{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T08:24:43Z","timestamp":1743063883467,"version":"3.40.3"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030830069"},{"type":"electronic","value":"9783030830076"}],"license":[{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021]]},"DOI":"10.1007\/978-3-030-83007-6_8","type":"book-chapter","created":{"date-parts":[[2021,7,20]],"date-time":"2021-07-20T06:02:50Z","timestamp":1626760970000},"page":"158-183","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Model-Based Threat Modeling for\u00a0Cyber-Physical Systems: A\u00a0Computer-Aided Approach"],"prefix":"10.1007","author":[{"given":"Monika","family":"Maidl","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gerhard","family":"M\u00fcnz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Stefan","family":"Seltzsam","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Marvin","family":"Wagner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Roman","family":"Wirtz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Maritta","family":"Heisel","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2021,7,21]]},"reference":[{"key":"8_CR1","doi-asserted-by":"publisher","unstructured":"Adams, S.C., Carter, B.T., Fleming, C.H., Beling, P.A.: Selecting system specific cybersecurity attack patterns using topic modeling. In: 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications\/12th IEEE International Conference on Big Data Science and Engineering, TrustCom\/BigDataSE 2018, New York, NY, USA, 1\u20133 August 2018, pp. 490\u2013497 (2018). https:\/\/doi.org\/10.1109\/TrustCom\/BigDataSE.2018.00076","DOI":"10.1109\/TrustCom\/BigDataSE.2018.00076"},{"key":"8_CR2","doi-asserted-by":"publisher","unstructured":"Almorsy, M., Grundy, J., Ibrahim, A.S.: Automated software architecture security risk analysis using formalized signatures. In: 35th International Conference on Software Engineering, ICSE 2013, San Francisco, CA, USA, 18\u201326 May 2013, pp. 662\u2013671 (2013). https:\/\/doi.org\/10.1109\/ICSE.2013.6606612","DOI":"10.1109\/ICSE.2013.6606612"},{"key":"8_CR3","doi-asserted-by":"publisher","first-page":"56","DOI":"10.1007\/978-3-319-30806-7_4","volume-title":"Proceedings of the Engineering Secure Software and Systems - 8th International Symposium, ESSoS 2016, London, UK, 6\u20138 April 2016","author":"BJ Berger","year":"2016","unstructured":"Berger, B.J., Sohr, K., Koschke, R.: Automatically extracting threats from extended data flow diagrams. In: Caballero, J., Bodden, E., Athanasopoulos, E. (eds.) Proceedings of the Engineering Secure Software and Systems - 8th International Symposium, ESSoS 2016, London, UK, 6\u20138 April 2016, pp. 56\u201371. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-30806-7_4"},{"key":"8_CR4","unstructured":"Blakley, B., Heath, C.: The open group security forum: security design patterns. Technical guide. TheOpen Group (2004)"},{"key":"8_CR5","unstructured":"BSI: Industrial control system security - top 10 threats and countermeasures 2016. Bsi-cs 005e|version 1.20 of 08\/01\/2016, federal office for information security (BSI) (2016). https:\/\/www.allianz-fuer-cybersicherheit.de\/ACS\/DE\/_\/downloads\/BSI-CS_005E.pdf?__blob=publicationFile&v=3"},{"key":"8_CR6","unstructured":"Dahl, H., Hogganvik, I., St\u00f8len, K.: Structured semantics for the CORAS security risk modelling language. In: Proceedings of 2nd International Workshop on Interoperability solutions on Trust, Security, Policies and QoS for Enhanced Enterprise Systems (IS-TSPQ\u201907) (2007)"},{"issue":"1","key":"8_CR7","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/s00766-010-0115-7","volume":"16","author":"M Deng","year":"2011","unstructured":"Deng, M., Wuyts, K., Scandariato, R., Preneel, B., Joosen, W.: A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements. Requir. Eng. 16(1), 3\u201332 (2011). https:\/\/doi.org\/10.1007\/s00766-010-0115-7","journal-title":"Requir. Eng."},{"issue":"3","key":"8_CR8","doi-asserted-by":"publisher","first-page":"129","DOI":"10.1109\/TDSC.2007.70240","volume":"5","author":"ST Halkidis","year":"2008","unstructured":"Halkidis, S.T., Tsantalis, N., Chatzigeorgiou, A., Stephanides, G.: Architectural risk analysis of software systems based on security patterns. IEEE Trans. Dependable Secur. Comput. 