{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,8]],"date-time":"2025-09-08T06:11:39Z","timestamp":1757311899144,"version":"3.40.3"},"publisher-location":"Cham","reference-count":61,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030891367"},{"type":"electronic","value":"9783030891374"}],"license":[{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021]]},"DOI":"10.1007\/978-3-030-89137-4_1","type":"book-chapter","created":{"date-parts":[[2021,10,10]],"date-time":"2021-10-10T22:42:46Z","timestamp":1633905766000},"page":"3-17","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":16,"title":["SARR: A Cybersecurity Metrics and Quantification Framework (Keynote)"],"prefix":"10.1007","author":[{"given":"Shouhuai","family":"Xu","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2021,10,10]]},"reference":[{"key":"1_CR1","doi-asserted-by":"crossref","unstructured":"Charlton, J., Du, P., Cho, J., Xu, S.: Measuring relative accuracy of malware detectors in the absence of ground truth. In: Proceedings of IEEE MILCOM, pp. 450\u2013455 (2018)","DOI":"10.1109\/MILCOM.2018.8599730"},{"key":"1_CR2","unstructured":"Charlton, J., Du, P., Xu, S.: A new method for inferring ground-truth labels. In: Proceedings of SciSec (2021)"},{"key":"1_CR3","doi-asserted-by":"crossref","unstructured":"Chen, H., Cho, J., Xu, S.: Quantifying the security effectiveness of firewalls and DMZs. In: Proceedings of HoTSoS 2018, pp. 9:1\u20139:11 (2018)","DOI":"10.1145\/3190619.3190639"},{"key":"1_CR4","doi-asserted-by":"crossref","unstructured":"Chen, H., Cho, J., Xu, S.: Quantifying the security effectiveness of network diversity. In: Proceedings of HoTSoS 2018, p. 24:1 (2018)","DOI":"10.1145\/3190619.3191680"},{"issue":"5","key":"1_CR5","doi-asserted-by":"publisher","first-page":"e0124472","DOI":"10.1371\/journal.pone.0124472","volume":"10","author":"Y Chen","year":"2015","unstructured":"Chen, Y., Huang, Z., Xu, S., Lai, Y.: Spatiotemporal patterns and predictability of cyberattacks. PLoS ONE 10(5), e0124472 (2015)","journal-title":"PLoS ONE"},{"key":"1_CR6","doi-asserted-by":"crossref","unstructured":"Cheng, Y., Deng, J., Li, J., DeLoach, S., Singhal, A., Ou, X.: Metrics of security. In: Cyber Defense and Situational Awareness, pp. 263\u2013295 (2014)","DOI":"10.1007\/978-3-319-11391-3_13"},{"key":"1_CR7","doi-asserted-by":"crossref","unstructured":"Cho, J., Hurley, P., Xu, S.: Metrics and measurement of trustworthy systems. In: Proceedings IEEE MILCOM (2016)","DOI":"10.1109\/MILCOM.2016.7795500"},{"key":"1_CR8","doi-asserted-by":"crossref","unstructured":"Cho, J., Xu, S., Hurley, P., Mackay, M., Benjamin, T., Beaumont, M.: STRAM: measuring the trustworthiness of computer-based systems. ACM Comput. Surv. 51(6), 128:1\u2013128:47 (2019)","DOI":"10.1145\/3277666"},{"key":"1_CR9","unstructured":"National Research Council: Review of the Department of Homeland Security\u2019s Approach to Risk Analysis. The National Academies Press (2010)"},{"key":"1_CR10","unstructured":"INFOSEC Research Council. Hard problem list. http:\/\/www.infosec-research.org\/docs_public\/20051130-IRC-HPL-FINAL.pdf (2007)"},{"key":"1_CR11","doi-asserted-by":"crossref","unstructured":"Da, G., Xu, M., Xu, S.: A new approach to modeling and analyzing security of networked systems. In: Proceedings HotSoS 2014, pp. 6:1\u20136:12 (2014)","DOI":"10.1145\/2600176.2600184"},{"issue":"6","key":"1_CR12","first-page":"838","volume":"9","author":"W Dai","year":"2012","unstructured":"Dai, W., Parker, P., Jin, H., Xu, S.: Enhancing data trustworthiness via assured digital signing. IEEE TDSC 9(6), 838\u2013851 (2012)","journal-title":"IEEE TDSC"},{"issue":"12","key":"1_CR13","first-page":"2965","volume":"13","author":"P Du","year":"2018","unstructured":"Du, P., Sun, Z., Chen, H., Cho, J.H., Xu, S.: Statistical estimation of malware detection metrics in the absence of ground truth. IEEE T-IFS 13(12), 2965\u20132980 (2018)","journal-title":"IEEE T-IFS"},{"key":"1_CR14","doi-asserted-by":"crossref","unstructured":"Durumeric, Z., et al.: The matter of