{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,22]],"date-time":"2025-12-22T12:54:55Z","timestamp":1766408095547,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":29,"publisher":"ACM","license":[{"start":{"date-parts":[[2021,11,8]],"date-time":"2021-11-08T00:00:00Z","timestamp":1636329600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100003246","name":"Nederlandse Organisatie voor Wetenschappelijk Onderzoek","doi-asserted-by":"publisher","award":["VidW.1154.19.011"],"award-info":[{"award-number":["VidW.1154.19.011"]}],"id":[{"id":"10.13039\/501100003246","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2021,11,8]]},"DOI":"10.1145\/3494322.3494340","type":"proceedings-article","created":{"date-parts":[[2022,3,8]],"date-time":"2022-03-08T22:23:32Z","timestamp":1646778212000},"page":"134-142","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["NURSE: eNd-UseR IoT malware detection tool for Smart homEs"],"prefix":"10.1145","author":[{"given":"Antoine","family":"d'Estalenx","sequence":"first","affiliation":[{"name":"Multi-actor systems, Delft University of Technology, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Carlos","family":"Ga\u00f1\u00e1n","sequence":"additional","affiliation":[{"name":"Multi-actor systems, Delft University of Technology, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2022,3,8]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Detecting IoT Devices and How They Put Large Heterogeneous Networks at Security Risk. Sensors 19, 19","author":"Agarwal Sharad","year":"2019","unstructured":"Sharad Agarwal , Pascal Oser , and Stefan Lueders . 2019. Detecting IoT Devices and How They Put Large Heterogeneous Networks at Security Risk. Sensors 19, 19 ( 2019 ). https:\/\/www.mdpi.com\/1424-8220\/19\/19\/4107 Sharad Agarwal, Pascal Oser, and Stefan Lueders. 2019. Detecting IoT Devices and How They Put Large Heterogeneous Networks at Security Risk. Sensors 19, 19 (2019). https:\/\/www.mdpi.com\/1424-8220\/19\/19\/4107"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.2478\/popets-2019-0040"},{"key":"e_1_3_2_1_3_1","volume-title":"Emergent Real-World Interventions in Smart Home Security. In Seventeenth Symposium on Usable Privacy and Security (SOUPS","author":"Bouwmeester Brennen","year":"2021","unstructured":"Brennen Bouwmeester , Elsa Rodr\u00edguez , Carlos Ga\u00f1\u00e1n , Michel van Eeten , and Simon Parkin . 2021 . \u201d The Thing Doesn\u2019t Have a Name\u201d: Learning from Emergent Real-World Interventions in Smart Home Security. In Seventeenth Symposium on Usable Privacy and Security (SOUPS 2021). 493\u2013512. Brennen Bouwmeester, Elsa Rodr\u00edguez, Carlos Ga\u00f1\u00e1n, Michel van Eeten, and Simon Parkin. 2021. \u201dThe Thing Doesn\u2019t Have a Name\u201d: Learning from Emergent Real-World Interventions in Smart Home Security. In Seventeenth Symposium on Usable Privacy and Security (SOUPS 2021). 493\u2013512."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23438"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/SPW.2018.00013"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.05.011"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2020.3009425"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10209-018-0617-5"},{"key":"e_1_3_2_1_9_1","volume-title":"IoT Inspector. Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies 4, 2 (6","author":"Huang Danny\u00a0Yuxing","year":"2020","unstructured":"Danny\u00a0Yuxing Huang , Noah Apthorpe , Frank Li , Gunes Acar , and Nick Feamster . 2020 . IoT Inspector. Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies 4, 2 (6 2020), 1\u201321. https:\/\/doi.org\/10.1145\/3397333 10.1145\/3397333 Danny\u00a0Yuxing Huang, Noah Apthorpe, Frank Li, Gunes Acar, and Nick Feamster. 2020. IoT Inspector. Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies 4, 2 (6 2020), 1\u201321. https:\/\/doi.org\/10.1145\/3397333"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/NOMS47738.2020.9110419"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/3384419.3430414"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/IDAACS.2015.7340779"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3354198"},{"key":"e_1_3_2_1_14_1","volume-title":"2019 IFIP\/IEEE Symposium on Integrated Network and Service Management (IM). IEEE, 134\u2013143","author":"Morishita Shun","year":"2019","unstructured":"Shun Morishita , Takuya Hoizumi , Wataru Ueno , Rui Tanabe , Carlos Ga\u00f1\u00e1n , Michel\u00a0 JG van Eeten , Katsunari Yoshioka , and Tsutomu Matsumoto . 2019 . Detect me if you\u2026 oh wait. An internet-wide view of self-revealing honeypots . In 2019 IFIP\/IEEE Symposium on Integrated Network and Service Management (IM). IEEE, 134\u2013143 . Shun Morishita, Takuya Hoizumi, Wataru Ueno, Rui Tanabe, Carlos Ga\u00f1\u00e1n, Michel\u00a0JG van Eeten, Katsunari Yoshioka, and Tsutomu Matsumoto. 2019. Detect me if you\u2026 oh wait. An internet-wide view of self-revealing honeypots. In 2019 IFIP\/IEEE Symposium on Integrated Network and Service Management (IM). IEEE, 134\u2013143."