{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:10:37Z","timestamp":1750306237441,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":63,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,4,4]],"date-time":"2017-04-04T00:00:00Z","timestamp":1491264000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Defense Threat Reduction Agency","award":["HDTRA11010102"],"award-info":[{"award-number":["HDTRA11010102"]}]},{"name":"Army Research Office","award":["ARO W911NF1310154, ARO W911NF0910273"],"award-info":[{"award-number":["ARO W911NF1310154, ARO W911NF0910273"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,4,4]]},"DOI":"10.1145\/3055305.3055306","type":"proceedings-article","created":{"date-parts":[[2017,3,28]],"date-time":"2017-03-28T17:42:08Z","timestamp":1490722928000},"page":"62-73","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":5,"title":["Global Variation in Attack Encounters and Hosting"],"prefix":"10.1145","author":[{"given":"Ghita","family":"Mezzour","sequence":"first","affiliation":[{"name":"Universit\u00e9 Internationale de Rabat (UIR), TICLab, Sala El Jadida, Morocco"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kathleen M.","family":"Carley","sequence":"additional","affiliation":[{"name":"Institute for Software Research, Carnegie Mellon University, Pittsburgh, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"L. Richard","family":"Carley","sequence":"additional","affiliation":[{"name":"Electrical and Computer Engineering, Carnegie Mellon University, Pittsburgh, PA USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,4,4]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.4018\/jsse.2013010104"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1086\/467507"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382284"},{"key":"e_1_3_2_1_4_1","volume-title":"Russian business network study","author":"Bizeul D.","year":"2007","unstructured":"D. Bizeul . Russian business network study , 2007 . D. Bizeul. Russian business network study, 2007."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2009.29"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"crossref","DOI":"10.7551\/mitpress\/9780262017367.001.0001","volume-title":"Invisible users: youth in the Internet cafes of urban Ghana. Acting with technology","author":"Burrell J.","year":"2012","unstructured":"J. Burrell . Invisible users: youth in the Internet cafes of urban Ghana. Acting with technology . MIT Press , Cambridge, Mass , 2012 . J. Burrell. Invisible users: youth in the Internet cafes of urban Ghana. Acting with technology. MIT Press, Cambridge, Mass, 2012."},{"key":"e_1_3_2_1_7_1","volume-title":"USENIX Security Symposium","author":"Caballero J.","year":"2011","unstructured":"J. Caballero , C. Grier , C. Kreibich , and V. Paxson . Measuring pay-per-install: The commoditization of malware distribution . In USENIX Security Symposium , San Francisco, CA , Aug 2011 . J. Caballero, C. Grier, C. Kreibich, and V. Paxson. Measuring pay-per-install: The commoditization of malware distribution. In USENIX Security Symposium, San Francisco, CA, Aug 2011."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/2590296.2590347"},{"key":"e_1_3_2_1_9_1","unstructured":"Center for International Development and Conflict Management. International crisis behavior project. http:\/\/www.cidcm.umd.edu\/icb\/ 2010. Center for International Development and Conflict Management. International crisis behavior project. http:\/\/www.cidcm.umd.edu\/icb\/ 2010."},{"key":"e_1_3_2_1_10_1","volume-title":"The World Factbook. https:\/\/www.cia.gov\/library\/publications\/the-world-factbook\/","author":"Central Intelligence Agency","year":"2011","unstructured":"Central Intelligence Agency . The World Factbook. https:\/\/www.cia.gov\/library\/publications\/the-world-factbook\/ , 2011 . Central Intelligence Agency. The World Factbook. https:\/\/www.cia.gov\/library\/publications\/the-world-factbook\/, 2011."