{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,16]],"date-time":"2026-05-16T16:17:55Z","timestamp":1778948275363,"version":"3.51.4"},"reference-count":143,"publisher":"Association for Computing Machinery (ACM)","issue":"4","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Storage"],"published-print":{"date-parts":[[2025,11,30]]},"abstract":"<jats:p>\n                    Ransomware attacks have become increasingly frequent and high-profile, resulting in billions of dollars in data and operational losses annually. Current mechanisms typically deploy defenses in vulnerable operating systems, making them susceptible to advanced adversaries capable of compromising the OS. While implementing defense mechanisms within storage devices can address this vulnerability, they lack detection accuracy due to their inability to access data semantics, such as file system metadata. Moreover, these methods only expose block-level interfaces without file-level information, limiting the usability and practicality of data recovery management. Therefore, we develop\n                    <jats:italic toggle=\"yes\">SrFTL<\/jats:italic>\n                    , a novel ransomware defense framework that allows leveraging data semantics for accurate ransomware detection and effective file-level data recovery against data compromise. Specifically, SrFTL employs defense enforcement within the flash translation layer (FTL) of SSDs. Then, SrFTL combines the secure enclave with the modified FTL through a secure channel to enable flexible ransomware defenses within the enclave. Finally, SrFTL deploys ransomware classification and data recovery defenses in the enclave, providing high detection accuracy and low-cost data recovery. Our evaluation demonstrates that SrFTL achieves zero false positives and negatives when detecting our collected real-world ransomware samples and benign applications, outperforming current FTL-level solutions (e.g., MimosaFTL). Moreover, SrFTL introduces on average a trivial performance overhead of 1.5% compared with a regular SSD. Finally, evaluating against multiple real-world ransomware samples, SrFTL enables fast data recovery with an average time of 9.3 seconds. SrFTL thus bridges the semantic gap between the FTL and OS-level file information to stop ransomware while maintaining the integrity and authenticity of employed defenses.\n                  <\/jats:p>","DOI":"10.1145\/3767322","type":"journal-article","created":{"date-parts":[[2025,9,17]],"date-time":"2025-09-17T10:35:06Z","timestamp":1758105306000},"page":"1-42","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["SrFTL: Leveraging Storage Semantics for Effective Ransomware Defense in Flash-based SSDs"],"prefix":"10.1145","volume":"21","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9812-6634","authenticated-orcid":false,"given":"Weidong","family":"Zhu","sequence":"first","affiliation":[{"name":"Knight Foundation School of Computing and Information Sciences, Florida International University","place":["Miami, United States"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2093-6223","authenticated-orcid":false,"given":"Grant","family":"Hernandez","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science and Engineering, University of Florida","place":["Gainesville, United States"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-2059-3420","authenticated-orcid":false,"given":"Washington","family":"Garcia","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science and Engineering, University of Florida","place":["Gainesville, United States"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7506-9593","authenticated-orcid":false,"given":"Dave (Jing)","family":"Tian","sequence":"additional","affiliation":[{"name":"Department of Computer Science, Purdue University","place":["West Lafayette, United States"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3630-6269","authenticated-orcid":false,"given":"Sara","family":"Rampazzi","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science and Engineering, University of Florida","place":["Gainesville, United States"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7498-4239","authenticated-orcid":false,"given":"Kevin R. B.","family":"Butler","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science and Engineering, University of Florida","place":["Gainesville, United States"]}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,11,3]]},"reference":[{"key":"e_1_3_3_2_2","unstructured":"Clare Duffy. 2021. Colonial Pipeline attack: A \u201cwake up call\u201d about the threat of ransomware. Retrieved from https:\/\/www.cnn.com\/2021\/05\/16\/tech\/colonial-ransomware-darkside-what-to-know\/index.html"},{"key":"e_1_3_3_3_2","unstructured":"Filip TRU\u021a\u0102. 2018. Malware outbreak forces Apple chip supplier to shut down operations; new iPhones could be delayed. Retrieved from https:\/\/www.bitdefender.com\/blog\/hotforsecurity\/malware-outbreak-forces-apple-chip-supplier-to-shut-down-operations-new-iphones-could-be-delayed?_gl=1%2aq10wed%2a_ga%2aOTY4Mzk1NTgwLjE3MTY0ODg5MDM.%2a_ga_6M0GWNLLWF%2aMTcxNjQ4ODkwMi4xLjAuMTcxNjQ4ODkwMi42MC4wLjA.%2F"},{"key":"e_1_3_3_4_2","unstructured":"Microsoft. 2023. 