{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,1,23]],"date-time":"2025-01-23T08:10:03Z","timestamp":1737619803530,"version":"3.33.0"},"publisher-location":"Boston, MA","reference-count":33,"publisher":"Springer US","isbn-type":[{"type":"print","value":"9780387754611"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1007\/978-0-387-75462-8_8","type":"book-chapter","created":{"date-parts":[[2007,11,6]],"date-time":"2007-11-06T23:53:00Z","timestamp":1194393180000},"page":"99-115","source":"Crossref","is-referenced-by-count":0,"title":["Securing Current and Future Process Control Systems"],"prefix":"10.1007","author":[{"given":"Robert","family":"Cunningham","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Steven","family":"Cheung","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Fong","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ulf","family":"Lindqvist","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"David","family":"Nicol","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ronald","family":"Pawlowski","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eric","family":"Robinson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"William","family":"Sanders","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sankalp","family":"Singh","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alfonso","family":"Valdes","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bradley","family":"Woodworth","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Michael","family":"Zhivich","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"8_CR1_","unstructured":"3Com Corporation, 3Com embedded firewall solution ( www.3com. com\/ other\/pdfs\/products\/en US\/400741. pdf ), 2006."},{"key":"8_CR2_","volume-title":"Oil and gas industry partner- ship with government to improve cyber security","author":"T Aubuchon","year":"2006","unstructured":"T. Aubuchon, I. Susanto and B. Peterson, Oil and gas industry partner- ship with government to improve cyber security, presented at the SPE International Oil and Gas Conference, 2006."},{"key":"8_CR3_","volume-title":"SCADASupervisory Control and Data Acquisition, Instrumen- tation, Systems and Automation Society","author":"S Boyer","year":"2004","unstructured":"S. Boyer, SCADA: Supervisory Control and Data Acquisition, Instrumen- tation, Systems and Automation Society, Research Triangle Park, North Carolina, 2004."},{"key":"8_CR4_","volume-title":"Worlds in collision: Eth- ernet on the plant floor","author":"E Byres","year":"2002","unstructured":"E. Byres, J. Carter, A. Elramly and D. Hoffman, Worlds in collision: Eth- ernet on the plant floor, Proceedings of the ISA Emerging Technologies Conference, 2002."},{"key":"8_CR5_","volume-title":"Using model-based intrusion detection for SCADA networks","author":"S Cheung","year":"2007","unstructured":"S. Cheung, B. Dutertre, M. Fong, U. Lindqvist, K. Skinner and A. Valdes, Using model-based intrusion detection for SCADA networks, presented at the SCADA Security Scientific Syposium, 2007."},{"key":"8_CR6_","unstructured":"Cisco Systems, Cisco security agent ( www.cisco. com\/en\/US\/products\/sw\/secursw\/ps5057\/index. html ), 2006."},{"key":"8_CR7_","unstructured":"C. Cowan, C. Pu, D. Maier, H. Hinton, J. Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle and Q. Zhang, StackGuard: Automatic adaptive detection and prevention of buffer overflow attacks, Proceedings of the Seventh USENIX Security Symposium, pp. 63-78, 1998."},{"key":"8_CR8_","unstructured":"Digital Bond, SCADA IDS signatures (digitalbond. com\/index. php\/category\/scada-ids), 2005."},{"key":"8_CR9_","unstructured":"Edison Design Group, C++ front end ( www.edg. com\/index. php?location=c frontend ), 2006."},{"key":"8_CR10_","volume-title":"Roadmap to Secure Control Systems in the Energy Sector","author":"J Eisenhauer","year":"2006","unstructured":"J. Eisenhauer, P. Donnelly, M. Elllis and M. O\u2019Brien, Roadmap to Secure Control Systems in the Energy Sector, Energetics, Columbia, Maryland, 2006."},{"key":"8_CR11_","unstructured":"Embedded C++ Technical Committee, The embedded C++ specification ( www.caravan. net\/ec2plus\/spec. html ), 2006."},{"issue":"1","key":"8_CR12_","doi-asserted-by":"publisher","first-page":"43","DOI":"10.1145\/203091.203094","volume":"5","author":"P Heidelberger","year":"1995","unstructured":"P. Heidelberger, Fast simulation of rare events in queueing and reliability models, ACM Transactions on Modeling and Computer Simulations, vol. 5(1), pp. 43-85, 1995.","journal-title":"ACM Transactions on Modeling and Computer Simulations"},{"key":"8_CR13_","unstructured":"V. Kiriansky, D. Bruening and S. Amarasinghe, Secure execution via program shepherding, Proceedings of the Eleventh USENIX Security Symposium, pp. 191-206, 2002."},{"key":"8_CR14_","volume-title":"Software development at a Baldridge winner: IBM Rochester","author":"R Lindner","year":"1991","unstructured":"R. Lindner, Software development at a Baldridge winner: IBM Rochester, presented at the Total Quality Management for Software Conference, 1991."},{"key":"8_CR15_","doi-asserted-by":"crossref","unstructured":"U. Lindqvist and P. Porras, Detecting computer and network misuse through the production-based expert system toolset (P-BEST), Proceed-ings of the IEEE Symposium on Security and Privacy, pp. 146-161, 1999.","DOI":"10.1109\/SECPRI.1999.766911"},{"key":"8_CR16_","unstructured":"National Institute of Standards and Technology, CVE-2004-0775: Buffer overflow in WIDCOMM Bluetooth Connectivity Software (nvd. nist. gov\/ nvd. cfm?cvename=CVE-2004-0775), 2005."