{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,3]],"date-time":"2025-09-03T10:16:41Z","timestamp":1756894601988,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":31,"publisher":"ACM","license":[{"start":{"date-parts":[[2016,3,11]],"date-time":"2016-03-11T00:00:00Z","timestamp":1457654400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"NSF","award":["CNS-1314956"],"award-info":[{"award-number":["CNS-1314956"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2016,3,11]]},"DOI":"10.1145\/2876019.2876023","type":"proceedings-article","created":{"date-parts":[[2016,3,8]],"date-time":"2016-03-08T14:13:39Z","timestamp":1457446419000},"page":"7-12","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":9,"title":["HogMap"],"prefix":"10.1145","author":[{"given":"Xiang","family":"Pan","sequence":"first","affiliation":[{"name":"Northwestern University, Evanston, IL, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vinod","family":"Yegneswaran","sequence":"additional","affiliation":[{"name":"SRI International, Menlo Park, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yan","family":"Chen","sequence":"additional","affiliation":[{"name":"Northwestern University, Evanston, IL, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Phillip","family":"Porras","sequence":"additional","affiliation":[{"name":"SRI International, Menlo Park, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Seungwon","family":"Shin","sequence":"additional","affiliation":[{"name":"KAIST, Daejeon, South Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2016,3,11]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/2390231.2390250"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/2342441.2342443"},{"key":"e_1_3_2_1_3_1","unstructured":"Radware \"Defenseflow sdn based network ddos application dos and apt protection.\" http:\/\/opennetsummit.org\/archives\/mar14\/site\/pdf\/2014\/sdn-idol\/Radware-SDN-Idol-Proposal.pdf.  Radware \"Defenseflow sdn based network ddos application dos and apt protection.\" http:\/\/opennetsummit.org\/archives\/mar14\/site\/pdf\/2014\/sdn-idol\/Radware-SDN-Idol-Proposal.pdf."},{"key":"e_1_3_2_1_4_1","unstructured":"D. Moore C. Shannon G. M.Voelker and S. Savage \"Network telescopes: Technical report \" UCSD Computer Science.  D. Moore C. Shannon G. M.Voelker and S. Savage \"Network telescopes: Technical report \" UCSD Computer Science."},{"key":"e_1_3_2_1_5_1","volume-title":"Using honeynets for internet situational awareness,\" in In Proceedings of the Fourth Workshop on Hot Topics in Networks (HotNets IV","author":"Yegneswaran V.","year":"2005","unstructured":"V. Yegneswaran , P. Barford , and V. Paxson , \" Using honeynets for internet situational awareness,\" in In Proceedings of the Fourth Workshop on Hot Topics in Networks (HotNets IV , 2005 . V. Yegneswaran, P. Barford, and V. Paxson, \"Using honeynets for internet situational awareness,\" in In Proceedings of the Fourth Workshop on Hot Topics in Networks (HotNets IV, 2005."},{"key":"e_1_3_2_1_6_1","first-page":"107","volume-title":"Highly predictive blacklisting.,\" in USENIX Security Symposium","author":"Zhang J.","year":"2008","unstructured":"J. Zhang , P. A. Porras , and J. Ullrich , \" Highly predictive blacklisting.,\" in USENIX Security Symposium , pp. 107 -- 122 , 2008 . J. Zhang, P. A. Porras, and J. Ullrich, \"Highly predictive blacklisting.,\" in USENIX Security Symposium, pp. 107--122, 2008."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.24"},{"key":"e_1_3_2_1_8_1","first-page":"15","volume-title":"Show me the money: Characterizing spam-advertised revenue.,\" in USENIX Security Symposium","author":"Kanich C.","year":"2011","unstructured":"C. Kanich , N. Weaver , D. McCoy , T. Halvorson , C. Kreibich , K. Levchenko , V. Paxson , G. M. Voelker , and S. Savage , \" Show me the money: Characterizing spam-advertised revenue.,\" in USENIX Security Symposium , pp. 15 -- 15 , 2011 . C. Kanich, N. Weaver, D. McCoy, T. Halvorson, C. Kreibich, K. Levchenko,V. Paxson, G. M.Voelker, and S. Savage, \"Show me the money: Characterizing spam-advertised revenue.,\" in USENIX Security Symposium, pp. 15--15, 2011."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2504730.2504747"},{"key":"e_1_3_2_1_10_1","unstructured":"P. Inacio \"Honeymole 2.0.\" https:\/\/www.honeynet.org\/project\/Honeymole.  P. Inacio \"Honeymole 2.0.\" https:\/\/www.honeynet.org\/project\/Honeymole."},{"key":"e_1_3_2_1_11_1","unstructured":"R. Berthier J. Vehent T. Coquelin and T. K. Lengyel \"Honeybrid: Hybrid honeypot framework.\" http:\/\/honeybrid.sourceforge.net\/.  R. Berthier J. Vehent T. Coquelin and T. K. Lengyel \"Honeybrid: Hybrid honeypot framework.\" http:\/\/honeybrid.sourceforge.net\/."},{"key":"e_1_3_2_1_12_1","unstructured":"\"Shadowserver.\" https:\/\/www.shadowserver.org\/wiki\/.  \"Shadowserver.\" https:\/\/www.shadowserver.org\/wiki\/."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/1080829.1080854"},{"key":"e_1_3_2_1_14_1","unstructured":"\"ebay: Electronics cars fashion collectibles coupons and more online shopping.\" http:\/\/www.ebay.com\/.  \"ebay: Electronics cars fashion collectibles coupons and more online shopping.\" http:\/\/www.ebay.com\/."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516684"},{"key":"e_1_3_2_1_16_1","unstructured":"Dionaea \"Dionaea -- catches bugs.\" http:\/\/dionaea.carnivore.it\/.  Dionaea \"Dionaea -- catches bugs.\" http:\/\/dionaea.carnivore.it\/."},{"key":"e_1_3_2_1_17_1","unstructured":"N. Provos \"Developments of the honeyd virtual honeypot.\" http:\/\/www.honeyd.org\/.  N. Provos \"Developments of the honeyd virtual honeypot.\" http:\/\/www.honeyd.org\/."},{"key":"e_1_3_2_1_18_1","first-page":"2","article-title":"Modeling botnet propagation using time zones","volume":"6","author":"Dagon D.","year":"2006","unstructured":"D. Dagon , C. C. Zou , and W. Lee , \" Modeling botnet propagation using time zones .,\" in NDSS , vol. 6 , pp. 2 -- 13 , 2006 . D. Dagon, C. C. Zou, and W. Lee, \"Modeling botnet propagation using time zones.,\" in NDSS, vol. 6, pp. 2--13, 2006.","journal-title":"NDSS"},{"key":"e_1_3_2_1_19_1","unstructured":"\"Open flow switching reference system.\" http:\/\/archive.openflow.org\/wp\/downloads\/.  \"Open flow switching reference system.\" http:\/\/archive.openflow.org\/wp\/downloads\/."},{"key":"e_1_3_2_1_20_1","unstructured":"\"Floodlight rest api.\" http:\/\/www.openflowhub.org\/display\/floodlightcontroller\/Floodlight+REST+API.  \"Floodlight rest api.\" http:\/\/www.openflowhub.org\/display\/floodlightcontroller\/Floodlight+REST+API."},{"key":"e_1_3_2_1_21_1","volume-title":"USENIX NSDI","author":"Fayazbakhsh S. K.","year":"2014","unstructured":"S. K. Fayazbakhsh , L. Chiang , V. Sekar , M. Yu , and J. C. Mogul , \" Enforcing network-wide policies in the presence of dynamic middlebox actions using flowtags,\" in Proc . USENIX NSDI , 2014 . S. K. Fayazbakhsh, L. Chiang, V. Sekar, M. Yu, and J. C. Mogul, \"Enforcing network-wide policies in the presence of dynamic middlebox actions using flowtags,\" in Proc. USENIX NSDI, 2014."},{"key":"e_1_3_2_1_22_1","unstructured":"\"Aws | amazon elastic compute cloud (ec2) -- scalable cloud hosting.\" http:\/\/aws.amazon.com\/ec2\/.  \"Aws | amazon elastic compute cloud (ec2) -- scalable cloud hosting.\" http:\/\/aws.amazon.com\/ec2\/."},{"key":"e_1_3_2_1_23_1","volume-title":"Securing the software-defined network control layer,\" in NDSS","author":"Porras P.","year":"2015","unstructured":"P. Porras , S. Cheung , M. Fong , K. Skinner , and V. Yegneswaran , \" Securing the software-defined network control layer,\" in NDSS , 2015 . P. Porras, S. Cheung, M. Fong, K. Skinner, and V. Yegneswaran, \"Securing the software-defined network control layer,\" in NDSS, 2015."},{"key":"e_1_3_2_1_24_1","unstructured":"\"Pica8: White box sdn.\" http:\/\/www.pica8.com\/.  \"Pica8: White box sdn.\" http:\/\/www.pica8.com\/."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1132026.1132027"},{"key":"e_1_3_2_1_26_1","unstructured":"D. Moore V. Paxson S. Savage C. Shannon S. Stanford and N. Weaver \"The spread of the sapphire\/slammerworm.\" http:\/\/www. caida.org\/publications\/papers\/2003\/sapphire\/sapphire.html.  D. Moore V. Paxson S. Savage C. Shannon S. Stanford and N. Weaver \"The spread of the sapphire\/slammerworm.\" http:\/\/www. caida.org\/publications\/papers\/2003\/sapphire\/sapphire.html."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1028788.1028794"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2068816.2068818"},{"key":"e_1_3_2_1_29_1","volume-title":"The internet motion sensor-a distributed blackhole monitoring system.,\" in NDSS","author":"Bailey M.","year":"2005","unstructured":"M. Bailey , E. Cooke , F. Jahanian , J. Nazario , D. Watson , , \" The internet motion sensor-a distributed blackhole monitoring system.,\" in NDSS , 2005 . M. Bailey, E. Cooke, F. Jahanian, J. Nazario, D.Watson, et al., \"The internet motion sensor-a distributed blackhole monitoring system.,\" in NDSS, 2005."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/2068816.2068854"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/1095809.1095825"}],"event":{"name":"CODASPY'16: Sixth ACM Conference on Data and Application Security and Privacy","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"New Orleans Louisiana USA","acronym":"CODASPY'16"},"container-title":["Proceedings of the 2016 ACM International Workshop on Security in Software Defined Networks &amp; Network Function Virtualization"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2876019.2876023","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2876019.2876023","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:39:19Z","timestamp":1750221559000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2876019.2876023"}},"subtitle":["Using SDNs to Incentivize Collaborative Security Monitoring"],"short-title":[],"issued":{"date-parts":[[2016,3,11]]},"references-count":31,"alternative-id":["10.1145\/2876019.2876023","10.1145\/2876019"],"URL":"https:\/\/doi.org\/10.1145\/2876019.2876023","relation":{},"subject":[],"published":{"date-parts":[[2016,3,11]]},"assertion":[{"value":"2016-03-11","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}