10 essential insights from the Microsoft Digital Defense Report 2023. Retrieved from https:\/\/www.microsoft.com\/en-us\/security\/business\/security-insider\/reports\/microsoft-digital-defense-reports\/10-essential-insights-from-the-microsoft-digital-defense-report-2023\/"},{"key":"e_1_3_3_5_2","volume-title":"32th Annual Computer Security Applications Conference (ACSAC)","author":"Continella Andrea","year":"2016","unstructured":"Andrea Continella, Alessandro Guagneli, Giovanni Zingaro, Giulio De Pasquale, Alessandro Barenghi, Stefano Zanero, and Federico Maggi.2016. ShieldFS: A self-healing, ransomware-aware filesystem. In 32th Annual Computer Security Applications Conference (ACSAC)."},{"key":"e_1_3_3_6_2","volume-title":"25th USENIX Security Symposium (USENIX Security)","author":"Kharraz Amin","year":"2016","unstructured":"Amin Kharraz, Sajjad Arshad, Collin Mulliner, William Robertson, and Engin Kirda.2016. UNVEIL: A large-scale, automated approach to detecting ransomware. In 25th USENIX Security Symposium (USENIX Security)."},{"key":"e_1_3_3_7_2","volume-title":"IEEE 36th International Conference on Distributed Computing Systems (ICDCS)","author":"Scaife Nolen","year":"2016","unstructured":"Nolen Scaife, Henry Carter, Patrick Traynor, and Kevin RB Butler. 2016. CryptoLock (and drop it): Stopping ransomware attacks on user data. In IEEE 36th International Conference on Distributed Computing Systems (ICDCS)."},{"key":"e_1_3_3_8_2","volume-title":"2023 IEEE Symposium on Security and Privacy (S&P)","author":"Zhou Chijin","year":"2023","unstructured":"Chijin Zhou, Lihua Guo, Yiwei Hou, Zhenya Ma, Quan Zhang, Mingzhe Wang, Zhe Liu, and Yu Jiang. 2023. Limits of I\/O based ransomware detection: An imitation based attack. In 2023 IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_3_9_2","volume-title":"38th IEEE Symposium on Security and Privacy (S&P)","author":"Xu Dongpeng","year":"2017","unstructured":"Dongpeng Xu, Jiang Ming, and Dinghao Wu.2017. Cryptographic function detection in obfuscated binaries via bit-precise symbolic loop mapping. In 38th IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_3_10_2","volume-title":"15th ACM Asia Conference on Computer and Communications Security (ASIACCS)","author":"Kolodenker Eugene","year":"2017","unstructured":"Eugene Kolodenker, William Koch, Gianluca Stringhini, and Manuel Egele.2017. PayBreak: Defense against cryptographic ransomware. In 15th ACM Asia Conference on Computer and Communications Security (ASIACCS)."},{"key":"e_1_3_3_11_2","volume-title":"24th ACM Conference on Computer and Communications Security (CCS)","author":"Huang Jian","year":"2017","unstructured":"Jian Huang, Jun Xu, Xinyu Xing, Peng Liu, and Moinuddin K. Qureshi.2017. FlashGuard: Leveraging intrinsic flash properties to defend against encryption ransomware. In 24th ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_3_12_2","volume-title":"10th ACM Conference on Data and Application Security and Privacy (CODASPY)","author":"Wang Peiying","year":"2019","unstructured":"Peiying Wang, Shijie Jia, Bo Chen, Luning Xia, and Peng Liu.2019. MimosaFTL: Adding secure and practical ransomware defense strategy to flash translation layer. In 10th ACM Conference on Data and Application Security and Privacy (CODASPY)."},{"key":"e_1_3_3_13_2","volume-title":"38th International Conference on Distributed Computing Systems (ICDCS)","author":"Baek SungHa","year":"2018","unstructured":"SungHa Baek, Youngdon Jung, Aziz Mohaisen, Sungjin Lee, and DaeHun Nyang.2018. SSD-insider: Internal defense of solid-state drive against ransomware with perfect data recovery. In 38th International Conference on Distributed Computing Systems (ICDCS)."},{"key":"e_1_3_3_14_2","volume-title":"Proceedings of the Fourteenth EuroSys Conference (EuroSys)","author":"Wang Xiaohao","year":"2019","unstructured":"Xiaohao Wang, Yifan Yuan, You Zhou, Chance C. Coats, and Jian Huang. 2019. Project almanac: A time-traveling solid-state drive. In Proceedings of the Fourteenth EuroSys Conference (EuroSys)."},{"key":"e_1_3_3_15_2","article-title":"SSD-assisted ransomware detection and data recovery techniques","author":"Baek Sungha","year":"2021","unstructured":"Sungha Baek, Youngdon Jung, David Mohaisen, Sungjin Lee, and DaeHun Nyang. 2021. SSD-assisted ransomware detection and data recovery techniques. IEEE Transactions on Computers (TOC) (2021).","journal-title":"IEEE Transactions on Computers (TOC)"},{"key":"e_1_3_3_16_2","unstructured":"DataClinic. 2023. Soldered MacBook SSD\u2019s and the T2 Security Chip. Retrieved from https:\/\/www.dataclinic.co.uk\/soldered-macbook-ssds-and-the-t2-security-chip\/"},{"key":"e_1_3_3_17_2","unstructured":"Jai Vijayan. 2023. Rash of New Ransomware Variants Springs Up in the Wild. Retrieved from https:\/\/www.darkreading.com\/remote-workforce\/rash-new-ransomware-variants-in-the-wild"},{"key":"e_1_3_3_18_2","volume-title":"USENIX Security Symposium","author":"Wu Yuhao","year":"2023","unstructured":"Yuhao Wu, Jinwen Wang, Yujie Wang, Shixuan Zhai, Zihan Li, Yi He, Kun Sun, Qi Li, and Ning Zhang. 2023. Your firmware has arrived: A study of firmware update vulnerabilities. In USENIX Security Symposium."},{"key":"e_1_3_3_19_2","volume-title":"Network and Distributed System Security Symposium (NDSS)","author":"Cui Ang","year":"2013","unstructured":"Ang Cui, Michael Costello, and S. Stolfo. 2013. When firmware modifications attack: A case study of embedded exploitation. In Network and Distributed System Security Symposium (NDSS)."},{"key":"e_1_3_3_20_2","volume-title":"29th Annual Network and Distributed System Security Symposium, NDSS","author":"Tsang Ryan","year":"2022","unstructured":"Ryan Tsang, Doreen Joseph, Qiushi Wu, Soheil Salehi, Nadir Carreon, Prasant Mohapatra, and Houman Homayoun. 