},{"key":"e_1_3_2_1_11_1","volume-title":"http:\/\/www.cert.org\/csirts\/national\/contact.html","author":"CERT. National computer security incident response teams.","year":"2014","unstructured":"CERT. National computer security incident response teams. http:\/\/www.cert.org\/csirts\/national\/contact.html , 2014 . CERT. National computer security incident response teams. http:\/\/www.cert.org\/csirts\/national\/contact.html, 2014."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0144-8188(00)00020-X"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382283"},{"key":"e_1_3_2_1_14_1","unstructured":"CNET. EU increases penalties for cybercriminals and hackers. http:\/\/www.cnet.com\/news\/eu-increases-penalties-for-cybercriminals-and-hackers\/ 2013. CNET. EU increases penalties for cybercriminals and hackers. http:\/\/www.cnet.com\/news\/eu-increases-penalties-for-cybercriminals-and-hackers\/ 2013."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.2307\/2094935"},{"key":"e_1_3_2_1_16_1","unstructured":"Correlates of War Project. Alliances v3.03. http:\/\/www.correlatesofwar.org\/. Correlates of War Project. Alliances v3.03. http:\/\/www.correlatesofwar.org\/."},{"key":"e_1_3_2_1_17_1","volume-title":"International Symposium on Research in Attacks, Instrusions and Defenses (RAID)","author":"Cova M.","year":"2010","unstructured":"M. Cova , C. Leita , O. Thonnard , A. D. Keromytis , and M. Dacier . An analysis of rogue AV compaigns . In International Symposium on Research in Attacks, Instrusions and Defenses (RAID) , Ottawa, Ontario, Canada , Sep 2010 . M. Cova, C. Leita, O. Thonnard, A. D. Keromytis, and M. Dacier. An analysis of rogue AV compaigns. In International Symposium on Research in Attacks, Instrusions and Defenses (RAID), Ottawa, Ontario, Canada, Sep 2010."},{"key":"e_1_3_2_1_18_1","unstructured":"Department of Peace and Conflict Research. Uppsala University. UCDP dyadic dataset. http:\/\/www.pcr.uu.se\/research\/ucdp\/datasets\/ucdp_dyadic_dataset\/ 2011. Department of Peace and Conflict Research. Uppsala University. UCDP dyadic dataset. http:\/\/www.pcr.uu.se\/research\/ucdp\/datasets\/ucdp_dyadic_dataset\/ 2011."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/1978672.1978683"},{"key":"e_1_3_2_1_20_1","volume-title":"Workshop on the Economics of Information Security","author":"Eeten M. V.","year":"2010","unstructured":"M. V. Eeten , Johannes, M. Bauer , H. Asghari , S. Tabatabaie , and D. Rand . The role of internet service providers in botnet mitigation. An empirical analysis based on spam data . In Workshop on the Economics of Information Security , Arlington, VA , June 2010 . M. V. Eeten, Johannes, M. Bauer, H. Asghari, S. Tabatabaie, and D. Rand. The role of internet service providers in botnet mitigation. An empirical analysis based on spam data. In Workshop on the Economics of Information Security, Arlington, VA, June 2010."},{"key":"e_1_3_2_1_21_1","volume-title":"Fifth Berkeley Symposium on Mathematical Statistics and Probability","author":"Eicker F.","year":"1967","unstructured":"F. Eicker . Limit theorems for regressions with unequal and dependent errors . In Fifth Berkeley Symposium on Mathematical Statistics and Probability , 1967 . F. Eicker. Limit theorems for regressions with unequal and dependent errors. In Fifth Berkeley Symposium on Mathematical Statistics and Probability, 1967."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-39498-0_13"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1186\/1687-417X-2013-3"},{"key":"e_1_3_2_1_24_1","volume-title":"Fifth Berkeley Symposium on Mathematical Statistics and Probability","author":"Huber P.","year":"1967","unstructured":"P. Huber . The behavior of maximum likelihood estimates under nonstandard conditions . In Fifth Berkeley Symposium on Mathematical Statistics and Probability , 1967 . P. Huber. The behavior of maximum likelihood estimates under nonstandard conditions. In Fifth Berkeley Symposium on Mathematical Statistics and Probability, 1967."