{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T10:55:32Z","timestamp":1778151332904,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":47,"publisher":"ACM","license":[{"start":{"date-parts":[[2020,12,7]],"date-time":"2020-12-07T00:00:00Z","timestamp":1607299200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100011199","name":"European Research Council","doi-asserted-by":"publisher","award":["771844 ? BitCrumbs"],"award-info":[{"award-number":["771844 ? BitCrumbs"]}],"id":[{"id":"10.13039\/100011199","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2020,12,7]]},"DOI":"10.1145\/3427228.3427256","type":"proceedings-article","created":{"date-parts":[[2020,12,9]],"date-time":"2020-12-09T22:20:18Z","timestamp":1607552418000},"page":"1-16","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":59,"title":["The Tangled Genealogy of IoT Malware"],"prefix":"10.1145","author":[{"given":"Emanuele","family":"Cozzi","sequence":"first","affiliation":[{"name":"Eurecom, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pierre-Antoine","family":"Vervier","sequence":"additional","affiliation":[{"name":"NortonLifeLock Research Group, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Matteo","family":"Dell'Amico","sequence":"additional","affiliation":[{"name":"NortonLifeLock Research Group"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yun","family":"Shen","sequence":"additional","affiliation":[{"name":"NortonLifeLock Research Group, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Leyla","family":"Bilge","sequence":"additional","affiliation":[{"name":"NortonLifeLock Research Group, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Davide","family":"Balzarotti","sequence":"additional","affiliation":[{"name":"Eurecom, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2020,12,8]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"[n.d.]. Diaphora a free and open source program diffing tool. http:\/\/diaphora.re\/.  [n.d.]. Diaphora a free and open source program diffing tool. http:\/\/diaphora.re\/."},{"key":"e_1_3_2_1_2_1","unstructured":"[n.d.]. VirusTotal. https:\/\/www.virustotal.com\/.  [n.d.]. VirusTotal. https:\/\/www.virustotal.com\/."},{"key":"e_1_3_2_1_3_1","unstructured":"Manos Antonakakis Tim April Michael Bailey Matt Bernhard Elie Bursztein Jaime Cochran Zakir Durumeric J\u00a0Alex Halderman Luca Invernizzi Michalis Kallitsis 2017. Understanding the mirai botnet. In USENIX Security.  Manos Antonakakis Tim April Michael Bailey Matt Bernhard Elie Bursztein Jaime Cochran Zakir Durumeric J\u00a0Alex Halderman Luca Invernizzi Michalis Kallitsis 2017. Understanding the mirai botnet. In USENIX Security."},{"key":"e_1_3_2_1_4_1","volume-title":"Proceedings of the Fourth Annual Symposium on Computational Geometry (Urbana-Champaign","author":"Asano T.","unstructured":"T. Asano , B. Bhattacharya , M. Keil , and F. Yao . 1988. Clustering Algorithms Based on Minimum and Maximum Spanning Trees . In Proceedings of the Fourth Annual Symposium on Computational Geometry (Urbana-Champaign , Illinois, USA) (SCG \u201988). Association for Computing Machinery, New York, NY, USA, 252\u2013257. https:\/\/doi.org\/10.1145\/73393.73419 10.1145\/73393.73419 T. Asano, B. Bhattacharya, M. Keil, and F. Yao. 1988. Clustering Algorithms Based on Minimum and Maximum Spanning Trees. In Proceedings of the Fourth Annual Symposium on Computational Geometry (Urbana-Champaign, Illinois, USA) (SCG \u201988). Association for Computing Machinery, New York, NY, USA, 252\u2013257. https:\/\/doi.org\/10.1145\/73393.73419"},{"key":"e_1_3_2_1_5_1","unstructured":"Michael Bailey Jon Oberheide Jon Andersen Z\u00a0Morley Mao Farnam Jahanian and Jose Nazario. 