2022. FANDEMIC: Firmware attack construction and deployment on power management integrated circuit and impacts on IoT applications. In 29th Annual Network and Distributed System Security Symposium, NDSS."},{"key":"e_1_3_3_21_2","volume-title":"16th EAI International Conference on Security and Privacy in Communication Networks (SecureComm)","author":"Han Jaehyun","year":"2020","unstructured":"Jaehyun Han, Zhiqiang Lin, and Donald E. Porter. 2020. On the effectiveness of behavior-based ransomware detection. In 16th EAI International Conference on Security and Privacy in Communication Networks (SecureComm)."},{"key":"e_1_3_3_22_2","doi-asserted-by":"publisher","DOI":"10.1145\/3503222.3507773"},{"key":"e_1_3_3_23_2","volume-title":"European Conference on Computer Systems (EuroSys)","author":"He Jun","year":"2017","unstructured":"Jun He, Sudarsun Kannan, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. 2017. The unwritten contract of solid state drives. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_3_24_2","volume-title":"43rd Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN)","author":"Kim Jaeho","year":"2013","unstructured":"Jaeho Kim, Jongmin Lee, Jongmoo Choi, Donghee Lee, and Sam H. Noh. 2013. Improving SSD reliability with RAID via elastic striping and anywhere parity. In 43rd Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN)."},{"key":"e_1_3_3_25_2","unstructured":"Broadcom. 2024. Web Attack: Trojan.Winlock Download. Retrieved from https:\/\/www.broadcom.com\/support\/security-center\/attacksignatures\/detail?asid=26153"},{"key":"e_1_3_3_26_2","unstructured":"Craig Taylor. 2021. Leakware. Retrieved from https:\/\/cyberhoot.com\/cybrary\/leakware\/"},{"key":"e_1_3_3_27_2","unstructured":"Natalie Paskoski. 2022. Different Types of Ransomware Attacks. Retrieved from https:\/\/rhisac.org\/ransomware\/different-types-ransomware-attacks\/"},{"key":"e_1_3_3_28_2","unstructured":"ARM. 2019. Arm TrustZone Technology. Retrieved from https:\/\/developer.arm.com\/ip-products\/security-ip\/trustzone"},{"key":"e_1_3_3_29_2","unstructured":"Microsoft. 2024. Encrypted hard drives. Retrieved from https:\/\/learn.microsoft.com\/en-us\/windows\/security\/operating-system-security\/data-protection\/encrypted-hard-drive"},{"key":"e_1_3_3_30_2","unstructured":"Rahul Awati. 2019. SSD TRIM. Retrieved from https:\/\/searchstorage.techtarget.com\/definition\/TRIM"},{"key":"e_1_3_3_31_2","volume-title":"17th USENIX Conference on File and Storage Technologies (FAST)","author":"Bailleu Maurice","year":"2019","unstructured":"Maurice Bailleu, Jorg Thalheim, and Pramod Bhatotia.2019. Speicher: Securing LSM-based key-value stores using shielded execution. In 17th USENIX Conference on File and Storage Technologies (FAST)."},{"key":"e_1_3_3_32_2","doi-asserted-by":"publisher","DOI":"10.5555\/2685048.2685070"},{"key":"e_1_3_3_33_2","volume-title":"International Symposium on Research in Attacks, Intrusions, and Defenses, (RAID)","author":"Kharraz Amin","year":"2017","unstructured":"Amin Kharraz and Engin Kirda.2017. Redemption: Real-time protection against ransomware at end-hosts. In International Symposium on Research in Attacks, Intrusions, and Defenses, (RAID)."},{"key":"e_1_3_3_34_2","volume-title":"Computers and Electrical Engineering","author":"Cabaj Krzysztof","year":"2017","unstructured":"Krzysztof Cabaj, Marcin Gregorczyk, and Wojciech Mazurczyk. 2017. Software-defined networking-based crypto ransomware detection using HTTP traffic characteristics. In Computers and Electrical Engineering."},{"key":"e_1_3_3_35_2","volume-title":"Proceedings of the 56th Annual Design Automation Conference (DAC)","author":"Park Jisung","year":"2019","unstructured":"Jisung Park, Youngdon Jung, Jonghoon Won, Minji Kang, Sungjin Lee, and Jihong Kim. 2019. RansomBlocker: A low-overhead ransomware-proof SSD. In Proceedings of the 56th Annual Design Automation Conference (DAC)."},{"key":"e_1_3_3_36_2","volume-title":"18th ACM Asia Conference on Computer and Communications Security (ASIACCS)","author":"Ahn Jinwoo","year":"2020","unstructured":"Jinwoo Ahn, Junghee Lee, Yungwoo Ko, Donghyun Min, Jiyun Park, Sungyong Park, and Youngjae Kim.2020. DiskShield: A data tamper-resistant storage for intel SGX. In 18th ACM Asia Conference on Computer and Communications Security (ASIACCS)."},{"key":"e_1_3_3_37_2","unstructured":"CVE. 2023. Search CVE List. Retrieved from https:\/\/cve.mitre.org\/cve\/search_cve_list.html"},{"key":"e_1_3_3_38_2","volume-title":"22nd International Symposium on Research in Attacks, Intrusions, and Defenses (RAID)","author":"Mehnaz Shagufta","year":"2017","unstructured":"Shagufta Mehnaz, Anand Mudgerikar, and Elisa Bertino.2017. RWGuard: A real-time detection system against cryptographic ransomware. In 22nd International Symposium on Research in Attacks, Intrusions, and Defenses (RAID)."},{"key":"e_1_3_3_39_2","unstructured":"IBM. 2021. Mandatory access control (MAC). Retrieved from https:\/\/www.ibm.com\/docs\/en\/zos\/2.2.0?topic=environment-mandatory-access-control-mac"},{"key":"e_1_3_3_40_2","unstructured":"Intel. 