},{"key":"e_1_3_2_1_25_1","unstructured":"International Cyber Center. George Mason University. CERTICC home. http:\/\/internationalcybercenter.org\/certicc 2014. International Cyber Center. George Mason University. CERTICC home. http:\/\/internationalcybercenter.org\/certicc 2014."},{"key":"e_1_3_2_1_26_1","unstructured":"International Telecommunication Union. Measuring the information society. http:\/\/www.itu.int\/en\/ITU-D\/Statistics\/Documents\/publications\/mis2012\/MIS2012\\_without\\_Annex\\_4.pdf 2012. International Telecommunication Union. Measuring the information society. http:\/\/www.itu.int\/en\/ITU-D\/Statistics\/Documents\/publications\/mis2012\/MIS2012\\_without\\_Annex\\_4.pdf 2012."},{"key":"e_1_3_2_1_27_1","volume-title":"Exploiting Intelligence for National Security.","author":"Jahankhani H.","year":"2013","unstructured":"H. Jahankhani . Developing a model to reduce and or prevent cyber crime victimization among the user individuals . In Exploiting Intelligence for National Security. 2013 . H. Jahankhani. Developing a model to reduce and or prevent cyber crime victimization among the user individuals. In Exploiting Intelligence for National Security. 2013."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4471-2140-4_12"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-32946-3_8"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.5555\/1833515.1833581"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/2835776.2835834"},{"key":"e_1_3_2_1_32_1","volume-title":"Microsoft","author":"Kleiner A.","year":"2014","unstructured":"A. Kleiner , P. Nicolas , and K. Sullivan . Linking cybersecurity policy and performance. Technical report , Microsoft , 2014 . A. Kleiner, P. Nicolas, and K. Sullivan. Linking cybersecurity policy and performance. Technical report, Microsoft, 2014."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jpubeco.2004.05.005"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516747"},{"key":"e_1_3_2_1_35_1","volume-title":"From engineering to science. The Next Wave","author":"Landwehr C.","year":"2012","unstructured":"C. Landwehr . Cybersecurity : From engineering to science. The Next Wave . The National Security Agency's review of Emerging Technologies, 19(2), 2012 . C. Landwehr. Cybersecurity: From engineering to science. The Next Wave. The National Security Agency's review of Emerging Technologies, 19(2), 2012."},{"key":"e_1_3_2_1_36_1","volume-title":"USENIX Security Symposium","author":"Leontiadis N.","year":"2011","unstructured":"N. Leontiadis , T. Moore , and N. Christin . Measuring and analyzing search-redirection attacks in the illicit online prescription drug trade . In USENIX Security Symposium , San Francisco, CA , Aug 2011 . N. Leontiadis, T. Moore, and N. Christin. Measuring and analyzing search-redirection attacks in the illicit online prescription drug trade. In USENIX Security Symposium, San Francisco, CA, Aug 2011."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660332"},{"key":"e_1_3_2_1_38_1","volume-title":"The Workshop on the Economics of Information Security (WEIS)","author":"Levesque L.","year":"2016","unstructured":"L. Levesque , J. Fernandez , A. Somayaji , and D. Batchelder . National-level risk assessment: A multi-country study of malware infections . In The Workshop on the Economics of Information Security (WEIS) , Berkeley, CA , June 2016 . L. Levesque, J. Fernandez, A. Somayaji, and D. Batchelder. National-level risk assessment: A multi-country study of malware infections. In The Workshop on the Economics of Information Security (WEIS), Berkeley, CA, June 2016."},{"key":"e_1_3_2_1_39_1","volume-title":"Cybersecurity and cyberwarfare. Preliminary assessment of national doctrine and organization. Technical report","author":"Lewis J. A.","year":"2011","unstructured":"J. A. Lewis and K. Timlin . Cybersecurity and cyberwarfare. Preliminary assessment of national doctrine and organization. Technical report , Center for Strategic and International Studies , 2011 . J. A. Lewis and K. Timlin. Cybersecurity and cyberwarfare. Preliminary assessment of national doctrine and organization. Technical report, Center for Strategic and International Studies, 2011."