{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,30]],"date-time":"2026-06-30T18:42:09Z","timestamp":1782844929390,"version":"3.54.5"},"publisher-location":"Cham","reference-count":33,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030118891","type":"print"},{"value":"9783030118907","type":"electronic"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-11890-7_59","type":"book-chapter","created":{"date-parts":[[2019,1,28]],"date-time":"2019-01-28T10:39:57Z","timestamp":1548671997000},"page":"612-621","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":12,"title":["Cognitive Security for Incident Management Process"],"prefix":"10.1007","author":[{"given":"Roberto","family":"Andrade","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jenny","family":"Torres","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Susana","family":"Cadena","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2019,1,29]]},"reference":[{"key":"59_CR1","doi-asserted-by":"crossref","unstructured":"Nugraha, A., Legowo, N.: Implementation of incident management for data services using ITIL V3 in telecommunication operator company. In: 2017 International Conference on Applied Computer and Communication Technologies (ComCom), pp. 1\u20136 (2017)","DOI":"10.1109\/COMCOM.2017.8167093"},{"key":"59_CR2","doi-asserted-by":"crossref","unstructured":"Krichene, J., Boudriga N.: Incident response probabilistic cognitive maps. In: 2008 IEEE International Symposium on Parallel and Distributed Processing with Applications, pp. 689\u2013694 (2008)","DOI":"10.1109\/ISPA.2008.33"},{"key":"59_CR3","doi-asserted-by":"crossref","unstructured":"Berenjian, S., Shajari, M., Farshid, N., Hatamian, M.: Intelligent automated intrusion response system based on fuzzy decision making and risk assessment. In: 2016 IEEE 8th International Conference on Intelligent Systems (IS), pp. 709\u2013714 (2016)","DOI":"10.1109\/IS.2016.7737389"},{"key":"59_CR4","doi-asserted-by":"crossref","unstructured":"Latrache, A., Nfaoui, H., Boumhidi, J.: Multi agent based incident management system according to ITIL. In: 2015 Intelligent Systems and Computer Vision (ISCV), pp. 1\u20137 (2015)","DOI":"10.1109\/ISACV.2015.7105552"},{"key":"59_CR5","doi-asserted-by":"publisher","first-page":"263","DOI":"10.1007\/978-3-319-04483-5_27","volume-title":"Distributed Computing and Internet Technology","author":"Arkadeep Kundu","year":"2014","unstructured":"Kundu, A., Ghosh, S. K.: Game theoretic attack response framework for enterprise networks. In: Distributed Computing and Internet Technology, pp. 263\u2013274 (2014)"},{"key":"59_CR6","first-page":"99","volume-title":"Advances in Intelligent and Soft Computing","author":"Ver\u00f3nica Mateos Lanchas","year":"2010","unstructured":"Lanchas, V.M., Gonz\u00e1lez, V.A.V., Bueno, F.R.: Ontologies-based automated intrusion response system. In: Herrero, \u00c1., Corchado, E., Redondo, C., Alonso, \u00c1 (eds.) Computational Intelligence in Security for Information Systems 2010. AISC, vol. 85. Springer, Heidelberg (2010)"},{"key":"59_CR7","unstructured":"NIST: Roadmap for Improving Critical Infrastructure Cybersecurity (2014). \nhttps:\/\/www.nist.gov\/"},{"key":"59_CR8","unstructured":"Grispos, G., Glisson, W., Storer, T.: Rethinking security incident response: the integration of agile principles. In: 20th Americas Conference on Information Systems, Journal, Dagstuhl Reports (2014)"},{"key":"59_CR9","unstructured":"IBM: Applied Cognitive Security: Complementing the Security Analyst (2017). \nhttps:\/\/www.rsaconference.com\/writable\/presentations"},{"key":"59_CR10","unstructured":"Johannes, W.: Limits to Effectiveness in Computer Security Incident Response Teams (2005). \nhttps:\/\/resources.sei.cmu.edu\/library\/"},{"key":"59_CR11","doi-asserted-by":"crossref","unstructured":"Killcrece, G., Kossakowski, K.