2017. Protected File System with Intel Software Guard Extensions. Retrieved from https:\/\/cdrdv2-public.intel.com\/671174\/sgx-protected-file-system.pdf"},{"key":"e_1_3_3_41_2","doi-asserted-by":"publisher","DOI":"10.1145\/3190508.3190518"},{"key":"e_1_3_3_42_2","volume-title":"The Network and Distributed System Security Symposium (NDSS)","author":"Zhao Lianying","year":"2019","unstructured":"Lianying Zhao and Mohammad Mannan.2019. TEE-aided write protection against privileged data tampering. In The Network and Distributed System Security Symposium (NDSS)."},{"key":"e_1_3_3_43_2","unstructured":"Acronis. 2022. Acronis Ransomware Protection - Product Updates. Retrieved from https:\/\/www.acronis.com\/en-us\/support\/updates\/"},{"key":"e_1_3_3_44_2","unstructured":"Bitdefender. 2022. Bitdefender Endpoint Security Tools for Windows. Retrieved from https:\/\/www.bitdefender.com\/business\/support\/en\/77211-77540-windows-agent.html"},{"key":"e_1_3_3_45_2","unstructured":"HitmanPro. 2022. New Releases Updates and Builds for hitmanpro.alert. Retrieved from https:\/\/www.hitmanpro.com\/en-us\/whats-new\/hitmanpro.alert"},{"key":"e_1_3_3_46_2","unstructured":"MalwareBytes. 2022. Malwarebytes. Retrieved from https:\/\/malwarebytes-anti-malware.en.uptodown.com\/windows\/versions"},{"key":"e_1_3_3_47_2","unstructured":"ZoneAlarm. 2022. ZoneAlarm Anti-Ransomware release history official page. Retrieved from https:\/\/www.zonealarm.com\/anti-ransomware\/release-history"},{"key":"e_1_3_3_48_2","unstructured":"Zscaler. 2022. Release Upgrade Summary (2022). Retrieved from https:\/\/help.zscaler.com\/zia\/release-upgrade-summary-2022"},{"key":"e_1_3_3_49_2","volume-title":"2nd USENIX Conference on File and Storage Technologies (FAST)","author":"Sivathanu Muthian","year":"2003","unstructured":"Muthian Sivathanu, Vijayan Prabhakaran, Florentina I. Popovici, Timothy E. Denehy, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. 2003. Semantically-smart disk systems. In 2nd USENIX Conference on File and Storage Technologies (FAST)."},{"key":"e_1_3_3_50_2","article-title":"Filesystem-aware block storage system, apparatus, and method","author":"Terry Julian M","year":"2011","unstructured":"Julian M Terry, Neil A Clarkson, and Geoffrey S Barrall. 2011. Filesystem-aware block storage system, apparatus, and method. Google Patents (2011).","journal-title":"Google Patents"},{"key":"e_1_3_3_51_2","unstructured":"StorageReview. 2024. How To Upgrade SSD Firmware. Retrieved from https:\/\/www.storagereview.com\/how-to-upgrade-ssd-firmware"},{"key":"e_1_3_3_52_2","unstructured":"Philip Yip. 2024. Updating the Firmware of a Solid State Drive or Hard Drive. Retrieved from https:\/\/dellwindowsreinstallationguide.com\/updating-the-firmware-of-a-solid-state-drive-or-hard-drive\/"},{"key":"e_1_3_3_53_2","unstructured":"Microsoft. 2022. Updating drive firmware. Retrieved from https:\/\/learn.microsoft.com\/en-us\/windows-server\/storage\/update-firmware"},{"key":"e_1_3_3_54_2","unstructured":"2021. SSD Security Firmwares Features Tech Brief. Retrieved from https:\/\/www.micron.com\/content\/dam\/micron\/global\/public\/products\/technical-marketing-brief\/micron-ssd-security-features-tech-brief.pdf"},{"key":"e_1_3_3_55_2","volume-title":"Proceedings of the Fourth ACM Conference on Wireless Network Security","author":"Voris Jonathan","year":"2011","unstructured":"Jonathan Voris, Nitesh Saxena, and Tzipora Halevi. 2011. Accelerometers and randomness: Perfect together. In Proceedings of the Fourth ACM Conference on Wireless Network Security."},{"key":"e_1_3_3_56_2","unstructured":"Billy Givens. 2021. What is a USB security key and how do you use it? Retrieved from https:\/\/www.tomsguide.com\/news\/usb-security-key"},{"key":"e_1_3_3_57_2","doi-asserted-by":"crossref","unstructured":"Aritra Dhar Ivan Puddu Kari Kostianen and Srdjan Capkun. 2020. Proximitee: Hardened sgx attestation and trusted path through proximity verification.","DOI":"10.1145\/3374664.3375726"},{"key":"e_1_3_3_58_2","unstructured":"Stephan van Schaik Andrew Kwong Daniel Genkin and Yuval Yarom. 2020. SGAxe: How SGX Fails in Practice. Retrieved from https:\/\/sgaxeattack.com\/"},{"key":"e_1_3_3_59_2","volume-title":"40th IEEE Symposium on Security and Privacy (S&P)","author":"Kocher Paul","year":"2019","unstructured":"Paul Kocher, Jann Horn, Anders Fogh, Daniel Genkin, Daniel Gruss, Werner Haas, Mike Hamburg, Moritz Lipp, Stefan Mangard, Thomas Prescher, Michael Schwarz, and Yuval Yarom.2019. Spectre attacks: Exploiting speculative execution. In 40th IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_3_60_2","article-title":"ENCIDER: Detecting timing and cache side channels in SGX enclaves and cryptographic APIs","author":"Yavuz Tuba","year":"2023","unstructured":"Tuba Yavuz, Farhaan Fowze, Grant Hernandez, Ken Yihang Bai, Kevin R. B. Butler, and Dave Jing Tian. 2023. ENCIDER: Detecting timing and cache side channels in SGX enclaves and cryptographic APIs. IEEE Transactions on Dependable and Secure Computing (2023).","journal-title":"IEEE Transactions on Dependable and Secure Computing"},{"key":"e_1_3_3_61_2","unstructured":"OpenSSD. 2025. The OpenSSD Project. Retrieved from http:\/\/www.openssd-project.org\/"},{"key":"e_1_3_3_62_2","volume-title":"16th USENIX Conference on File and Storage Technologies (FAST)","author":"Li Huaicheng","year":"2018","unstructured":"Huaicheng Li, Mingzhe Hao, Michael Hao Tong, Swaminatahan Sundararaman, Matias Bj\u00f8rling, and Haryadi S. Gunawi.2018. The CASE of FEMU: Cheap, accurate, scalable and extensible flash emulator. In 16th USENIX Conference on File and Storage Technologies (FAST)."