},{"key":"e_1_3_2_1_40_1","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"Maier","year":"2011","unstructured":"Maier et al. An assessment of overt malicious activity manifest in residential networks . In Detection of Intrusions and Malware, and Vulnerability Assessment , volume 6739 . Springer Berlin Heidelberg , Berlin, Heidelberg , 2011 . Maier et al. An assessment of overt malicious activity manifest in residential networks. In Detection of Intrusions and Malware, and Vulnerability Assessment, volume 6739. Springer Berlin Heidelberg, Berlin, Heidelberg, 2011."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0167-2681(97)00040-1"},{"key":"e_1_3_2_1_42_1","unstructured":"Maxmind. Geolite free downloadable databases. Geolite country. http:\/\/dev.maxmind.com\/geoip\/legacy\/geolite\/ November 2012. Maxmind. Geolite free downloadable databases. Geolite country. http:\/\/dev.maxmind.com\/geoip\/legacy\/geolite\/ November 2012."},{"key":"e_1_3_2_1_43_1","unstructured":"McAfree. Mcafee labs threats report. http:\/\/www.mcafee.com\/us\/resources\/reports\/rp-quarterly-threat-q1-2014.pdf June 2014. McAfree. Mcafee labs threats report. http:\/\/www.mcafee.com\/us\/resources\/reports\/rp-quarterly-threat-q1-2014.pdf June 2014."},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/2746194.2746202"},{"key":"e_1_3_2_1_45_1","article-title":"Longitudinal analysis of a large corpus of cyber threat descriptions","author":"Mezzour G.","year":"2014","unstructured":"G. Mezzour , L. R. Carley , and K. M. Carley . Longitudinal analysis of a large corpus of cyber threat descriptions . Journal of Computer Virology and Hacking Techniques , June 2014 . G. Mezzour, L. R. Carley, and K. M. Carley. Longitudinal analysis of a large corpus of cyber threat descriptions. Journal of Computer Virology and Hacking Techniques, June 2014.","journal-title":"Journal of Computer Virology and Hacking Techniques"},{"key":"e_1_3_2_1_46_1","volume-title":"A realist theory of international politics","author":"Morgenthau H. J.","year":"2005","unstructured":"H. J. Morgenthau , K. Thompson , and D. Clinton . A realist theory of international politics . McGraw-Hill Publishing Company , New York , 2005 . H. J. Morgenthau, K. Thompson, and D. Clinton. A realist theory of international politics. McGraw-Hill Publishing Company, New York, 2005."},{"key":"e_1_3_2_1_47_1","volume-title":"Phd thesis","author":"Moura G.","year":"2013","unstructured":"G. Moura . Internet Bad Neighborhoods . Phd thesis , Centre for Telematics and Information Technology , 2013 . G. Moura. Internet Bad Neighborhoods. Phd thesis, Centre for Telematics and Information Technology, 2013."},{"key":"e_1_3_2_1_48_1","unstructured":"New York Times. Obama calls for new law to bolster cybersecurity. http:\/\/www.nytimes.com\/2015\/01\/14\/us\/obama-to-announce-new-cyberattack-protections.html 2015. New York Times. Obama calls for new law to bolster cybersecurity. http:\/\/www.nytimes.com\/2015\/01\/14\/us\/obama-to-announce-new-cyberattack-protections.html 2015."},{"key":"e_1_3_2_1_49_1","volume-title":"Windows antivirus. worldwide market share analysis. https:\/\/www.opswat.com\/sites\/default\/files\/antivirus-report-june-2010.pdf","author":"OPSWAT.","year":"2010","unstructured":"OPSWAT. Windows antivirus. worldwide market share analysis. https:\/\/www.opswat.com\/sites\/default\/files\/antivirus-report-june-2010.pdf , 2010 . OPSWAT. Windows antivirus. worldwide market share analysis. https:\/\/www.opswat.com\/sites\/default\/files\/antivirus-report-june-2010.pdf, 2010."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/2890509"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1126\/science.146.3642.347"},{"key":"e_1_3_2_1_52_1","volume-title":"Usenix Security Symposium","author":"Provos N.","year":"2008","unstructured":"N. Provos , P. Mavrommatis , M. A. Rajab , and F. Monrose . All your iFRAMEs point to us . In Usenix Security Symposium , San Jose, CA , July 2008 . N. Provos, P. Mavrommatis, M. A. Rajab, and F. Monrose. All your iFRAMEs point to us. In Usenix Security Symposium, San Jose, CA, July 2008."