2007. Automated classification and analysis of internet malware. In RAID.  Michael Bailey Jon Oberheide Jon Andersen Z\u00a0Morley Mao Farnam Jahanian and Jose Nazario. 2007. Automated classification and analysis of internet malware. In RAID."},{"key":"e_1_3_2_1_6_1","unstructured":"Ulrich Bayer Paolo\u00a0Milani Comparetti Clemens Hlauschek Christopher Kruegel and Engin Kirda. 2009. Scalable behavior-based malware clustering.. In NDSS.  Ulrich Bayer Paolo\u00a0Milani Comparetti Clemens Hlauschek Christopher Kruegel and Engin Kirda. 2009. Scalable behavior-based malware clustering.. In NDSS."},{"key":"e_1_3_2_1_7_1","unstructured":"BitDefender. 2018. New Hide \u2018N Seek IoT Botnet using custom-built Peer-to-Peer communication spotted in the wild. https:\/\/labs.bitdefender.com\/2018\/01\/new-hide-n-seek-iot-botnet-using-custom-built-peer-to-peer-communication-spotted-in-the-wild\/.  BitDefender. 2018. New Hide \u2018N Seek IoT Botnet using custom-built Peer-to-Peer communication spotted in the wild. https:\/\/labs.bitdefender.com\/2018\/01\/new-hide-n-seek-iot-botnet-using-custom-built-peer-to-peer-communication-spotted-in-the-wild\/."},{"key":"e_1_3_2_1_8_1","unstructured":"BleepingComputer. 2019. Cr1ptT0r Ransomware Infects D-Link NAS Devices Targets Embedded Systems. https:\/\/www.bleepingcomputer.com\/news\/security\/cr1ptt0r-ransomware-infects-d-link-nas-devices-targets-embedded-systems\/.  BleepingComputer. 2019. Cr1ptT0r Ransomware Infects D-Link NAS Devices Targets Embedded Systems. https:\/\/www.bleepingcomputer.com\/news\/security\/cr1ptt0r-ransomware-infects-d-link-nas-devices-targets-embedded-systems\/."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"crossref","unstructured":"Alejandro Calleja Juan Tapiador and Juan Caballero. 2016. A Look into 30 Years of Malware Development from a Software Metrics Perspective Vol.\u00a09854. 325\u2013345.  Alejandro Calleja Juan Tapiador and Juan Caballero. 2016. A Look into 30 Years of Malware Development from a Software Metrics Perspective Vol.\u00a09854. 325\u2013345.","DOI":"10.1007\/978-3-319-45719-2_15"},{"key":"e_1_3_2_1_10_1","volume-title":"The MalSource Dataset: Quantifying Complexity and Code Reuse in Malware Development. (11","author":"Calleja Alejandro","year":"2018","unstructured":"Alejandro Calleja , Juan Tapiador , and Juan Caballero . 2018. The MalSource Dataset: Quantifying Complexity and Code Reuse in Malware Development. (11 2018 ). Alejandro Calleja, Juan Tapiador, and Juan Caballero. 2018. The MalSource Dataset: Quantifying Complexity and Code Reuse in Malware Development. (11 2018)."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"crossref","unstructured":"Ricardo\u00a0JGB Campello Davoud Moulavi and J\u00f6rg Sander. 2013. Density-based clustering based on hierarchical density estimates. In PAKDD.  Ricardo\u00a0JGB Campello Davoud Moulavi and J\u00f6rg Sander. 2013. Density-based clustering based on hierarchical density estimates. In PAKDD.","DOI":"10.1007\/978-3-642-37456-2_14"},{"key":"e_1_3_2_1_12_1","volume-title":"Understanding Linux Malware","author":"Cozzi Emanuele","unstructured":"Emanuele Cozzi , Mariano Graziano , Yanick Fratantonio , and Davide Balzarotti . 