},{"key":"e_1_3_3_63_2","unstructured":"2023. Supercapacitors have the power to save you from data loss. Retrieved from https:\/\/www.theregister.com\/2014\/09\/24\/storage_supercapacitors\/"},{"key":"e_1_3_3_64_2","unstructured":"Samsung. 2014. Power loss protection (PLP): Protect your data against sudden power loss. Retrieved from https:\/\/download.semiconductor.samsung.com\/resources\/others\/Samsung_SSD_845DC_05_Power_loss_protection_PLP.pdf"},{"key":"e_1_3_3_65_2","unstructured":"Samsung. 2015. To be? or Not to be? Hold up capacitors in 2.5\u201d MIL SSDs. Retrieved from https:\/\/www.storagesearch.com\/zero-to-three-hold-up-times-in-mil-ssds.html#::text=Power%20hold%20up%20time%20in%200%20to in%20the%20event%20of%20sudden%20power%20loss"},{"key":"e_1_3_3_66_2","volume-title":"the Cybersecurity and Cyberforensics Conference (CCC)","author":"Moore Chris","year":"2016","unstructured":"Chris Moore. 2016. Detecting ransomware with honeypot techniques. In the Cybersecurity and Cyberforensics Conference (CCC)."},{"key":"e_1_3_3_67_2","unstructured":"Vincent Scarlata Simon Johnson James Beaney and Piotr \u017bmijewski. 2018. Supporting third party attestation for intel\u00ae SGX with intel\u00ae data center attestation primitives."},{"key":"e_1_3_3_68_2","unstructured":"Intel. 2024. Attestation Services for Intel Software Guard Extensions. Retrieved from https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/tools\/software-guard-extensions\/attestation-services.html"},{"key":"e_1_3_3_69_2","volume-title":"2019 IEEE Symposium on Security and Privacy (S&P)","author":"Meijer Carlo","year":"2019","unstructured":"Carlo Meijer and Bernard van Gastel. 2019. Self-encrypting deception: Weaknesses in the encryption of solid state drives. In 2019 IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_3_70_2","unstructured":"The Linux Kernel Archives. 2019. Ext4 Disk Layout. Retrieved from https:\/\/ext4.wiki.kernel.org\/index.php\/Ext4_Disk_Layout#Directory_Entries"},{"key":"e_1_3_3_71_2","unstructured":"Gary C. Kessler. 2024. GCK\u2019S FILE SIGNATURES TABLE. Retrieved from https:\/\/www.garykessler.net\/library\/file_sigs.html"},{"key":"e_1_3_3_72_2","unstructured":"NMAP. 2024. Nmap: the Network Mapper - Free Security Scanner. Retrieved from https:\/\/nmap.org\/"},{"key":"e_1_3_3_73_2","unstructured":"Nikto. 2024. Nikto web server scanner. Retrieved from https:\/\/github.com\/sullo\/nikto"},{"key":"e_1_3_3_74_2","unstructured":"Snort. 2024. Snort - Network Intrusion Detection & Prevention System. Retrieved from https:\/\/www.snort.org\/"},{"key":"e_1_3_3_75_2","volume-title":"International Conference on Information Security (ISC)","author":"Pont Jamie","year":"2020","unstructured":"Jamie Pont, Budiman Arief, and Julio Hernandez-Castro. 2020. Why current statistical approaches to ransomware detection fail. In International Conference on Information Security (ISC)."},{"key":"e_1_3_3_76_2","volume-title":"9th IEEE Consumer Communications and Networking Conference (CCNC)","author":"Ugarte-Pedrero Xabier","year":"2012","unstructured":"Xabier Ugarte-Pedrero, Igor Santos, Borja Sanz, Carlos Laorden, and Pablo Bringas. 2012. Countering entropy measure attacks on packed software detection. In 9th IEEE Consumer Communications and Networking Conference (CCNC)."},{"key":"e_1_3_3_77_2","unstructured":"Vincent Kang Fu. 2023. Flexible I\/O Tester. Retrieved from https:\/\/github.com\/axboe\/fio"},{"key":"e_1_3_3_78_2","unstructured":"LZ4. 2024. LZ4. Retrieved from http:\/\/lz4.github.io\/lz4\/"},{"key":"e_1_3_3_79_2","unstructured":"Harry Hutchins. 2023. The GNU G++ Compiler. Retrieved from https:\/\/faculty.cs.niu.eduh\/utchins\/csci241\/compiler.htm"},{"key":"e_1_3_3_80_2","unstructured":"RocksDB. 2024. RocksDB: A Persistent Key-Value Store. Retrieved from https:\/\/rocksdb.org\/"},{"key":"e_1_3_3_81_2","unstructured":"Michael Kerrisk. 2023. curl - Linux manual page. Retrieved from https:\/\/man7.org\/linux\/man-pages\/man1\/curl.1.html"},{"key":"e_1_3_3_82_2","unstructured":"Michael Kerrisk. 2023. grep - Linux manual page. Retrieved from https:\/\/man7.org\/linux\/man-pages\/man1\/grep.1.html"},{"key":"e_1_3_3_83_2","unstructured":"Michael Kerrisk. 2023. cp - Linux manual page. Retrieved from https:\/\/man7.org\/linux\/man-pages\/man1\/cp.1.html"},{"key":"e_1_3_3_84_2","unstructured":"Security News. 2023. A new variant from Chaos Ransomware family surfaces. Retrieved from https:\/\/www.sonicwall.com\/blog\/a-new-variant-from-chaos-ransomware-family-surfaces"},{"key":"e_1_3_3_85_2","unstructured":"Base64.Guru. 2024. Base64 Encoding Algorithm. Retrieved from https:\/\/base64.guru\/learn\/base64-algorithm\/encode"},{"key":"e_1_3_3_86_2","unstructured":"Die.net. 2023. ascii85(1) - Linux man page. Retrieved from https:\/\/linux.die.net\/man\/1\/ascii85"},{"key":"e_1_3_3_87_2","unstructured":"Yaser Sakkaf. 2023. Decision Trees: ID3 Algorithm Explained. Retrieved from https:\/\/towardsdatascience.com\/decision-trees-for-classification-id3-algorithm-explained-89df76e72df1"},{"key":"e_1_3_3_88_2","unstructured":"Intel. 2019. Intel Software Guard Extensions. Retrieved from https:\/\/software.intel.com\/en-us\/sgx"},{"key":"e_1_3_3_89_2","unstructured":"AMD. 2024. AMD Secure Encrypted Virtualization (SEV). Retrieved from https:\/\/www.amd.com\/en\/developer\/sev.html"},{"key":"e_1_3_3_90_2","volume-title":"11th USENIX Workshop on Offensive Technologies (WOOT 17)","author":"Brasser Ferdinand","year":"2017","unstructured":"Ferdinand Brasser, Urs M\u00fcller, Alexandra Dmitrienko, Kari Kostiainen, Srdjan Capkun, and Ahmad-Reza Sadeghi. 