},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"crossref","DOI":"10.5040\/9798400636493","volume-title":"Cyber warfare: how conflicts in cyberspace are challenging America and changing the world. The changing face of war","author":"Rosenzweig P.","year":"2013","unstructured":"P. Rosenzweig . Cyber warfare: how conflicts in cyberspace are challenging America and changing the world. The changing face of war . Praeger , S. Barbara, CA, 2013 . P. Rosenzweig. Cyber warfare: how conflicts in cyberspace are challenging America and changing the world. The changing face of war. Praeger, S. Barbara, CA, 2013."},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/1753326.1753383"},{"key":"e_1_3_2_1_55_1","volume-title":"The evolution of information security. The Next Wave","author":"Shostack A.","year":"2012","unstructured":"A. Shostack . The evolution of information security. The Next Wave . The National Security Agency's review of Emerging Technologies, 19(2), 2012 . A. Shostack. The evolution of information security. The Next Wave. The National Security Agency's review of Emerging Technologies, 19(2), 2012."},{"key":"e_1_3_2_1_56_1","volume-title":"Introduction to Econometrics","author":"Stock J.","year":"2010","unstructured":"J. Stock and M. Watson . Introduction to Econometrics . Addison-Wesley , 2010 . J. Stock and M. Watson. Introduction to Econometrics. Addison-Wesley, 2010."},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.5555\/2875149"},{"key":"e_1_3_2_1_58_1","unstructured":"Symantec. Symantec attack signatures. http:\/\/www.symantec.com\/security_response\/attacksignatures\/ 2011. Symantec. Symantec attack signatures. http:\/\/www.symantec.com\/security_response\/attacksignatures\/ 2011."},{"key":"e_1_3_2_1_59_1","unstructured":"The World Bank. The little data book on information and communication technology. http:\/\/data.worldbank.org\/products\/data-books\/little-data-book-on-info-communication-tech 2011. The World Bank. The little data book on information and communication technology. http:\/\/data.worldbank.org\/products\/data-books\/little-data-book-on-info-communication-tech 2011."},{"key":"e_1_3_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33338-5_4"},{"key":"e_1_3_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.2307\/1912934"},{"key":"e_1_3_2_1_62_1","unstructured":"World Economic Forum. The global competitiveness report. http:\/\/www3.weforum.org\/docs\/WEF_GlobalCompetitivenessReport_2012-13.pdf 2012-2013. World Economic Forum. The global competitiveness report. http:\/\/www3.weforum.org\/docs\/WEF_GlobalCompetitivenessReport_2012-13.pdf 2012-2013."},{"key":"e_1_3_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660330"}],"event":{"name":"HoTSoS '17: Symposium and Bootcamp","sponsor":["National Security Agency National Security Agency","Vanderbilt University Vanderbilt University","University of Maryland University of Maryland"],"location":"Hanover MD USA","acronym":"HoTSoS '17"},"container-title":["Proceedings of the Hot Topics in Science of Security: Symposium and Bootcamp"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3055305.3055306","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3055305.3055306","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3055305.3055306","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:23:26Z","timestamp":1750220606000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3055305.3055306"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,4,4]]},"references-count":63,"alternative-id":["10.1145\/3055305.3055306","10.1145\/3055305"],"URL":"https:\/\/doi.org\/10.1145\/3055305.3055306","relation":{},"subject":[],"published":{"date-parts":[[2017,4,4]]},"assertion":[{"value":"2017-04-04","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}