{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,14]],"date-time":"2026-03-14T18:26:59Z","timestamp":1773512819945,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":41,"publisher":"ACM","license":[{"start":{"date-parts":[[2016,10,24]],"date-time":"2016-10-24T00:00:00Z","timestamp":1477267200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2016,10,24]]},"DOI":"10.1145\/2976749.2978378","type":"proceedings-article","created":{"date-parts":[[2016,10,25]],"date-time":"2016-10-25T12:46:35Z","timestamp":1477399595000},"page":"504-516","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":122,"title":["High Fidelity Data Reduction for Big Data Security Dependency Analyses"],"prefix":"10.1145","author":[{"given":"Zhang","family":"Xu","sequence":"first","affiliation":[{"name":"NofutzNetworks Inc., Croton-on-hudson, NJ, USA"}]},{"given":"Zhenyu","family":"Wu","sequence":"additional","affiliation":[{"name":"NEC Labs America, Inc., Princeton, NJ, USA"}]},{"given":"Zhichun","family":"Li","sequence":"additional","affiliation":[{"name":"NEC Laboratories America Inc., Princeton, NJ, USA"}]},{"given":"Kangkook","family":"Jee","sequence":"additional","affiliation":[{"name":"NEC Laboratories America Inc., Princeton, NJ, USA"}]},{"given":"Junghwan","family":"Rhee","sequence":"additional","affiliation":[{"name":"NEC Laboratories America Inc., Princeton, NJ, USA"}]},{"given":"Xusheng","family":"Xiao","sequence":"additional","affiliation":[{"name":"NEC Laboratories America Inc., Princeton, NJ, USA"}]},{"given":"Fengyuan","family":"Xu","sequence":"additional","affiliation":[{"name":"Nanjing University, Nanjing, China"}]},{"given":"Haining","family":"Wang","sequence":"additional","affiliation":[{"name":"University of Delaware, Newark, DE, USA"}]},{"given":"Guofei","family":"Jiang","sequence":"additional","affiliation":[{"name":"NEC Laboratories America Inc., Princeton, NJ, USA"}]}],"member":"320","published-online":{"date-parts":[[2016,10,24]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Anthem cyber attack. http:\/\/abcnews.go.com\/Business\/anthem-cyber-attack-things-happen-personal-information\/story?id=28747729.  Anthem cyber attack. http:\/\/abcnews.go.com\/Business\/anthem-cyber-attack-things-happen-personal-information\/story?id=28747729."},{"key":"e_1_3_2_1_2_1","unstructured":"Case study: The Home Depot data breach. https:\/\/www.sans.org\/reading-room\/whitepapers\/casestudies\/case-study-home-depot-data-breach-36367.  Case study: The Home Depot data breach. https:\/\/www.sans.org\/reading-room\/whitepapers\/casestudies\/case-study-home-depot-data-breach-36367."},{"key":"e_1_3_2_1_3_1","unstructured":"CVE-2004--2687. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2004--2687.  CVE-2004--2687. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2004--2687."},{"key":"e_1_3_2_1_4_1","unstructured":"CVE-2012--1823. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--1823.  CVE-2012--1823. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--1823."},{"key":"e_1_3_2_1_5_1","unstructured":"Cyber kill chain. http:\/\/www.lockheedmartin.com\/us\/what-we-do\/information-technology\/cybersecurity\/tradecraft\/cyber-kill-chain.html.  Cyber kill chain. http:\/\/www.lockheedmartin.com\/us\/what-we-do\/information-technology\/cybersecurity\/tradecraft\/cyber-kill-chain.html."},{"key":"e_1_3_2_1_6_1","unstructured":"Ebay inc. to ask Ebay users to change passwords. http:\/\/blog.ebay.com\/ebay-inc-ask-ebay-users-change-passwords\/.  Ebay inc. to ask Ebay users to change passwords. http:\/\/blog.ebay.com\/ebay-inc-ask-ebay-users-change-passwords\/."},{"key":"e_1_3_2_1_7_1","unstructured":"Etw events in the common language runtime. https:\/\/msdn.microsoft.com\/en-us\/library\/ff357719(v=vs.110).aspx.  Etw events in the common language runtime. https:\/\/msdn.microsoft.com\/en-us\/library\/ff357719(v=vs.110).aspx."},{"key":"e_1_3_2_1_8_1","unstructured":"The Linux audit framework. https:\/\/www.suse.com\/documentation\/sled10\/audit_sp1\/data\/book_sle_audit.html.  The Linux audit framework. https:\/\/www.suse.com\/documentation\/sled10\/audit_sp1\/data\/book_sle_audit.html."},{"key":"e_1_3_2_1_9_1","unstructured":"OPM government data breach impacted 21.5 million. http:\/\/www.cnn.com\/2015\/07\/09\/politics\/office-of-personnel-management-data-breach-20-million\/.  