2018. Understanding Linux Malware . In IEEE S &P. Emanuele Cozzi, Mariano Graziano, Yanick Fratantonio, and Davide Balzarotti. 2018. Understanding Linux Malware. In IEEE S&P."},{"key":"e_1_3_2_1_13_1","volume-title":"FISHDBC: Flexible, Incremental, Scalable, Hierarchical Density-Based Clustering for Arbitrary Data and Distance. arxiv:1910.07283\u00a0[cs.LG]","author":"Dell\u2019Amico Matteo","year":"2019","unstructured":"Matteo Dell\u2019Amico . 2019 . FISHDBC: Flexible, Incremental, Scalable, Hierarchical Density-Based Clustering for Arbitrary Data and Distance. arxiv:1910.07283\u00a0[cs.LG] Matteo Dell\u2019Amico. 2019. FISHDBC: Flexible, Incremental, Scalable, Hierarchical Density-Based Clustering for Arbitrary Data and Distance. arxiv:1910.07283\u00a0[cs.LG]"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1963405.1963487"},{"key":"e_1_3_2_1_15_1","unstructured":"Tudor Dumitra\u015f and Iulian Neamtiu. 2011. Experimental Challenges in Cyber Security: A Story of Provenance and Lineage for Malware. In CEST.  Tudor Dumitra\u015f and Iulian Neamtiu. 2011. Experimental Challenges in Cyber Security: A Story of Provenance and Lineage for Malware. In CEST."},{"key":"e_1_3_2_1_16_1","unstructured":"Martin Ester Hans-Peter Kriegel J\u00f6rg Sander and Xiaowei Xu. 1996. A density-based algorithm for discovering clusters in large spatial databases with noise.. In KDD.  Martin Ester Hans-Peter Kriegel J\u00f6rg Sander and Xiaowei Xu. 1996. A density-based algorithm for discovering clusters in large spatial databases with noise.. In KDD."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.14778\/3303753.3303754"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1006\/jagm.1997.0897"},{"key":"e_1_3_2_1_19_1","volume-title":"Proceedings of the 24rd USENIX Security Symposium (USENIX Security).","author":"Graziano Mariano","year":"2015","unstructured":"Mariano Graziano , Davide Canali , Leyla Bilge , Andrea Lanzi , and Davide Balzarotti . 2015 . Needles in a Haystack: Mining Information from Public Dynamic Analysis Sandboxes for Malware Intelligence . In Proceedings of the 24rd USENIX Security Symposium (USENIX Security). Mariano Graziano, Davide Canali, Leyla Bilge, Andrea Lanzi, and Davide Balzarotti. 2015. Needles in a Haystack: Mining Information from Public Dynamic Analysis Sandboxes for Malware Intelligence. In Proceedings of the 24rd USENIX Security Symposium (USENIX Security)."},{"key":"e_1_3_2_1_20_1","unstructured":"M. Hao. [n.d.]. A Look into the Gafgyt Botnet Trends from the Communication Traffic Log. https:\/\/nsfocusglobal.com\/look-gafgyt-botnet-trends-communication-traffic-log\/.  M. Hao. [n.d.]. A Look into the Gafgyt Botnet Trends from the Communication Traffic Log. https:\/\/nsfocusglobal.com\/look-gafgyt-botnet-trends-communication-traffic-log\/."},{"key":"e_1_3_2_1_21_1","unstructured":"Irfan\u00a0Ul Haq and Juan Caballero. 2019. A Survey of Binary Code Similarity. arxiv:1909.11424\u00a0[cs.CR]  Irfan\u00a0Ul Haq and Juan Caballero. 2019. A Survey of Binary Code Similarity. arxiv:1909.11424\u00a0[cs.CR]"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243866"},{"key":"e_1_3_2_1_23_1","volume-title":"Mutantx-s: Scalable malware clustering based on static features. In USENIX ATC.","author":"Hu Xin","year":"2013","unstructured":"Xin Hu , Kang\u00a0 G Shin , Sandeep Bhatkar , and Kent Griffin . 