2017. Software grand exposure: SGX cache attacks are practical. In 11th USENIX Workshop on Offensive Technologies (WOOT 17)."},{"key":"e_1_3_3_91_2","volume-title":"26th USENIX Security Symposium (USENIX Security)","author":"Lee Sangho","year":"2017","unstructured":"Sangho Lee, Ming-Wei Shih, Prasun Gera, Taesoo Kim, Hyesoon Kim, and Marcus Peinado.2017. Inferring fine-grained control flow inside SGX enclaves with branch shadowing. In 26th USENIX Security Symposium (USENIX Security)."},{"key":"e_1_3_3_92_2","volume-title":"2015 IEEE Symposium on Security and Privacy (SP)","author":"Xu Yuanzhong","year":"2015","unstructured":"Yuanzhong Xu, Weidong Cui, and Marcus Peinado. 2015. Controlled-channel attacks: Deterministic side channels for untrusted operating systems. In 2015 IEEE Symposium on Security and Privacy (SP)."},{"key":"e_1_3_3_93_2","volume-title":"26th USENIX Security Symposium (USENIX Security)","author":"Bulck Jo Van","year":"2017","unstructured":"Jo Van Bulck, Nico Weichbrodt, R\u00fcdiger Kapitza, Frank Piessens, and Raoul Strackx. 2017. Telling your secrets without page faults: Stealthy page table-based attacks on enclaved execution. In 26th USENIX Security Symposium (USENIX Security)."},{"key":"e_1_3_3_94_2","volume-title":"Proceedings of the 11th European Workshop on Systems Security (EuroSec)","author":"Morbitzer Mathias","year":"2018","unstructured":"Mathias Morbitzer, Manuel Huber, Julian Horsch, and Sascha Wessel. 2018. SEVered: Subverting AMD\u2019s virtual machine encryption. In Proceedings of the 11th European Workshop on Systems Security (EuroSec)."},{"key":"e_1_3_3_95_2","volume-title":"Network and Distributed System Security Symposium (NDSS)","author":"Ahmad Adil","year":"2019","unstructured":"Adil Ahmad, Byunggill Joe, Yuan Xiao, Yinqian Zhang, Insik Shin, and Byoungyoung Lee. 2019. OBFUSCURO: A commodity obfuscation engine on intel SGX. In Network and Distributed System Security Symposium (NDSS)."},{"key":"e_1_3_3_96_2","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23284"},{"key":"e_1_3_3_97_2","volume-title":"2018 USENIX Annual Technical Conference (USENIX ATC 18)","author":"Oleksenko Oleksii","year":"2018","unstructured":"Oleksii Oleksenko, Bohdan Trach, Robert Krahn, Mark Silberstein, and Christof Fetzer. 2018. Varys: Protecting SGX enclaves from practical side-channel attacks. In 2018 USENIX Annual Technical Conference (USENIX ATC 18)."},{"key":"e_1_3_3_98_2","volume-title":"30th USENIX Security Symposium (USENIX Security)","author":"Bahmani Raad","year":"2021","unstructured":"Raad Bahmani, Ferdinand Brasser, Ghada Dessouky, Patrick Jauernig, Matthias Klimmek, Ahmad-Reza Sadeghi, and Emmanuel Stapf. 2021. CURE: A security architecture with customizable and resilient enclaves. In 30th USENIX Security Symposium (USENIX Security)."},{"key":"e_1_3_3_99_2","volume-title":"17th USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Ahmad Adil","year":"2023","unstructured":"Adil Ahmad, Alex Schultz, Byoungyoung Lee, and Pedro Fonseca. 2023. An extensible orchestration and protection framework for confidential cloud computing. In 17th USENIX Symposium on Operating Systems Design and Implementation (OSDI)."},{"key":"e_1_3_3_100_2","unstructured":"The Linux Kernel. 2024. BFS Filesystem for Linux. Retrieved from https:\/\/docs.kernel.org\/filesystems\/bfs.html"},{"key":"e_1_3_3_101_2","unstructured":"AssemblyRequired. 2024. Make a Live USB to Boot From a USB Drive. Retrieved from https:\/\/www.instructables.com\/Make-a-Live-USB-to-boot-from-a-USB-drive\/"},{"key":"e_1_3_3_102_2","unstructured":"Statista. 2024. Ransomware families most frequently detected worldwide in 2023. Retrieved from https:\/\/www.statista.com\/statistics\/1382224\/ransomware-families-common-detected-worldwide\/"},{"key":"e_1_3_3_103_2","unstructured":"Jon Miller. 2023. Linux Ransomware Poses Significant Threat to Critical Infrastructure. Retrieved from https:\/\/www.darkreading.com\/vulnerabilities-threats\/linux-ransomware-poses-significant-threat-to-critical-infrastructure"},{"key":"e_1_3_3_104_2","unstructured":"Intel. 2019. Virtualizing Intel Software Guard Extensions with KVM and QEMU. Retrieved from https:\/\/software.intel.com\/en-us\/articles\/virtualizing-intel-software-guard-extensions-with-kvm-and-qemu"},{"key":"e_1_3_3_105_2","unstructured":"Intel. 2019. Intel Software Guard Extensions for Linux* OS. Retrieved from https:\/\/github.com\/intel\/linux-sgx"},{"key":"e_1_3_3_106_2","unstructured":"Intel. 2019. KVM-SGX. Retrieved from https:\/\/github.com\/intel\/kvm-sgx"},{"key":"e_1_3_3_107_2","unstructured":"Ali Mashtizadeh. 2019. Filebench - A Model Based File System Workload Generator. Retrieved from https:\/\/github.com\/filebench\/filebench"},{"key":"e_1_3_3_108_2","volume-title":"6th USENIX Conference on File and Storage Technologies (FAST)","author":"Narayanan Dushyanth","year":"2008","unstructured":"Dushyanth Narayanan, Austin Donnelly, and Antony Rowstron.2008. Write off-loading: Practical power management for enterprise storage. In 6th USENIX Conference on File and Storage Technologies (FAST)."},{"key":"e_1_3_3_109_2","article-title":"I\/O deduplication: Utilizing content similarity to improve I\/O performance","author":"Koller Ricardo","year":"2010","unstructured":"Ricardo Koller and Raju Rangaswami. 