{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T01:00:04Z","timestamp":1740099604300,"version":"3.37.3"},"publisher-location":"Cham","reference-count":16,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030365363"},{"type":"electronic","value":"9783030365370"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-36537-0_8","type":"book-chapter","created":{"date-parts":[[2019,11,26]],"date-time":"2019-11-26T23:46:17Z","timestamp":1574811977000},"page":"155-185","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Poster Support for an Obeya-Like Risk Management Approach"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-2123-5370","authenticated-orcid":false,"given":"St\u00e9phane","family":"Paul","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9953-5360","authenticated-orcid":false,"given":"Paul","family":"Varela","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,11,28]]},"reference":[{"key":"8_CR1","unstructured":"ANSSI. EBIOS Risk Manager, version 1.0 (in French). Agence Nationale de la S\u00e9curit\u00e9 des Syst\u00e8mes d\u2019Information, Paris (2018)"},{"key":"8_CR2","unstructured":"ISO\/IEC 27005. Information technology\u2014Security techniques\u2014Information security risk management. International Organization for Standardization\/International Electrotechnical Commission, Geneva (2018)"},{"key":"8_CR3","unstructured":"NIST SP800-64r2. Security Considerations in the System Development Life Cycle. National Institute of Standards and Technology, Gaithersburg (2008)"},{"key":"8_CR4","unstructured":"47-DDQ-GRP-EN. Cybersecurity Engineering Guide (commercial-in-confidence). Thales Chorus 2.0. Accessed 31 Jan 2018"},{"key":"8_CR5","unstructured":"CESG. HMG IA Standard Numbers 1 & 2, Information Risk Management. National Technical Authority for Information Assurance, Cheltenham, Gloucestershire, UK (2012)"},{"key":"8_CR6","unstructured":"CESG. HMG IA Standard Numbers 1 & 2 \u2013 Supplement, Technical Risk Assessment and Risk Treatment. National Technical Authority for Information Assurance, Cheltenham, Gloucestershire, UK (2012)"},{"key":"8_CR7","unstructured":"Lockheed Martin. The Cyber Kill Chain. \nhttps:\/\/www.lockheedmartin.com\/en-us\/capabilities\/cyber\/cyber-kill-chain.html\n\n. Accessed 6 March 2019"},{"key":"8_CR8","unstructured":"OMG. Software & Systems Process Engineering Metamodel (SPEM). Object Management Group (2008)"},{"key":"8_CR9","unstructured":"ANSSI. EBIOS Risk Manager Accreditation: Tools to support Cybersecurity Risk Management (in French only) (2019). \nhttps:\/\/www.ssi.gouv.fr\/administration\/management-du-risque\/la-methode-ebios-risk-manager\/label-ebios-risk-manager-des-outils-pour-faciliter-le-management-du-risque-numerique\/\n\n. Accessed 16 May 2019"},{"key":"8_CR10","unstructured":"RiskOversee. Tool-up your EBIOS analysis. ALL4TEC (2019). \nhttps:\/\/www.riskoversee.com\/en\/cyber-architect-en\/\n\n. Accessed 16 May 2019"},{"key":"8_CR11","unstructured":"KapIt. Digital Visual Management for Lean & Agile companies. \nhttps:\/\/www.iobeya.com\/\n\n. Accessed 22 May 2019"},{"key":"8_CR12","unstructured":"Framasoft. Framemo. \nhttps:\/\/framemo.org\/demo\n\n. Accessed 22 May 2019"},{"key":"8_CR13","unstructured":"IEC 62443-3-3. Industrial communication networks - Network and system security - Part 3\u20133: System security requirements and security levels. International Electrotechnical Commission (2013)"},{"key":"8_CR14","unstructured":"IEC 62443. Industrial communication networks - Network and system security. Industrial Automation and Control System Security Committee of the International Society for Automation (ISA)"},{"key":"8_CR15","unstructured":"NIST SP 800-53. Security and Privacy Controls for Federal Information Systems Federal Information Systems, Special Publication 800-53, Revision 4. National Institute of Standards and Technology, Gaithersburg (2013)"},{"key":"8_CR16","unstructured":"DMD-TC. WAEA Specification 0395, Content Delivery for In-Flight Entertainment. Digital Media Distribution Technical Committee of the World Airline Entertainment Association Technology Committee (WAEA-TC), Virginia, USA (2001)"}],"container-title":["Lecture Notes in Computer Science","Graphical Models for Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-36537-0_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,11,26]],"date-time":"2019-11-26T23:49:46Z","timestamp":1574812186000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-36537-0_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030365363","9783030365370"],"references-count":16,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-36537-0_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"28 November 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"GraMSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Workshop on Graphical Models for Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Hoboken, NJ","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 June 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 June 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"gramsec2019a","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/gramsec.uni.lu\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"15","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"8","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"53% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3.5","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}