},{"key":"8_CR17_","unstructured":"National Institute of Standards and Technology, CVE-2004-1390: Multiple buffer overflows in the PPPoE daemon (nvd. nist. gov\/nvd. cfm?cvename =CVE-2004-1390), 2005."},{"key":"8_CR18_","unstructured":"National Institute of Standards and Technology, National Vulnerability Database Version 2. 0 (nvd. nist. gov), 2007."},{"key":"8_CR19_","unstructured":"National Security Agency, Security-enhanced Linux ( www.nsa. gov\/selinux\/index. cfm )."},{"key":"8_CR20_","unstructured":"netfilter. org, The netfilter. org iptables project ( www. )."},{"key":"8_CR21_","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2003.1254326","volume-title":"PSOS revisited","author":"P Neumann","year":"2003","unstructured":"P. Neumann and R. Feiertag, PSOS revisited, Proceedings of the Nineteenth Annual Computer Security Applications Conference, pp. 208-216, 2003."},{"key":"8_CR22_","volume-title":"Hackers target energy industry","author":"C Piller","year":"2002","unstructured":"C. Piller, Hackers target energy industry, Los Angeles Times, July 8, 2002."},{"key":"8_CR23_","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1007\/3-540-36084-0_6","volume-title":"Recent Advances in Intrusion Detection (LNCS 2516)","author":"P Porras","year":"2002","unstructured":"P. Porras, M. Fong and A. Valdes, A mission-impact-based approach to INFOSEC alarm correlation, in Recent Advances in Intrusion Detection (LNCS 2516), A. Wespi, G. Vigna and L. Deri (Eds. ), Springer, Berlin- Heilderberg, pp. 95-114, 2002."},{"key":"8_CR24_","unstructured":"M. Roesch, Snort: Lightweight intrusion detection for networks, presented at the Thirteenth USENIX Systems Administration Conference, 1999."},{"key":"8_CR25_","unstructured":"O. Ruwase and M. Lam, A practical dynamic buffer overflow detector, Proceedings of the Network and Distributed System Security Symposium, pp. 159-169, 2004."},{"key":"8_CR26_","doi-asserted-by":"crossref","unstructured":"S. Singh, J. Lyons and D. Nicol, Fast model-based penetration testing, Proceedings of the 2004 Winter Simulation Conference, pp. 309-317, 2004.","DOI":"10.1109\/WSC.2004.1371331"},{"key":"8_CR27_","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-41015-8","volume-title":"Trusted Computing Platforms: Design and Applications","author":"S Smith","year":"2005","unstructured":"S. Smith, Trusted Computing Platforms: Design and Applications, Springer, New York, 2005."},{"key":"8_CR28_","volume-title":"Guide to Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems Security -Initial Public Draft","author":"K Stouffer","year":"2006","unstructured":"K. Stouffer, J. Falco and K. Kent, Guide to Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems Security -Initial Public Draft, National Institute of Standards and Technology, Gaithersburg, Maryland, 2006."},{"key":"8_CR29_","doi-asserted-by":"publisher","first-page":"80","DOI":"10.1007\/3-540-39945-3_6","volume-title":"Recent Advances in Intrusion Detection (LNCS 1907)","author":"A Valdes","year":"2000","unstructured":"A. Valdes and K. Skinner, Adaptive model-based monitoring for cyber attack detection, in Recent Advances in Intrusion Detection (LNCS 1907), H. Debar, L. Me and S. Wu (Eds. ), Springer, Berlin-Heilderberg, pp. 80-92, 2000."},{"key":"8_CR30_","doi-asserted-by":"publisher","first-page":"54","DOI":"10.1007\/3-540-45474-8_4","volume-title":"Recent Advances in Intrusion Detection (LNCS 2212)","author":"A Valdes","year":"2001","unstructured":"A. Valdes and K. Skinner, Probabilistic alert correlation, in Recent Advances in Intrusion Detection (LNCS 2212), W. Lee, L. Me and A. Wespi (Eds. ), Springer, Berlin-Heidelberg, pp. 54-68, 2001."},{"issue":"6","key":"8_CR31_","doi-asserted-by":"publisher","first-page":"62","DOI":"10.1109\/MC.2004.2","volume":"37","author":"A Wool","year":"2004","unstructured":"A. Wool, A quantitative study of firewall configuration errors, IEEE Computer, vol. 37(6), pp. 62-67, 2004.","journal-title":"IEEE Computer"},{"key":"8_CR32_","volume-title":"Detecting Buffer Overflows Using Testcase Synthesis and Code Instrumentation, M. S. Thesis, Department of Electrical Engineering and Computer Sciences","author":"M Zhivich","year":"2005","unstructured":"M. Zhivich, Detecting Buffer Overflows Using Testcase Synthesis and Code Instrumentation, M. S. Thesis, Department of Electrical Engineering and Computer Sciences, Massachusetts Institute of Technology, Cambridge, Massachusetts, 2005."},{"key":"8_CR33_","doi-asserted-by":"crossref","unstructured":"M. Zitser, R. Lippmann and T. Leek, Testing static analysis tools using exploitable buffer overflows from open-source code, Proceedings of the International Symposium on the Foundations of Software Engineering, pp. 97-106, 2004.","DOI":"10.1145\/1029894.1029911"}],"container-title":["IFIP International Federation for Information Processing","Critical Infrastructure Protection"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-0-387-75462-8_8.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,1,22]],"date-time":"2025-01-22T04:02:18Z","timestamp":1737518538000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-0-387-75462-8_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"ISBN":["9780387754611"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-0-387-75462-8_8","relation":{},"subject":[]}}