-P., Ruefle, R., Zajicek, M.: State of the Practice of Computer Security Incident Response Teams. Software Engineering Institute, Carnegie Mellon University (2003)","DOI":"10.21236\/ADA421664"},{"key":"59_CR12","unstructured":"Denyer, D., Tranfield, D.: Producing a systematic review. In: The Sage Handbook of Organizational Research Methods, pp. 671\u2013689 (2009)"},{"issue":"4","key":"59_CR13","doi-asserted-by":"publisher","first-page":"557","DOI":"10.1016\/j.ijinfomgt.2016.03.007","volume":"36","author":"E Costa","year":"2016","unstructured":"Costa, E., Soares, A.L., de Sousa, J.P.: Information, knowledge and collaboration management in the internationalisation of SMEs: a systematic literature review. Int. J. Inf. Manag. 36(4), 557\u2013569 (2016)","journal-title":"Int. J. Inf. Manag."},{"issue":"3","key":"59_CR14","doi-asserted-by":"publisher","first-page":"943","DOI":"10.1007\/s11192-012-0761-2","volume":"94","author":"G Guilera","year":"2013","unstructured":"Guilera, G., Barrios, M., G\u00f3mez-Benito, J.: Meta-analysis in psychology: a bibliometric study. Scientometrics 94(3), 943\u2013954 (2013)","journal-title":"Scientometrics"},{"key":"59_CR15","unstructured":"IETF: RFC2196 Site Security Handbook (1997). \nhttp:\/\/www.rfc-editor.org\/rfc\/pdfrfc\/rfc2196.txt.pdf"},{"key":"59_CR16","unstructured":"IETF: RFC2235 Hobbes\u2019 Internet Timeline (1997). \nhttps:\/\/tools.ietf.org\/html\/rfc2235\n\n. Accessed 9 Sept 2018"},{"key":"59_CR17","doi-asserted-by":"crossref","unstructured":"Alberts, C., Dorofee, A., Killcrece, G., Ruefle, R., Zajicek, M.: Defining Incident Management Processes for CSIRTs: A Work in Progress. Carnegie Mellon University, Software Engineering Institute (2004)","DOI":"10.21236\/ADA453378"},{"key":"59_CR18","doi-asserted-by":"crossref","unstructured":"Killcrece, G., Kossakowski, K.-P., Ruefle, R., Zajicek, M.: Organizational Models for Computer Security Incident Response Teams. Software Engineering Institute, Carnegie Mellon University (2003)","DOI":"10.21236\/ADA421684"},{"key":"59_CR19","unstructured":"SANS: Incident Handler\u2019s Handbook (2005). \nhttps:\/\/www.sans.org\/"},{"key":"59_CR20","unstructured":"ITIL: Information Technology Infrastructure Library (2011). \nhttps:\/\/www.axelos.com\/best-practice-solutions\/itil"},{"key":"59_CR21","unstructured":"NIST: Computer Security Incident Handling Guide (2012). \nhttps:\/\/csrc.nist.gov\/publications"},{"key":"59_CR22","unstructured":"SANS: Incident Handler\u2019s Handbook (2005). \nhttps:\/\/www.sans.org\/reading-room\/whitepapers"},{"key":"59_CR23","unstructured":"ENISA: Good Practice Guide for Incident Management (2010). \nhttps:\/\/www.enisa.europa.eu\/publications\/"},{"key":"59_CR24","unstructured":"ISO: ISO\/IEC 27035:2016 Information technology - security techniques \u2013 information security incident management (2016). \nhttps:\/\/www.iso.org\/"},{"key":"59_CR25","first-page":"1","volume":"12","author":"A Shameli-Sendi","year":"2012","unstructured":"Shameli-Sendi, A., Ezzati-Jivan, N., Jabbarifar, M., Dagenais, M.: Intrusion response systems: survey and taxonomy. Int. J. Comput. Sci. Netw. Secur. (IJCSNS) 12, 1\u201314 (2012)","journal-title":"Int. J. Comput. Sci. Netw. Secur. (IJCSNS)"},{"key":"59_CR26","doi-asserted-by":"publisher","first-page":"395","DOI":"10.1109\/TPDS.2013.211","volume":"25","author":"S Zonouz","year":"2014","unstructured":"Zonouz, S., Khurana, H., Sanders, W., Yardley, T.: RRE: a game-theoretic intrusion response and recovery engine. J. IEEE Trans. Parallel Distrib. Syst. 25, 395\u2013406 (2014)","journal-title":"J. IEEE Trans. Parallel Distrib. Syst."