2013 . Mutantx-s: Scalable malware clustering based on static features. In USENIX ATC. Xin Hu, Kang\u00a0G Shin, Sandeep Bhatkar, and Kent Griffin. 2013. Mutantx-s: Scalable malware clustering based on static features. In USENIX ATC."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/3052973.3052974"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"crossref","unstructured":"Jiyong Jang David Brumley and Shobha Venkataraman. 2011. BitShred: Feature Hashing Malware for Scalable Triage and Semantic Analysis. In ACM CCS.  Jiyong Jang David Brumley and Shobha Venkataraman. 2011. BitShred: Feature Hashing Malware for Scalable Triage and Semantic Analysis. In ACM CCS.","DOI":"10.1145\/2046707.2046742"},{"key":"e_1_3_2_1_26_1","volume-title":"Towards Automatic Software Lineage Inference. In 22nd USENIX Security Symposium (USENIX Security 13)","author":"Jang Jiyong","year":"2013","unstructured":"Jiyong Jang , Maverick Woo , and David Brumley . 2013 . Towards Automatic Software Lineage Inference. In 22nd USENIX Security Symposium (USENIX Security 13) . USENIX, Washington, D.C., 81\u201396. https:\/\/www.usenix.org\/conference\/usenixsecurity13\/technical-sessions\/papers\/jang Jiyong Jang, Maverick Woo, and David Brumley. 2013. Towards Automatic Software Lineage Inference. In 22nd USENIX Security Symposium (USENIX Security 13). USENIX, Washington, D.C., 81\u201396. https:\/\/www.usenix.org\/conference\/usenixsecurity13\/technical-sessions\/papers\/jang"},{"key":"e_1_3_2_1_27_1","volume-title":"Mirai: Beyond the Aftermath. https:\/\/www.botconf.eu\/wp-content\/uploads\/2018\/12\/2018-R-Joven-Mirai-Beyond-the-Aftermath.pdf.","author":"Joven Rommel","year":"2018","unstructured":"Rommel Joven , Jasper Manuel , and David Maciejack . 2018 . Mirai: Beyond the Aftermath. https:\/\/www.botconf.eu\/wp-content\/uploads\/2018\/12\/2018-R-Joven-Mirai-Beyond-the-Aftermath.pdf. Rommel Joven, Jasper Manuel, and David Maciejack. 2018. Mirai: Beyond the Aftermath. https:\/\/www.botconf.eu\/wp-content\/uploads\/2018\/12\/2018-R-Joven-Mirai-Beyond-the-Aftermath.pdf."},{"key":"e_1_3_2_1_28_1","volume-title":"Malware phylogeny generation using permutations of code. Journal in Computer Virology 1 (11","author":"Karim Md\u00a0Enamul","year":"2005","unstructured":"Md\u00a0Enamul Karim , Andrew Walenstein , Arun Lakhotia , and Laxmi Parida . 2005. Malware phylogeny generation using permutations of code. Journal in Computer Virology 1 (11 2005 ). Md\u00a0Enamul Karim, Andrew Walenstein, Arun Lakhotia, and Laxmi Parida. 2005. Malware phylogeny generation using permutations of code. Journal in Computer Virology 1 (11 2005)."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813642"},{"key":"e_1_3_2_1_30_1","unstructured":"Peng Li Limin Liu Debin Gao and Michael\u00a0K Reiter. 2010. On challenges in evaluating malware clustering. In RAID.  Peng Li Limin Liu Debin Gao and Michael\u00a0K Reiter. 2010. On challenges in evaluating malware clustering. In RAID."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2421001"},{"key":"e_1_3_2_1_32_1","volume-title":"Efficient and robust approximate nearest neighbor search using Hierarchical Navigable Small World graphs","author":"Malkov A.","year":"2018","unstructured":"Y.\u00a0 A. Malkov and D.\u00a0 A. Yashunin . 