{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,15]],"date-time":"2026-01-15T22:30:13Z","timestamp":1768516213685,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":55,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,10,27]],"date-time":"2024-10-27T00:00:00Z","timestamp":1729987200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,10,27]]},"DOI":"10.1145\/3691620.3695024","type":"proceedings-article","created":{"date-parts":[[2024,10,18]],"date-time":"2024-10-18T15:39:19Z","timestamp":1729265959000},"page":"531-543","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Detecting and Explaining Anomalies Caused by Web Tamper Attacks via Building Consistency-based Normality"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0000-1088-3714","authenticated-orcid":false,"given":"Yifan","family":"Liao","sequence":"first","affiliation":[{"name":"Shanghai Jiaotong University, Shanghai, China"},{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1061-819X","authenticated-orcid":false,"given":"Ming","family":"Xu","sequence":"additional","affiliation":[{"name":"Shanghai Jiaotong University, Shanghai, China"},{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8255-0118","authenticated-orcid":false,"given":"Yun","family":"Lin","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-8528-9088","authenticated-orcid":false,"given":"Xiwen","family":"Teoh","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1288-6502","authenticated-orcid":false,"given":"Xiaofei","family":"Xie","sequence":"additional","affiliation":[{"name":"Singapore Management University, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9080-6865","authenticated-orcid":false,"given":"Ruitao","family":"Feng","sequence":"additional","affiliation":[{"name":"Singapore Management University, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1462-9794","authenticated-orcid":false,"given":"Frank","family":"Liaw","sequence":"additional","affiliation":[{"name":"Government Technology Agency of Singapore, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3063-9425","authenticated-orcid":false,"given":"Hongyu","family":"Zhang","sequence":"additional","affiliation":[{"name":"Chongqing University, Chongqing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6512-8326","authenticated-orcid":false,"given":"Jin Song","family":"Dong","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,10,27]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1287624.1287630"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/3236024.3236069"},{"key":"e_1_3_2_1_3_1","unstructured":"Spring Aop. 2024. Spring AOP. https:\/\/docs.spring.io\/spring-framework\/reference\/core\/aop.html"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2025113.2025151"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3375633"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866375"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046774"},{"key":"e_1_3_2_1_8_1","volume-title":"Lyu","author":"Chen Zhuangbin","year":"2021","unstructured":"Zhuangbin Chen, Jinyang Liu, Wenwei Gu, Yuxin Su, and Michael R. Lyu. 2021. Experience Report: Deep Learning-based System Log Analysis for Anomaly Detection. CoRR abs\/2107.05908 (2021). arXiv:2107.05908 https:\/\/arxiv.org\/abs\/2107.05908"},{"key":"e_1_3_2_1_9_1","unstructured":"CISCO. 2024. Splunk. https:\/\/www.splunk.com\/"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134015"},{"key":"e_1_3_2_1_11_1","unstructured":"Elastic. 2024. Elasticsearch. https:\/\/www.elastic.co\/elasticsearch"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/3196883"},{"key":"e_1_3_2_1_13_1","volume-title":"Anastasia Ailamaki, and Babak Falsafi.","author":"Ferdman Michael","year":"2012","unstructured":"Michael Ferdman, Almutaz Adileh, Onur Kocberber, Stavros Volos, Mohammad Alisafaee, Djordje Jevdjic, Cansu Kaynak, Adrian Daniel Popescu, Anastasia Ailamaki, and Babak Falsafi. 2012. Clearing the clouds: a study of emerging scale-out workloads on modern hardware. Acm sigplan notices 47, 4 (2012), 37--48."},{"key":"e_1_3_2_1_14_1","volume-title":"Introducing domain-oriented microservice architecture. Uber Engineering Blog","author":"Gluck Adam","year":"2020","unstructured":"Adam Gluck. 2020. Introducing domain-oriented microservice architecture. Uber Engineering Blog (2020)."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2017.14"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"Jun Huang Yang Yang Hang Yu Jianguo Li and Xiao Zheng. 2023. Twin Graph-based Anomaly Detection via Attentive Multi-Modal Learning for Microservice System. arXiv:2310.04701 [cs.LG]","DOI":"10.1109\/ASE56229.2023.00138"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNSM.2020.3034647"},{"key":"e_1_3_2_1_18_1","unstructured":"IBM. 2024. IBM Security QRadar SIEM. https:\/\/www.ibm.com\/products\/qradarsiem"},{"key":"e_1_3_2_1_19_1","unstructured":"JDBC. 2024. Spring JDBC. https:\/\/docs.oracle.com\/javase\/8\/docs\/technotes\/guides\/jdbc\/"},{"key":"e_1_3_2_1_20_1","unstructured":"Spring Jpa. 2024. spring-data-jpa. https:\/\/spring.io\/projects\/spring-data-jpa"},{"key":"e_1_3_2_1_21_1","volume-title":"REPLICAWATCHER: Training-less Anomaly Detection in Containerized Microservices. In 31st Annual Network and Distributed System Security Symposium, NDSS 2024","author":"Khairi Asbat El","year":"2024","unstructured":"Asbat El Khairi, Marco Caselli, Andreas Peter, and Andrea Continella. 2024. REPLICAWATCHER: Training-less Anomaly Detection in Containerized Microservices. In 31st Annual Network and Distributed System Security Symposium, NDSS 2024, San Diego, California, USA, February 23--26, 2024. The Internet Society. https:\/\/www.ndss-symposium.org\/ndss-paper\/replicawatcher-training-less-anomaly-detection-in-containerized-microservices\/"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP54263.2024.00098"},{"key":"e_1_3_2_1_23_1","volume-title":"BFTDETECTOR: Automatic Detection of Business Flow Tampering for Digital Content Service. In 2023 IEEE\/ACM 45th International Conference on Software Engineering (ICSE).","author":"Kim I Luk","year":"2023","unstructured":"I Luk Kim, Weihang Wang, Yonghwi Kwon, and Xiangyu Zhang. 