Bibtex of Guofei's Publications
@inproceedings{Gu_ACSAC09_botProber,
title = {Active Botnet Probing to Identify Obscure Command and Control Channels},
author = {Guofei Gu and Vinod Yegneswaran and Phillip Porras and Jennifer Stoll and Wenke Lee},
year = {2009},
month = {December},
booktitle = {Proceedings of 2009 Annual Computer Security Applications Conference (ACSAC'09)}
}
@inproceedings{Gu_Scurity08_BotMiner,
title = {{BotMiner}: Clustering Analysis of Network Traffic for Protocol- and Structure-Independent Botnet Detection},
author = {Guofei Gu and Roberto Perdisci and Junjie Zhang and Wenke Lee},
year = {2008},
booktitle = {Proceedings of the 17th USENIX Security Symposium (Security'08)}
}
@inproceedings{Gu_ASIACCS08_idsfusion,
title = {Principled Reasoning and Practical Applications of Alert Fusion in Intrusion Detection Systems},
author = {Guofei Gu and Alvaro A. Cardenas and Wenke Lee},
year = {2008},
month = {March},
booktitle = {Proceedings of the 2006 {ACM} Symposium on Information, Computer, and Communication Security ({ASIACCS}'08)}
}
@inproceedings{Gu_NDSS08_botsniffer,
title = {{BotSniffer}: Detecting Botnet Command and Control Channels in Network Traffic},
author = {Guofei Gu and Junjie Zhang and Wenke Lee},
year = {2008},
month = {February},
booktitle = {Proceedings of the 15th Annual Network and Distributed System Security Symposium (NDSS'08)}
}
@inproceedings{Dagon_ACSAC07_botax,
title = {A Taxonomy of Botnet Structures},
author = {David Dagon and Guofei Gu and Chris Lee and Wenke Lee},
year = {2007},
month = {December},
booktitle = {Proceedings of the 23 Annual Computer Security Applications Conference (ACSAC'07)}
}
@inproceedings{Gu_Securecomm07_whitehole,
title = {Misleading and Defeating Importance-Scanning Malware Propagation},
author = {Guofei Gu and Zesheng Chen and Phillip Porras and Wenke Lee},
year = {2007},
month = {September},
booktitle = {Proceedings of the 3rd International Conference on Security and Privacy in Communication Networks (SecureComm'07)}
}
@inproceedings{Gu_Scurity07_BotHunter,
title = {{BotHunter}: Detecting Malware Infection Through IDS-Driven Dialog Correlation},
author = {Guofei Gu and Phillip Porras and Vinod Yegneswaran and Martin Fong and Wenke Lee},
year = {2007},
month = {August},
booktitle = {Proceedings of the 16th USENIX Security Symposium (Security'07)}
}
@inproceedings{Perdisci_ICDM06_HardenPAYL,
title = {Using an Ensemble of One-Class SVM Classifiers to Harden Payload-based Anomaly Detection Systems},
author = {Roberto Perdisci and Guofei Gu and Wenke Lee},
year = {2006},
month = {December},
booktitle = {Proceedings of the IEEE International Conference on Data Mining ({ICDM'06})}
}
@inproceedings{Gu_ESORICS06_Framework,
title = {Towards an Information-Theoretic Framework for Analyzing Intrusion Detection Systems},
author = {Guofei Gu and Prahlad Fogla and David Dagon and Wenke Lee and Boris Skoric},
year = {2006},
month = {September},
booktitle = {Proceedings of the 11th European Symposium on Research in Computer Security ({ESORICS}'06)}
}
@inproceedings{Gu_ACNS06_DSO,
title = {{DSO: Dependable Signing Overlay}},
author = {Guofei Gu and Prahlad Fogla and Wenke Lee and Douglas Blough},
year = {2006},
month = {June},
booktitle = {Proceedings of the 2006 International Conference on Applied Cryptography and Network Security ({ACNS}'06)}
}
@inproceedings{Gu_ASIACCS06_CID,
title = {Measuring Intrusion Detection Capability: An Information-Theoretic Approach},
author = {Guofei Gu and Prahlad Fogla and David Dagon and Wenke Lee and Boris Skoric},
year = {2006},
month = {March},
booktitle = {Proceedings of the 2006 {ACM} Symposium on Information, Computer, and Communication Security ({ASIACCS}'06)}
}
@inproceedings{Shi_HPCA06_Infoshield,
title = {{InfoShield}: A Security Architecture for Protecting Information Usage in Memory},
author = {Weidong Shi and Hsien-Hsin Lee and Guofei Gu and Laura Falk and Trevor Mudge and Mrinmoy Ghosh},
year = {2006},
month = {March},
booktitle = {Proceedings of the 12th International Symposium on High-Performance Computer Architecture ({HPCA}'06)}
}
@inproceedings{Shi_ICAC05_Multiprocessor,
author = {Weidong Shi and Hsien-Hsin Lee and Guofei Gu and Laura Falk and Trevor Mudge and Mrinmoy
Ghosh},
title = {An Intrusion-Tolerant and Self-Recoverable Network Service System Using A Security Enhanced Chip Multiprocessor},
booktitle = {Proceedings of the Second International Conference on Automatic Computing ({ICAC}'05: )},
year = {2005},
isbn = {0-7965-2276-9},
pages = {263--273},
doi = {http://dx.doi.org/10.1109/ICAC.2005.8},
publisher = {IEEE Computer Society},
address = {Washington, DC, USA},
}
@inproceedings{Gu_ACSAC04_worm,
author = {Guofei Gu and Monirul Sharif and Xinzhou Qin and David Dagon and Wenke Lee and George Riley},
title = {Worm Detection, Early Warning and Response Based on Local Victim Information},
booktitle = {Proceedings of the 20th Annual Computer Security Applications Conference ({ACSAC}'04)},
year = {2004},
isbn = {0-7695-2252-1},
pages = {136--145},
doi = {http://dx.doi.org/10.1109/CSAC.2004.51},
publisher = {IEEE Computer Society},
address = {Washington, DC, USA},
}
@inproceedings{Dagon_RAID04_Honeystat,
title = {{HoneyStat}: Local Worm Detection Using Honeypots},
author = {David Dagon and Xinzhou Qin and Guofei Gu and Wenke Lee and Julian Grizzard and John Levine and Henry Owen},
year = {2004},
month = {September},
booktitle = {Proceedings of the 7th International Symposium on Recent Advances in Intrusion Detection ({RAID}'04)}
}
@inproceedings{Gu_ACNS03_PLI,
title = {{PLI: A New Framework to Protect Digital Content for P2P Networks}},
author = {Guofei Gu and Bin Zhu and Shipeng Li and Shiyong Zhang},
year = {2003},
month = {October},
booktitle = {Proceedings of the 2003 International Conference on Applied Cryptography and Network Security ({ACNS}'03)}
}