1_3_2_1_22_1"},{"unstructured":"The Snort team. Snort - the de-facto standard for intrusion detection\/prevention. http:\/\/www.snort.org January 2006.  The Snort team. Snort - the de-facto standard for intrusion detection\/prevention. http:\/\/www.snort.org January 2006.","key":"e_1_3_2_1_23_1"},{"unstructured":"Xen project. Xen interface manual. http:\/\/www.cl.cam.ac.uk\/Research\/SRG\/netos\/xen\/readmes\/interface\/interface.html August 2006.  Xen project. Xen interface manual. http:\/\/www.cl.cam.ac.uk\/Research\/SRG\/netos\/xen\/readmes\/interface\/interface.html August 2006.","key":"e_1_3_2_1_24_1"}],"event":{"sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"acronym":"Asia CCS07","name":"Asia CCS07: Asia CCS'07 ACM Symposium on Information, Computer and Communications Security","location":"Singapore"},"container-title":["Proceedings of the 2nd ACM symposium on Information, computer and communications security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1229285.1229313","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1229285.1229313","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T14:51:36Z","timestamp":1750258296000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1229285.1229313"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007,3,20]]},"references-count":24,"alternative-id":["10.1145\/1229285.1229313","10.1145\/1229285"],"URL":"https:\/\/doi.org\/10.1145\/1229285.1229313","relation":{},"subject":[],"published":{"date-parts":[[2007,3,20]]},"assertion":[{"value":"2007-03-20","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}