2010. I\/O deduplication: Utilizing content similarity to improve I\/O performance. ACM Transactions on Storage (2010).","journal-title":"ACM Transactions on Storage"},{"key":"e_1_3_3_110_2","unstructured":"VirusTotal. 2023. VirusTotal. Retrieved from https:\/\/www.virustotal.com\/gui\/home\/upload"},{"key":"e_1_3_3_111_2","unstructured":"Github. 2019. TheZoo - A Live Malware Repository. Retrieved from https:\/\/github.com\/ytisf\/theZoo"},{"key":"e_1_3_3_112_2","unstructured":"Wine. 2019. Wine. Retrieved from https:\/\/www.winehq.org\/"},{"key":"e_1_3_3_113_2","unstructured":"Matt Hartley. 2023. The year of WINE on Linux. Retrieved from https:\/\/www.datamation.com\/open-source\/the-year-of-wine-on-linux\/"},{"key":"e_1_3_3_114_2","volume-title":"2016 Cybersecurity and Cyberforensics Conference (CCC)","author":"Moore Chris","year":"2016","unstructured":"Chris Moore. 2016. Detecting ransomware with honeypot techniques. In 2016 Cybersecurity and Cyberforensics Conference (CCC)."},{"key":"e_1_3_3_115_2","unstructured":"Cisco Talos. 2024. ClamAV. Retrieved from https:\/\/www.clamav.net\/"},{"key":"e_1_3_3_116_2","unstructured":"Sophos. 2024. Sophos Protection for Linux. Retrieved from https:\/\/docs.sophos.com\/central\/customer\/help\/en-us\/PeopleAndDevices\/ProtectDevices\/ServerProtection\/SophosProtectionLinux\/index.html"},{"key":"e_1_3_3_117_2","article-title":"What modern NVMe storage can do, and how to exploit it: High-performance I\/O for high-performance storage engines","author":"Haas Gabriel","year":"2023","unstructured":"Gabriel Haas and Viktor Leis. 2023. What modern NVMe storage can do, and how to exploit it: High-performance I\/O for high-performance storage engines. Proceedings of the VLDB Endowment (2023).","journal-title":"Proceedings of the VLDB Endowment"},{"key":"e_1_3_3_118_2","volume-title":"23th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)","author":"Taassori Meysam","year":"2018","unstructured":"Meysam Taassori, Ali Shafiee, and Rajeev Balasubramonian.2018. VAULT: Reducing paging overheads in SGX with efficient integrity verification structures. In 23th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_3_119_2","volume-title":"2020 IEEE 38th International Conference on Computer Design (ICCD)","author":"Wu Suzhen","year":"2020","unstructured":"Suzhen Wu, Jindong Zhou, Weidong Zhu, Hong Jiang, Zhijie Huang, Zhirong Shen, and Bo Mao. 2020. EaD: A collision-free and high performance deduplication scheme for flash storage systems. In 2020 IEEE 38th International Conference on Computer Design (ICCD)."},{"key":"e_1_3_3_120_2","doi-asserted-by":"crossref","DOI":"10.1109\/TPDS.2021.3052028","article-title":"Co-active: A workload-aware collaborative cache management scheme for NVMe SSDs","author":"Sun Hui","year":"2021","unstructured":"Hui Sun, Shangshang Dai, Jianzhong Huang, and Xiao Qin. 2021. Co-active: A workload-aware collaborative cache management scheme for NVMe SSDs. IEEE Transactions on Parallel and Distributed Systems (2021).","journal-title":"IEEE Transactions on Parallel and Distributed Systems"},{"key":"e_1_3_3_121_2","volume-title":"Proceedings of the 6th USENIX Conference on File and Storage Technologies (FAST)","author":"Kim Hyojun","year":"2008","unstructured":"Hyojun Kim and Seongjun Ahn. 2008. BPLRU: A buffer management scheme for improving random writes in flash storage. In Proceedings of the 6th USENIX Conference on File and Storage Technologies (FAST)."},{"key":"e_1_3_3_122_2","unstructured":"Zaira Hira. 2023. How to Securely Erase a Disk and File using the Linux shred Command. Retrieved from https:\/\/www.freecodecamp.org\/news\/securely-erasing-a-disk-and-file-using-linux-command-shred\/"},{"key":"e_1_3_3_123_2","unstructured":"GCC the GNU Compiler Collection. Retrieved from https:\/\/gcc.gnu.org\/"},{"key":"e_1_3_3_124_2","unstructured":"Git. 2023. Git. Retrieved from https:\/\/git-scm.com\/"},{"key":"e_1_3_3_125_2","unstructured":"GNU. 2023. GNU Wget. Retrieved from https:\/\/www.gnu.org\/software\/wget\/"},{"key":"e_1_3_3_126_2","unstructured":"GZIP. 2024. GZIP. Retrieved from https:\/\/www.gzip.org\/"},{"key":"e_1_3_3_127_2","unstructured":"Dropbox. 2023. Dropbox. Retrieved from https:\/\/www.dropbox.com\/"},{"key":"e_1_3_3_128_2","article-title":"Confidential VMs explained: An empirical analysis of AMD SEV-SNP and intel TDX","author":"Misono Masanori","year":"2024","unstructured":"Masanori Misono, Dimitrios Stavrakakis, Nuno Santos, and Pramod Bhatotia. 2024. Confidential VMs explained: An empirical analysis of AMD SEV-SNP and intel TDX. Proceedings of ACM Measurements and Analysis of Computing Systems (2024).","journal-title":"Proceedings of ACM Measurements and Analysis of Computing Systems"},{"key":"e_1_3_3_129_2","volume-title":"15th USENIX Conference on File and Storage Technologies (FAST)","author":"Yan Shiqin","year":"2017","unstructured":"Shiqin Yan, Huaicheng Li, Mingzhe Hao, Michael Hao Tong, Swaminatahan Sundararaman, Andrew A. Chien, and Haryadi S. Gunawi.2017. Tiny-tail flash: Near-perfect elimination of garbage collection tail latencies in NAND SSDs. In 15th USENIX Conference on File and Storage Technologies (FAST)."},{"key":"e_1_3_3_130_2","article-title":"DEPS: Exploiting a dynamic error prechecking scheme to improve the read performance of SSD","author":"Liu Weihua","year":"2021","unstructured":"Weihua Liu, Fei Wu, Meng Zhang, Chengmo Yang, Zhonghai Lu, Jiguang Wan, and Changsheng Xie. 2021. DEPS: Exploiting a dynamic error prechecking scheme to improve the read performance of SSD. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (2021).","journal-title":"IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems"},{"key":"e_1_3_3_131_2","article-title":"How big are peoples\u2019 computer files? File size distributions among user-managed collections","author":"Dinneen Jesse David","year":"2021","unstructured":"Jesse David Dinneen and Ba Xuan Nguyen. 2021. How big are peoples\u2019 computer files? File size distributions among user-managed collections. Proceedings of the Association for Information Science and Technology (2021).","journal-title":"Proceedings of the Association for Information Science and Technology"},{"key":"e_1_3_3_132_2","unstructured":"Aroop Menon. 2019. How will Intel\u2019s \u201cIce Lake\u201d redefine the scope of data security? Retrieved from https:\/\/fortanix.com\/blog\/2021\/04\/how-will-intels-ice-lake-redefine-the-scope-of-data-security\/"},{"key":"e_1_3_3_133_2","doi-asserted-by":"publisher","DOI":"10.1145\/3575693.3575744"},{"key":"e_1_3_3_134_2","article-title":"SGX-LKL: Securing the host os interface for trusted execution","author":"Priebe Christian","year":"2019","unstructured":"Christian Priebe, Divya Muthukumaran, Joshua Lind, Huanzhou Zhu, Shujie Cui, Vasily A. Sartakov, and Peter R. Pietzuch. 2019. SGX-LKL: Securing the host os interface for trusted execution. ArXiv (2019).","journal-title":"ArXiv"},{"key":"e_1_3_3_135_2","doi-asserted-by":"publisher","DOI":"10.1145\/3007788.3007796"},{"key":"e_1_3_3_136_2","volume-title":"2017 Recent Developments in Control, Automation & Power Engineering (RDCAPE)","author":"Maniath Sumith","year":"2017","unstructured":"Sumith Maniath, Aravind Ashok, Prabaharan Poornachandran, V.G. Sujadevi, Prem Sankar A.U., and Srinath Jan. 2017. Deep learning LSTM based ransomware detection. In 2017 Recent Developments in Control, Automation & Power Engineering (RDCAPE)."},{"key":"e_1_3_3_137_2","volume-title":"4th International Conference of Network and System Security (NSS)","author":"Gaspari Fabio De","year":"2020","unstructured":"Fabio De Gaspari, Dorjan Hitaj, Giulio Pagnotta, Lorenzo De Carli, and Luigi V Mancini. 2020. Encod: Distinguishing compressed and encrypted file fragments. In 4th International Conference of Network and System Security (NSS)."},{"key":"e_1_3_3_138_2","unstructured":"Md.Aminul Islam Sarker. 2024. Gzip Deflate Brotli and Zstd: Which Compression Algorithm Should You Use for Your Website? Retrieved from https:\/\/aminshamim.medium.com\/gzip-deflate-brotli-and-zstd-which-compression-algorithm-should-you-use-for-your-website-033ca5cfa7ca"},{"key":"e_1_3_3_139_2","unstructured":"NTFS overview. Retrieved from https:\/\/learn.microsoft.com\/en-us\/windows-server\/storage\/file-server\/ntfs-overview"},{"key":"e_1_3_3_140_2","unstructured":"Microsoft. 2024. Microsoft Extensible Firmware Initiative FAT32 File System Specification. Retrieved from https:\/\/www.cs.fsu.edu\/cop4610t\/assignments\/project3\/spec\/fatspec.pdf"},{"key":"e_1_3_3_141_2","volume-title":"2019 56th ACM\/IEEE Design Automation Conference (DAC)","author":"Jiang Zhenghong","year":"2019","unstructured":"Zhenghong Jiang, Hanchen Jin, G. Edward Suh, and Zhiru Zhang. 2019. Designing secure cryptographic accelerators with information flow enforcement: A case study on AES. In 2019 56th ACM\/IEEE Design Automation Conference (DAC)."},{"key":"e_1_3_3_142_2","volume-title":"IEICE Transactions on Information and Systems","author":"Yun Joobeom","year":"2017","unstructured":"Joobeom Yun, Junbeom Hur, Youngjoo Shin, and Dongyoung Koo.2017. CLDSafe: An efficient file backup system in cloud storage against ransomware. In IEICE Transactions on Information and Systems."},{"key":"e_1_3_3_143_2","volume-title":"Foundations of Intrusion Tolerant Systems, 2003 [Organically Assured and Survivable Information Systems]","author":"Strunk J.D.","year":"2003","unstructured":"J.D. Strunk, G.R. Goodson, M.L. Scheinholtz, C.A.N. Soules, and G.R. Ganger. 2003. Self-securing storage: Protecting data in compromised systems. In Foundations of Intrusion Tolerant Systems, 2003 [Organically Assured and Survivable Information Systems]."},{"key":"e_1_3_3_144_2","volume-title":"IEEE Symposium Series on Computational Intelligence (SSCI)","author":"Subedi Kul Prasad","year":"2017","unstructured":"Kul Prasad Subedi, Daya Ram Budhathoki, Bo Chen, and Dipankar Dasgupta.2017. RDS3: Ransomware defense strategy by using stealthily spare space. In IEEE Symposium Series on Computational Intelligence (SSCI)."}],"container-title":["ACM Transactions on Storage"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3767322","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,3]],"date-time":"2025-11-03T13:34:15Z","timestamp":1762176855000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3767322"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,3]]},"references-count":143,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2025,11,30]]}},"alternative-id":["10.1145\/3767322"],"URL":"https:\/\/doi.org\/10.1145\/3767322","relation":{},"ISSN":["1553-3077","1553-3093"],"issn-type":[{"value":"1553-3077","type":"print"},{"value":"1553-3093","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,11,3]]},"assertion":[{"value":"2024-08-28","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2025-07-28","order":2,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2025-11-03","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}