2018. Efficient and robust approximate nearest neighbor search using Hierarchical Navigable Small World graphs . IEEE Transactions on Pattern Analysis and Machine Intelligence ( 2018 ), 1\u20131. https:\/\/doi.org\/10.1109\/TPAMI.2018.2889473 10.1109\/TPAMI.2018.2889473 Y.\u00a0A. Malkov and D.\u00a0A. Yashunin. 2018. Efficient and robust approximate nearest neighbor search using Hierarchical Navigable Small World graphs. IEEE Transactions on Pattern Analysis and Machine Intelligence (2018), 1\u20131. https:\/\/doi.org\/10.1109\/TPAMI.2018.2889473"},{"key":"#cr-split#-e_1_3_2_1_33_1.1","doi-asserted-by":"crossref","unstructured":"Jiang Ming Dongpeng Xu and Dinghao Wu. 2015. Memoized Semantics-Based Binary Diffing with Application to Malware Lineage Inference. In IFIP Advances in Information and Communication Technology Vol.\u00a0455. 416-430. https:\/\/doi.org\/10.1007\/978-3-319-18467-8_28 10.1007\/978-3-319-18467-8_28","DOI":"10.1007\/978-3-319-18467-8_28"},{"key":"#cr-split#-e_1_3_2_1_33_1.2","doi-asserted-by":"crossref","unstructured":"Jiang Ming Dongpeng Xu and Dinghao Wu. 2015. Memoized Semantics-Based Binary Diffing with Application to Malware Lineage Inference. In IFIP Advances in Information and Communication Technology Vol.\u00a0455. 416-430. https:\/\/doi.org\/10.1007\/978-3-319-18467-8_28","DOI":"10.1007\/978-3-319-18467-8_28"},{"key":"e_1_3_2_1_34_1","volume-title":"Limits of Static Analysis for Malware Detection. In Twenty-Third Annual Computer Security Applications Conference (ACSAC","author":"Moser A.","year":"2007","unstructured":"A. Moser , C. Kruegel , and E. Kirda . 2007 . Limits of Static Analysis for Malware Detection. In Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007 ). 421\u2013430. A. Moser, C. Kruegel, and E. Kirda. 2007. Limits of Static Analysis for Malware Detection. In Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007). 421\u2013430."},{"key":"e_1_3_2_1_35_1","unstructured":"Yin Minn\u00a0Pa Pa Shogo Suzuki Katsunari Yoshioka Tsutomu Matsumoto Takahiro Kasama and Christian Rossow. 2015. IoTPOT: analysing the rise of IoT compromises. In WOOT.  Yin Minn\u00a0Pa Pa Shogo Suzuki Katsunari Yoshioka Tsutomu Matsumoto Takahiro Kasama and Christian Rossow. 2015. IoTPOT: analysing the rise of IoT compromises. In WOOT."},{"key":"e_1_3_2_1_36_1","unstructured":"PaloAlto Networks. 2019. Home & Small Office Wireless Routers Exploited to Attack Gaming Servers. https:\/\/unit42.paloaltonetworks.com\/home-small-office-wireless-routers-exploited-to-attack-gaming-servers\/.  PaloAlto Networks. 2019. Home & Small Office Wireless Routers Exploited to Attack Gaming Servers. https:\/\/unit42.paloaltonetworks.com\/home-small-office-wireless-routers-exploited-to-attack-gaming-servers\/."},{"key":"e_1_3_2_1_37_1","volume-title":"Birds of a Feature: Intrafamily Clustering for Version Identification of Packed Malware","author":"Park Leo\u00a0Hyun","year":"2020","unstructured":"Leo\u00a0Hyun Park , Jungbeen Yu , Hong-Koo Kang , Taejin Lee , and Taekyoung Kwon . 2020. Birds of a Feature: Intrafamily Clustering for Version Identification of Packed Malware . IEEE Systems Journal( 2020 ). Leo\u00a0Hyun Park, Jungbeen Yu, Hong-Koo Kang, Taejin Lee, and Taekyoung Kwon. 2020. Birds of a Feature: Intrafamily Clustering for Version Identification of Packed Malware. IEEE Systems Journal(2020)."},{"key":"e_1_3_2_1_38_1","unstructured":"Roberto Perdisci Wenke Lee and Nick Feamster. 