5(3), 129\u2013142 (2008). https:\/\/doi.org\/10.1109\/TDSC.2007.70240","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"8_CR9","unstructured":"IEC 62443: Industrial communication networks - network and system security - security for industrial automation and control systems. In: International Standard, International Electrotechnical Commission (IEC) (2013\u20132018)"},{"key":"8_CR10","doi-asserted-by":"crossref","unstructured":"Khan, R., McLaughlin, K., Laverty, D., Sezer, S.: Stride-based threat modeling for cyber-physical systems. In: 2017 IEEE PES Innovative Smart Grid Technologies Conference Europe (ISGT-Europe), pp. 1\u20136. IEEE (2017)","DOI":"10.1109\/ISGTEurope.2017.8260283"},{"key":"8_CR11","unstructured":"Kohnfelder, L., Grag, P.: The threats to our products. Technical report. Microsoft Co-oporation (2009). https:\/\/adam.shostack.org\/microsoft\/The-Threats-To-Our-Products.docx"},{"key":"8_CR12","doi-asserted-by":"publisher","unstructured":"Li, T., Paja, E., Mylopoulos, J., Horkoff, J., Beckers, K.: Security attack analysis using attack patterns. In: 2016 IEEE Tenth International Conference on Research Challenges in Information Science (RCIS), pp. 1\u201313 (2016). https:\/\/doi.org\/10.1109\/RCIS.2016.7549303","DOI":"10.1109\/RCIS.2016.7549303"},{"key":"8_CR13","doi-asserted-by":"publisher","unstructured":"Maidl, M., M\u00fcnz, G., Seltzsam, S., Wagner, M., Wirtz, R., Heisel, M.: Threat modeling for cyber-physical systems: a two-dimensional taxonomy approach for structuring attack actions. In: van Sinderen, M., Fill, H., Maciaszek, L.A. (eds.) Proceedings of the 15th International Conference on Software Technologies, ICSOFT 2020, Lieusaint, Paris, France, 7\u20139 July 2020, pp. 160\u2013171. ScitePress (2020). https:\/\/doi.org\/10.5220\/0009829901600171","DOI":"10.5220\/0009829901600171"},{"key":"8_CR14","doi-asserted-by":"publisher","unstructured":"Maidl, M., Wirtz, R., Zhao, T., Heisel, M., Wagner, M.: Pattern-based modeling of cyber-physical systems for analyzing security. In: Proceedings of the 24th European Conference on Pattern Languages of Programs. EuroPLop 2019, pp. 23:1\u201323:10. ACM, New York, NY, USA (2019). https:\/\/doi.org\/10.1145\/3361149.3361172. https:\/\/doi.acm.org\/10.1145\/3361149.3361172","DOI":"10.1145\/3361149.3361172"},{"key":"8_CR15","unstructured":"MITRE: Common Attack Pattern Enumeration and Classification (CAPEC). https:\/\/capec.mitre.org (2019)"},{"key":"8_CR16","unstructured":"Shevchenko, N., Frye, B.R., Woody, C.: Threat modeling for cyber-physical system-of-systems: methods evaluation. Carnegie Mellon University Software Engineering Institute. Technical report (2018)"},{"key":"8_CR17","volume-title":"Threat Modeling - Designing for Security","author":"A Shostack","year":"2014","unstructured":"Shostack, A.: Threat Modeling - Designing for Security, 1st edn. Wiley, Hoboken (2014)","edition":"1"},{"key":"8_CR18","volume-title":"EMF: Eclipse Modeling Framework 2.0","author":"D Steinberg","year":"2009","unstructured":"Steinberg, D., Budinsky, F., Paternostro, M., Merks, E.: EMF: Eclipse Modeling Framework 2.0, 2nd edn. Addison-Wesley Professional, Boston (2009)","edition":"2"},{"key":"8_CR19","doi-asserted-by":"publisher","first-page":"275","DOI":"10.1016\/j.jss.2018.06.073","volume":"144","author":"K Tuma","year":"2018","unstructured":"Tuma, K., Calikli, G., Scandariatoa, R.: Threat analysis of software systems: a systematic literature review. J. Syst. Softw. 144, 275\u2013294 (2018)","journal-title":"J. Syst. Softw."},{"issue":"4","key":"8_CR20","doi-asserted-by":"publisher","first-page":"734","DOI":"10.1016\/j.csi.2013.12.008","volume":"36","author":"AV Uzunov","year":"2014","unstructured":"Uzunov, A.V., Fern\u00e1ndez, E.B.: An extensible pattern-based library and taxonomy of security threats for distributed systems. Comput. Stand. Interfaces 36(4), 734\u2013747 (2014)","journal-title":"Comput. Stand. Interfaces"},{"key":"8_CR21","doi-asserted-by":"publisher","first-page":"53","DOI":"10.1016\/j.cose.2019.03.010","volume":"84","author":"W Xiong","year":"2019","unstructured":"Xiong, W., Lagerstr\u00f6m, R.: Threat modeling - a systematic literature review. Comput. Secur. 84, 53\u201369 (2019). https:\/\/doi.org\/10.1016\/j.cose.2019.03.010","journal-title":"Comput. Secur."}],"container-title":["Communications in Computer and Information Science","Software Technologies"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-83007-6_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,7,20]],"date-time":"2021-07-20T06:05:19Z","timestamp":1626761119000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-83007-6_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021]]},"ISBN":["9783030830069","9783030830076"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-83007-6_8","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2021]]},"assertion":[{"value":"21 July 2021","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICSOFT","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Software Technologies","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2020","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"7 July 2020","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"9 July 2020","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"icsoft2020","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/www.icsoft.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Primoris","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"95","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"12","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"13% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}