},{"key":"e_1_3_2_1_15_1","unstructured":"Netlab. 2021. Netlab OpenData Project. https:\/\/data.netlab.360.com\/dga\/  Netlab. 2021. Netlab OpenData Project. https:\/\/data.netlab.360.com\/dga\/"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP51992.2021.00031"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"crossref","unstructured":"Mockapetris P.1987. Domain names - Implementation and Specification. RFC 1035. RFC Editor. https:\/\/datatracker.ietf.org\/doc\/html\/rfc1035  Mockapetris P.1987. Domain names - Implementation and Specification. RFC 1035. RFC Editor. https:\/\/datatracker.ietf.org\/doc\/html\/rfc1035","DOI":"10.17487\/rfc1035"},{"key":"e_1_3_2_1_18_1","unstructured":"A Parmisano S Garcia and MJ Erquiaga. 2020. A Labeled Dataset with Malicious and Benign IoT Network Traffic. Stratosphere Laboratory(2020).  A Parmisano S Garcia and MJ Erquiaga. 2020. A Labeled Dataset with Malicious and Benign IoT Network Traffic. Stratosphere Laboratory(2020)."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP48549.2020.00037"},{"key":"e_1_3_2_1_20_1","volume-title":"Super-Spreaders: Quantifying the Role of IoT Manufacturers in Device Infections. In 20th Annual Workshop on the Economics of Information Security (WEIS","author":"Rodriguez Elsa","year":"2021","unstructured":"Elsa Rodriguez , Arman Noroozian , Michel van Eeten , and Carlos Ga\u00f1\u00e1n . 2021 . Super-Spreaders: Quantifying the Role of IoT Manufacturers in Device Infections. In 20th Annual Workshop on the Economics of Information Security (WEIS 2021). Elsa Rodriguez, Arman Noroozian, Michel van Eeten, and Carlos Ga\u00f1\u00e1n. 2021. Super-Spreaders: Quantifying the Role of IoT Manufacturers in Device Infections. In 20th Annual Workshop on the Economics of Information Security (WEIS 2021)."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1093\/cybsec\/tyab015"},{"key":"e_1_3_2_1_22_1","unstructured":"Imanol Rubio-Unanue I\u00f1igo Ortega-Martinez Markel Baskaran Eneko Bermejo Antton Rodriguez Igor Santos I\u00f1aki Garitano and Urko Zurutuza. 2021. IoT security - network traffic under normal conditions. https:\/\/data.europa.eu\/data\/datasets?keywords=variot  Imanol Rubio-Unanue I\u00f1igo Ortega-Martinez Markel Baskaran Eneko Bermejo Antton Rodriguez Igor Santos I\u00f1aki Garitano and Urko Zurutuza. 2021. IoT security - network traffic under normal conditions. https:\/\/data.europa.eu\/data\/datasets?keywords=variot"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/3419394.3423650"},{"key":"e_1_3_2_1_24_1","volume-title":"Understanding the Knowledge Gap: How Security Awareness Influences the Adoption of Industrial IoT. In 20th Annual Workshop on the Economics of Information Security (WEIS","author":"Schrama Verena","year":"2020","unstructured":"Verena Schrama , Carlos\u00a0 H Ga\u00f1\u00e1n , Doris Aschenbrenner , Mark de Reuver , Kevin Borgolte , and Tobias Fiebig . 2020 . Understanding the Knowledge Gap: How Security Awareness Influences the Adoption of Industrial IoT. In 20th Annual Workshop on the Economics of Information Security (WEIS 2020). 1\u201317. Verena Schrama, Carlos\u00a0H Ga\u00f1\u00e1n, Doris Aschenbrenner, Mark de Reuver, Kevin Borgolte, and Tobias Fiebig. 2020. Understanding the Knowledge Gap: How Security Awareness Influences the Adoption of Industrial IoT. In 20th Annual Workshop on the Economics of Information Security (WEIS 2020). 1\u201317."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1109\/TMC.2018.2866249"},{"key":"e_1_3_2_1_26_1","unstructured":"Spamhaus. 2021. The Spamhaus project. https:\/\/www.spamhaus.org\/  Spamhaus. 2021. The Spamhaus project. https:\/\/www.spamhaus.org\/"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3407023.3409177"},{"key":"e_1_3_2_1_28_1","volume-title":"An introduction to ARP spoofing. Node99","author":"Whalen Sean","year":"2001","unstructured":"Sean Whalen . 2001. An introduction to ARP spoofing. Node99 ( 2001 ). Sean Whalen. 2001. An introduction to ARP spoofing. Node99 (2001)."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/SOCA.2014.58"}],"event":{"name":"IoT '21: 11th International Conference on the Internet of Things","acronym":"IoT '21","location":"St.Gallen Switzerland"},"container-title":["Proceedings of the 11th International Conference on the Internet of Things"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3494322.3494340","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3494322.3494340","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T20:48:42Z","timestamp":1750193322000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3494322.3494340"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,11,8]]},"references-count":29,"alternative-id":["10.1145\/3494322.3494340","10.1145\/3494322"],"URL":"https:\/\/doi.org\/10.1145\/3494322.3494340","relation":{},"subject":[],"published":{"date-parts":[[2021,11,8]]},"assertion":[{"value":"2022-03-08","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}