2023. BFTDETECTOR: Automatic Detection of Business Flow Tampering for Digital Content Service. In 2023 IEEE\/ACM 45th International Conference on Software Engineering (ICSE)."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/3377811.3380355"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/2635868.2635890"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE51524.2021.9678773"},{"key":"e_1_3_2_1_27_1","unstructured":"Van-Hoang Le and Hongyu Zhang. 2022. Log-based anomaly detection with deep learning: how far are we? (ICSE '22)."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3416636"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE5003.2020.00014"},{"key":"e_1_3_2_1_30_1","first-page":"2012","article-title":"Which variables should i log","volume":"47","author":"Liu Zhongxin","year":"2019","unstructured":"Zhongxin Liu, Xin Xia, David Lo, Zhenchang Xing, Ahmed E Hassan, and Shan-ping Li. 2019. Which variables should i log? IEEE Transactions on Software Engineering 47, 9 (2019), 2012--2031.","journal-title":"IEEE Transactions on Software Engineering"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/1368088.1368157"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3511561"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE43902.2021.00041"},{"key":"e_1_3_2_1_34_1","volume-title":"Adopting Microservices at Netflix: Lessons for Architectural Design. Nginx Blog","author":"Mauro Tony","year":"2015","unstructured":"Tony Mauro. 2015. Adopting Microservices at Netflix: Lessons for Architectural Design. Nginx Blog (2015)."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.24963\/ijcai.2019\/658"},{"key":"e_1_3_2_1_36_1","unstructured":"Mr.MG. 2023. Payment Bypass Using Parameter Manipulation (POCs). https:\/\/medium.com\/@mrmaulik191\/payment-bypass-using-parameter-manipulation-ee1bc9977f0c"},{"key":"e_1_3_2_1_37_1","unstructured":"N.A. 2022. NiceFish. https:\/\/gitee.com\/mumu-osc\/NiceFish-React"},{"key":"e_1_3_2_1_38_1","unstructured":"N.A. 2024. WebNorm. https:\/\/sites.google.com\/view\/webnorm\/home"},{"key":"e_1_3_2_1_39_1","volume-title":"Microservice architecture: aligning principles, practices, and culture. \" O'Reilly Media","author":"Nadareishvili Irakli","unstructured":"Irakli Nadareishvili, Ronnie Mitra, Matt McLarty, and Mike Amundsen. 2016. Microservice architecture: aligning principles, practices, and culture. \" O'Reilly Media, Inc.\"."},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2009.60"},{"key":"e_1_3_2_1_41_1","volume-title":"International conference on machine learning. PMLR, 4393--4402","author":"Ruff Lukas","year":"2018","unstructured":"Lukas Ruff, Robert Vandermeulen, Nico Goernitz, Lucas Deecke, Shoaib Ahmed Siddiqui, Alexander Binder, Emmanuel M\u00fcller, and Marius Kloft. 2018. Deep one-class classification. In International conference on machine learning. PMLR, 4393--4402."},{"key":"e_1_3_2_1_42_1","volume-title":"Detecting Logic Vulnerabilities in E-commerce Applications. In 21st Annual Network and Distributed System Security Symposium, NDSS 2014","author":"Sun Fangqi","year":"2014","unstructured":"Fangqi Sun, Liang Xu, and Zhendong Su. 2014. Detecting Logic Vulnerabilities in E-commerce Applications. In 21st Annual Network and Distributed System Security Symposium, NDSS 2014, San Diego, California, USA, February 23--26, 2014. The Internet Society. https:\/\/www.ndss-symposium.org\/ndss2014\/detecting-logic-vulnerabilities-e-commerce-applications"},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE-Companion52605.2021.00054"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/ColumbianCC.2015.7333476"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2008.35"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.32604\/CSSE.2022.022365"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICST.2017.36"},{"key":"e_1_3_2_1_48_1","unstructured":"JPA with Hibernate. 2024. Spring JPA with Hibernate. https:\/\/www.baeldung.com\/learn-jpa-hibernate"},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE-Companion52605.2021.00106"},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2012.6227202"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510180"},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1145\/3338906.3338931"},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1145\/3468264.3468543"},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/3183440.3194991"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASEW60602.2023.00028"}],"event":{"name":"ASE '24: 39th IEEE\/ACM International Conference on Automated Software Engineering","location":"Sacramento CA USA","acronym":"ASE '24","sponsor":["SIGAI ACM Special Interest Group on Artificial Intelligence","SIGSOFT ACM Special Interest Group on Software Engineering","IEEE CS"]},"container-title":["Proceedings of the 39th IEEE\/ACM International Conference on Automated Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3691620.3695024","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3691620.3695024","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T00:04:07Z","timestamp":1750291447000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3691620.3695024"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,10,27]]},"references-count":55,"alternative-id":["10.1145\/3691620.3695024","10.1145\/3691620"],"URL":"https:\/\/doi.org\/10.1145\/3691620.3695024","relation":{},"subject":[],"published":{"date-parts":[[2024,10,27]]},"assertion":[{"value":"2024-10-27","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}