OPM government data breach impacted 21.5 million. http:\/\/www.cnn.com\/2015\/07\/09\/politics\/office-of-personnel-management-data-breach-20-million\/."},{"key":"e_1_3_2_1_10_1","unstructured":"Sony reports 24.5 million more accounts hacked. http:\/\/www.darkreading.com\/attacks-and-breaches\/sony-reports-245-million-more-accounts-hacked\/d\/d-id\/1097499  Sony reports 24.5 million more accounts hacked. http:\/\/www.darkreading.com\/attacks-and-breaches\/sony-reports-245-million-more-accounts-hacked\/d\/d-id\/1097499"},{"key":"e_1_3_2_1_11_1","unstructured":"Stuxnet. https:\/\/en.wikipedia.org\/wiki\/Stuxnet.  Stuxnet. https:\/\/en.wikipedia.org\/wiki\/Stuxnet."},{"key":"e_1_3_2_1_12_1","unstructured":"Target hit by credit-card breach. http:\/\/online.wsj.com\/news\/articles\/SB10001424052702304773104579266743230242538.  Target hit by credit-card breach. http:\/\/online.wsj.com\/news\/articles\/SB10001424052702304773104579266743230242538."},{"key":"e_1_3_2_1_13_1","unstructured":"Transparent computing. http:\/\/www.darpa.mil\/program\/transparent-computing.  Transparent computing. http:\/\/www.darpa.mil\/program\/transparent-computing."},{"key":"e_1_3_2_1_14_1","unstructured":"Trustwave Global Security Report 2015. https:\/\/www2.trustwave.com\/rs\/815-RFM-693\/images\/2015_TrustwaveGlobalSecurityReport.pdf.  Trustwave Global Security Report 2015. https:\/\/www2.trustwave.com\/rs\/815-RFM-693\/images\/2015_TrustwaveGlobalSecurityReport.pdf."},{"key":"e_1_3_2_1_15_1","first-page":"267","volume-title":"Proceedings of IEEE ASP-DAC'14","author":"Ambrose J. A."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/2664243.2664274"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/MOBIQUITOUS.2005.25"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/1376616.1376715"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2009.8"},{"key":"e_1_3_2_1_20_1","first-page":"1181","volume-title":"Proceedings of IEEE INFOCOM'10","author":"Cheng S."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-31235-9_28"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2684464.2684494"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/1095810.1095826"},{"key":"e_1_3_2_1_24_1","first-page":"820","volume-title":"Proceedings of IEEE ICDE'14","author":"Gupta M."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2006.69"},{"key":"e_1_3_2_1_26_1","first-page":"322","volume-title":"Proceedings of IEEE ICE-CCN'13","author":"Jose J."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/945445.945467"},{"key":"e_1_3_2_1_28_1","volume-title":"Proceedings of the Network and Distributed System Security Symposium, NDSS 2005","author":"King S. T.","year":"2005"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866314"},{"key":"e_1_3_2_1_30_1","volume-title":"Proceedings of NDSS'13","author":"Lee K. H."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516731"},{"key":"e_1_3_2_1_32_1","first-page":"1","volume-title":"Proceedings of IEEE WOCC'14","author":"Liu J."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2818000.2818039"},{"key":"e_1_3_2_1_34_1","volume-title":"Proceedings of NDSS'16","author":"Ma S."},{"key":"e_1_3_2_1_35_1","first-page":"1","volume-title":"Proceedings of IEEE NOMS'14","author":"Rezvani M."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/IWIA.2005.9"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2396761.2398511"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2700264"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660359"},{"key":"e_1_3_2_1_40_1","first-page":"696","volume-title":"Proceedings of IEEE ACC'15","author":"Zibaeenejad M."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2007.19"}],"event":{"name":"CCS'16: 2016 ACM SIGSAC Conference on Computer and Communications Security","location":"Vienna Austria","acronym":"CCS'16","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2976749.2978378","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2976749.2978378","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:40:14Z","timestamp":1750218014000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2976749.2978378"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,10,24]]},"references-count":41,"alternative-id":["10.1145\/2976749.2978378","10.1145\/2976749"],"URL":"https:\/\/doi.org\/10.1145\/2976749.2978378","relation":{},"subject":[],"published":{"date-parts":[[2016,10,24]]},"assertion":[{"value":"2016-10-24","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}