2010. Behavioral Clustering of HTTP-based Malware and Signature Generation Using Malicious Network Traces. In NSDI.  Roberto Perdisci Wenke Lee and Nick Feamster. 2010. Behavioral Clustering of HTTP-based Malware and Signature Generation Using Malicious Network Traces. In NSDI."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420999"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/3068335"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"crossref","unstructured":"Marcos Sebastian Richard Rivera Platon Kotzias and Juan Caballero. 2016. AVclass: A Tool for Massive Malware Labeling. In RAID.  Marcos Sebastian Richard Rivera Platon Kotzias and Juan Caballero. 2016. AVclass: A Tool for Massive Malware Labeling. In RAID.","DOI":"10.1007\/978-3-319-45719-2_11"},{"key":"e_1_3_2_1_42_1","unstructured":"Symantec. 2018. Symantec Internet Security Threat Report (ISTR). https:\/\/www.symantec.com\/content\/dam\/symantec\/docs\/reports\/istr-23-2018-en.pdf.  Symantec. 2018. Symantec Internet Security Threat Report (ISTR). https:\/\/www.symantec.com\/content\/dam\/symantec\/docs\/reports\/istr-23-2018-en.pdf."},{"key":"e_1_3_2_1_43_1","unstructured":"Symantec. 2019. Symantec Internet Security Threat Report (ISTR). https:\/\/www.symantec.com\/content\/dam\/symantec\/docs\/reports\/istr-24-2019-en.pdf.  Symantec. 2019. Symantec Internet Security Threat Report (ISTR). https:\/\/www.symantec.com\/content\/dam\/symantec\/docs\/reports\/istr-24-2019-en.pdf."},{"key":"e_1_3_2_1_44_1","unstructured":"Talos. 2018. New VPNFilter malware targets at least 500K networking devices worldwide. https:\/\/blog.talosintelligence.com\/2018\/05\/VPNFilter.html.  Talos. 2018. New VPNFilter malware targets at least 500K networking devices worldwide. https:\/\/blog.talosintelligence.com\/2018\/05\/VPNFilter.html."},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"crossref","unstructured":"Pierre-Antoine Vervier and Yun Shen. 2018. Before Toasters Rise Up: A View into the Emerging IoT Threat Landscape. In RAID.  Pierre-Antoine Vervier and Yun Shen. 2018. Before Toasters Rise Up: A View into the Emerging IoT Threat Landscape. In RAID.","DOI":"10.1007\/978-3-030-00470-5_26"},{"key":"e_1_3_2_1_46_1","unstructured":"T. Yeh. [n.d.]. Netis Routers Leave Wide Open Backdoor. https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/netis-routers-leave-wide-open-backdoor\/.  T. Yeh. [n.d.]. Netis Routers Leave Wide Open Backdoor. https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/netis-routers-leave-wide-open-backdoor\/."}],"event":{"name":"ACSAC '20: Annual Computer Security Applications Conference","location":"Austin USA","acronym":"ACSAC '20"},"container-title":["Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3427228.3427256","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3427228.3427256","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T22:02:24Z","timestamp":1750197744000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3427228.3427256"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,12,7]]},"references-count":47,"alternative-id":["10.1145\/3427228.3427256","10.1145\/3427228"],"URL":"https:\/\/doi.org\/10.1145\/3427228.3427256","relation":{},"subject":[],"published":{"date-parts":[[2020,12,7]]},"assertion":[{"value":"2020-12-08","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}