{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,2]],"date-time":"2025-08-02T05:24:35Z","timestamp":1754112275966},"publisher-location":"Cham","reference-count":23,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030328719"},{"type":"electronic","value":"9783030328726"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-32872-6_17","type":"book-chapter","created":{"date-parts":[[2019,10,10]],"date-time":"2019-10-10T23:04:24Z","timestamp":1570748664000},"page":"255-269","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Automated Model-Based Attack Tree Analysis Using HiP-HOPS"],"prefix":"10.1007","author":[{"given":"Declan","family":"Whiting","sequence":"first","affiliation":[]},{"given":"Ioannis","family":"Sorokos","sequence":"additional","affiliation":[]},{"given":"Yiannis","family":"Papadopoulos","sequence":"additional","affiliation":[]},{"given":"Gilbert","family":"Regan","sequence":"additional","affiliation":[]},{"given":"Eoin","family":"O\u2019Carroll","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2019,10,11]]},"reference":[{"key":"17_CR1","unstructured":"Adam Freeman, A.J.: Programming .Net Security, 1 edn. O\u2019Reilly Media, Sebastopol (2003)"},{"issue":"1","key":"17_CR2","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1109\/TDSC.2004.2","volume":"1","author":"A Avizienis","year":"2004","unstructured":"Avizienis, A., Laprie, J.C., Randell, B., Landwehr, C.: Basic concepts and taxonomy of dependable and secure computing. IEEE Trans. Dependable Secur. Comput. 1(1), 11\u201333 (2004)","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"issue":"3","key":"17_CR3","doi-asserted-by":"publisher","first-page":"256","DOI":"10.1016\/S0167-4048(03)00313-4","volume":"22","author":"PJ Brooke","year":"2003","unstructured":"Brooke, P.J., Paige, R.F.: Fault trees for security system design and analysis. Comput. Secur. 22(3), 256\u2013264 (2003)","journal-title":"Comput. Secur."},{"key":"17_CR4","doi-asserted-by":"publisher","first-page":"110","DOI":"10.1016\/j.jlamp.2016.08.006","volume":"87","author":"M Bugliesi","year":"2017","unstructured":"Bugliesi, M., Calzavara, S., Focardi, R.: Formal methods for web security. J. Logical Algebraic Methods Program. 87, 110\u2013126 (2017)","journal-title":"J. Logical Algebraic Methods Program."},{"key":"17_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"235","DOI":"10.1007\/11962977_19","volume-title":"Critical Information Infrastructures Security","author":"A Buldas","year":"2006","unstructured":"Buldas, A., Laud, P., Priisalu, J., Saarepera, M., Willemson, J.: Rational choice of security measures via multi-parameter attack trees. In: Lopez, J. (ed.) CRITIS 2006. LNCS, vol. 4347, pp. 235\u2013248. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11962977_19"},{"key":"17_CR6","doi-asserted-by":"crossref","unstructured":"Cardenas, A.A., Amin, S., Sastry, S.: Secure control: towards survivable cyber-physical systems. In: 2008 The 28th International Conference on Distributed Computing Systems Workshops, pp. 495\u2013500. IEEE (2008)","DOI":"10.1109\/ICDCS.Workshops.2008.40"},{"key":"17_CR7","unstructured":"Chong, S., et al.: Report on the NSF workshop on formal methods for security. arXiv preprint arXiv:1608.00678 (2016)"},{"key":"17_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"221","DOI":"10.1007\/978-3-319-47072-6_15","volume-title":"Data Privacy Management and Security Assurance","author":"SJ De","year":"2016","unstructured":"De, S.J., Le M\u00e9tayer, D.: PRIAM: a privacy risk analysis methodology. In: Livraga, G., Torra, V., Aldini, A., Martinelli, F., Suri, N. (eds.) DPM\/QASA -2016. LNCS, vol. 9963, pp. 221\u2013229. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-47072-6_15"},{"key":"17_CR9","doi-asserted-by":"publisher","unstructured":"Joint Task Force Transformation Initiative: Security and privacy controls for federal information systems and organizations. Technical report NIST SP 800\u201353r4, National Institute of Standards and Technology (2013). https:\/\/doi.org\/10.6028\/NIST.SP.800-53r4 , https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-53r4.pdf","DOI":"10.6028\/NIST.SP.800-53r4"},{"key":"17_CR10","doi-asserted-by":"publisher","unstructured":"Joshi, A., Miller, S., Whalen, M., Heimdahl, M.: A proposal for model-based safety analysis. In: 24th Digital Avionics Systems Conference. IEEE (2005). https:\/\/doi.org\/10.1109\/dasc.2005.1563469","DOI":"10.1109\/dasc.2005.1563469"},{"key":"17_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"163","DOI":"10.1007\/978-3-319-64119-5_11","volume-title":"Model-Based Safety and Assessment","author":"S Kabir","year":"2017","unstructured":"Kabir, S., et al.: A model-based extension to HiP-HOPS for dynamic fault propagation studies. In: Bozzano, M., Papadopoulos, Y. (eds.) IMBSA 2017. LNCS, vol. 10437, pp. 163\u2013178. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-64119-5_11"},{"key":"17_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"128","DOI":"10.1007\/11787044_11","volume-title":"Model Driven Architecture \u2013 Foundations and Applications","author":"DS Kolovos","year":"2006","unstructured":"Kolovos, D.S., Paige, R.F., Polack, F.A.C.: The epsilon object language (EOL). In: Rensink, A., Warmer, J. (eds.) ECMDA-FA 2006. LNCS, vol. 4066, pp. 128\u2013142. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11787044_11"},{"key":"17_CR13","series-title":"LNCS","doi-asserted-by":"publisher","first-page":"80","DOI":"10.1007\/978-3-642-19751-2_6","volume-title":"Formal Aspects of Security and Trust","author":"B Kordy","year":"2011","unstructured":"Kordy, B., Mauw, S., Radomirovi\u0107, S., Schweitzer, P.: Foundations of attack-defense trees. In: Degano, P., Etalle, S., Guttman, J. (eds.) FAST 2010. LNCS, vol. 6561, pp. 80\u201395. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-19751-2_6"},{"key":"17_CR14","doi-asserted-by":"crossref","unstructured":"Lee, E.A.: Cyber physical systems: design challenges. In: 2008 11th IEEE International Symposium on Object and Component-Oriented Real-Time Distributed Computing (ISORC), pp. 363\u2013369. IEEE (2008)","DOI":"10.1109\/ISORC.2008.25"},{"key":"17_CR15","doi-asserted-by":"crossref","unstructured":"Oates, R., Thom, F., Herries, G.: Security-aware, model-based systems engineering with SysML. In: Proceedings of the 1st International Symposium on ICS & SCADA Cyber Security Research, pp. 78\u201387. BCS (2013)","DOI":"10.14236\/ewic\/ICSCSR2013.9"},{"key":"17_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"139","DOI":"10.1007\/3-540-48249-0_13","volume-title":"Computer Safety, Reliability and Security","author":"Y Papadopoulos","year":"1999","unstructured":"Papadopoulos, Y., McDermid, J.A.: Hierarchically performed hazard origin and propagation studies. In: Felici, M., Kanoun, K. (eds.) SAFECOMP 1999. LNCS, vol. 1698, pp. 139\u2013152. Springer, Heidelberg (1999). https:\/\/doi.org\/10.1007\/3-540-48249-0_13"},{"key":"17_CR17","doi-asserted-by":"publisher","first-page":"170","DOI":"10.1016\/j.arcontrol.2016.04.008","volume":"41","author":"Y Papadopoulos","year":"2016","unstructured":"Papadopoulos, Y., et al.: A synthesis of logic and bio-inspired techniques in the design of dependable systems. Ann. Rev. Control 41, 170\u2013182 (2016)","journal-title":"Ann. Rev. Control"},{"issue":"11","key":"17_CR18","doi-asserted-by":"publisher","first-page":"2715","DOI":"10.1109\/TAC.2013.2266831","volume":"58","author":"F Pasqualetti","year":"2013","unstructured":"Pasqualetti, F., D\u00f6rfler, F., Bullo, F.: Attack detection and identification in cyber-physical systems. IEEE Trans. Autom. Control 58(11), 2715\u20132729 (2013)","journal-title":"IEEE Trans. Autom. Control"},{"key":"17_CR19","doi-asserted-by":"crossref","unstructured":"Rajkumar, R., Lee, I., Sha, L., Stankovic, J.: Cyber-physical systems: the next computing revolution. In: Design Automation Conference, pp. 731\u2013736. IEEE (2010)","DOI":"10.1145\/1837274.1837461"},{"key":"17_CR20","doi-asserted-by":"crossref","unstructured":"Rivera, J.: Cyber security via formal methods: a framework for implementing formal methods. In: 2017 International Conference on Cyber Conflict (CyCon US), pp. 76\u201381. IEEE (2017)","DOI":"10.1109\/CYCONUS.2017.8167500"},{"key":"17_CR21","doi-asserted-by":"crossref","unstructured":"Schneider, D., Trapp, M., Papadopoulos, Y., Armengaud, E., Zeller, M., H\u00f6fig, K.: Wap: digital dependability identities. In: 2015 IEEE 26th International Symposium on Software Reliability Engineering (ISSRE), pp. 324\u2013329. IEEE (2015)","DOI":"10.1109\/ISSRE.2015.7381825"},{"issue":"4","key":"17_CR22","doi-asserted-by":"publisher","first-page":"624","DOI":"10.1016\/j.compeleceng.2011.04.010","volume":"37","author":"JN Whitley","year":"2011","unstructured":"Whitley, J.N., Phan, R.C.W., Wang, J., Parish, D.J.: Attribution of attack trees. Comput. Electr. Eng. 37(4), 624\u2013628 (2011)","journal-title":"Comput. Electr. Eng."},{"issue":"20","key":"17_CR23","doi-asserted-by":"publisher","first-page":"2933","DOI":"10.1016\/j.ins.2005.08.004","volume":"176","author":"R YAGER","year":"2006","unstructured":"Yager, R.R.: Owa trees and their role in security modeling using attack trees. Inf. Sci. 176(20), 2933\u20132959 (2006). https:\/\/doi.org\/10.1016\/j.ins.2005.08.004 , http:\/\/www.sciencedirect.com\/science\/article\/pii\/S0020025505002598","journal-title":"Information Sciences"}],"container-title":["Lecture Notes in Computer Science","Model-Based Safety and Assessment"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-32872-6_17","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,12,9]],"date-time":"2019-12-09T04:25:15Z","timestamp":1575865515000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-32872-6_17"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030328719","9783030328726"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-32872-6_17","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"11 October 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"IMBSA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Symposium on Model-Based Safety and Assessment","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Thessaloniki","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Greece","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16 October 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 October 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"imbsa2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/easyconferences.eu\/imbsa2019\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"46","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"24","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"52% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}