},{"key":"59_CR27","doi-asserted-by":"publisher","first-page":"473","DOI":"10.1002\/sec.730","volume":"7","author":"Y Luo","year":"2014","unstructured":"Luo, Y., Szidarovszky, F., Al-Nashif, Y., Hariri, S.: A fictitious play-based response strategy for multistage intrusion defense systems. J. Secur. Commun. Netw. 7, 473\u2013491 (2014)","journal-title":"J. Secur. Commun. Netw."},{"key":"59_CR28","doi-asserted-by":"publisher","first-page":"2465","DOI":"10.1016\/j.eswa.2009.07.079","volume":"37","author":"M Chengpo","year":"2010","unstructured":"Chengpo, M., Yingjiu, L.: An intrusion response decision-making model based on hierarchical task network planning. J. Expert Syst. Appl. 37, 2465\u20132472 (2010)","journal-title":"J. Expert Syst. Appl."},{"key":"59_CR29","doi-asserted-by":"publisher","first-page":"367","DOI":"10.1007\/s10207-013-0222-9","volume":"13","author":"A Shameli-Sendi","year":"2014","unstructured":"Shameli-Sendi, A., Dagenais, M.: ARITO: cyber-attack response system using accurate risk impact tolerance. Int. J. Inf. Secur. 13, 367\u2013390 (2014)","journal-title":"Int. J. Inf. Secur."},{"key":"59_CR30","doi-asserted-by":"publisher","first-page":"755","DOI":"10.1109\/TDSC.2016.2615622","volume":"15","author":"A Shameli-Sendi","year":"2018","unstructured":"Shameli-Sendi, A., Louafi, H., Cheriet, M.: Dynamic optimal countermeasure selection for intrusion response system. IEEE Trans. Dependable Secur. Comput. 15, 755\u2013770 (2018)","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"59_CR31","doi-asserted-by":"publisher","first-page":"4","DOI":"10.1145\/3168446","volume":"13","author":"S Iannucci","year":"2018","unstructured":"Iannucci, S., Abdelwahed, S.: Model-based response planning strategies for autonomic intrusion protection. ACM Trans. Auton. Adapt. Syst. 13, 4 (2018)","journal-title":"ACM Trans. Auton. Adapt. Syst."},{"key":"59_CR32","unstructured":"IBM: Applied cognitive security complementing the security analyst (2017). \nhttps:\/\/www.rsaconference.com"},{"key":"59_CR33","unstructured":"NIST: Cybersecurity Framework (2018). \nhttps:\/\/www.nist.gov\/cyberframework\/"}],"container-title":["Advances in Intelligent Systems and Computing","Information Technology and Systems"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-11890-7_59","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,5,28]],"date-time":"2020-05-28T17:19:29Z","timestamp":1590686369000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-11890-7_59"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030118891","9783030118907"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-11890-7_59","relation":{},"ISSN":["2194-5357","2194-5365"],"issn-type":[{"value":"2194-5357","type":"print"},{"value":"2194-5365","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"29 January 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICITS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Technology & Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Quito","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Ecuador","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 February 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"8 February 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"icits2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/www.icits.me\/index.php?lang=en","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}