heartbleed. In: Proceedings IMC (2014)","DOI":"10.1145\/2663716.2663755"},{"key":"1_CR15","first-page":"2186","volume":"16","author":"Z Fang","year":"2021","unstructured":"Fang, Z., Xu, M., Xu, S., Hu, T.: A framework for predicting data breach risk: leveraging dependence to cope with sparsity. IEEE T-IFS 16, 2186\u20132201 (2021)","journal-title":"IEEE T-IFS"},{"key":"1_CR16","doi-asserted-by":"crossref","unstructured":"Goldreich, O.: The Foundations of Cryptography, vol. 1. Cambridge University Press (2001)","DOI":"10.1017\/CBO9780511546891"},{"issue":"4","key":"1_CR17","doi-asserted-by":"publisher","first-page":"498","DOI":"10.1111\/j.1539-6924.2009.01216.x","volume":"29","author":"YY Haimes","year":"2009","unstructured":"Haimes, Y.Y.: On the definition of resilience in systems. Risk Anal. 29(4), 498\u2013501 (2009)","journal-title":"Risk Anal."},{"key":"1_CR18","doi-asserted-by":"crossref","unstructured":"Han, Y., Lu, W., Xu, S.: Characterizing the power of moving target defense via cyber epidemic dynamics. In: HotSoS, pp. 1\u201312 (2014)","DOI":"10.1145\/2600176.2600180"},{"key":"1_CR19","doi-asserted-by":"crossref","unstructured":"Han, Y., Lu, W., Xu, S.: Preventive and reactive cyber defense dynamics with ergodic time-dependent parameters is globally attractive. IEEE TNSE, accepted for publication (2021)","DOI":"10.1109\/TNSE.2021.3098443"},{"key":"1_CR20","doi-asserted-by":"crossref","unstructured":"Harrison, K., Xu, S.: Protecting cryptographic keys from memory disclosures. In: IEEE\/IFIP DSN 2007, pp. 137\u2013143 (2007)","DOI":"10.1109\/DSN.2007.77"},{"issue":"4","key":"1_CR21","doi-asserted-by":"publisher","first-page":"561","DOI":"10.3233\/JCS-130475","volume":"21","author":"J Homer","year":"2013","unstructured":"Homer, J., et al.: Aggregating vulnerability metrics in enterprise networks using attack graphs. J. Comput. Secur. 21(4), 561\u2013597 (2013)","journal-title":"J. Comput. Secur."},{"issue":"459","key":"1_CR22","doi-asserted-by":"publisher","first-page":"925","DOI":"10.1198\/016214502760301264","volume":"97","author":"U Jensen","year":"2002","unstructured":"Jensen, U.: Probabilistic risk analysis: foundations and methods. J. Am. Stat. Assoc. 97(459), 925 (2002)","journal-title":"J. Am. Stat. Assoc."},{"key":"1_CR23","doi-asserted-by":"crossref","unstructured":"Kantchelian, A., et al.: Better malware ground truth: techniques for weighting anti-virus vendor labels. In: Proceedings AISec, pp. 45\u201356 (2015)","DOI":"10.1145\/2808769.2808780"},{"key":"1_CR24","unstructured":"Li, D., Li, Q., Ye, Y., Xu, S.: SoK: arms race in adversarial malware detection. CoRR, abs\/2005.11671 (2020)"},{"issue":"1","key":"1_CR25","first-page":"736","volume":"8","author":"D Li","year":"2021","unstructured":"Li, D., Li, Q., Ye, Y., Xu, S.: A framework for enhancing deep neural networks against adversarial malware. IEEE TNSE 8(1), 736\u2013750 (2021)","journal-title":"IEEE TNSE"},{"issue":"1","key":"1_CR26","first-page":"28","volume":"8","author":"X Li","year":"2011","unstructured":"Li, X., Parker, P., Xu, S.: A stochastic model for quantitative security analyses of networked systems. IEEE TDSC 8(1), 28\u201343 (2011)","journal-title":"IEEE TDSC"},{"issue":"3","key":"1_CR27","doi-asserted-by":"publisher","first-page":"1098","DOI":"10.1109\/TNET.2019.2912847","volume":"27","author":"Z Lin","year":"2019","unstructured":"Lin, Z., Lu, W., Xu, S.: Unified preventive and reactive cyber defense dynamics is still globally convergent. IEEE\/ACM ToN 27(3), 1098\u20131111 (2019)","journal-title":"IEEE\/ACM ToN"},{"key":"1_CR28","doi-asserted-by":"crossref","unstructured":"Lu, W., Xu, S., Yi, X.: Optimizing active cyber defense dynamics. In: Proceedings GameSec 2013, pp. 206\u2013225 (2013)","DOI":"10.1007\/978-3-319-02786-9_13"},{"key":"1_CR29","unstructured":"Lynch, N.: Distributed Algorithms. Morgan Kaufmann (1996)"},{"issue":"12","key":"1_CR30","first-page":"3217","volume":"14","author":"J Mireles","year":"2019","unstructured":"Mireles, J., Ficke, E., Cho, J., Hurley, P., Xu, S.: Metrics towards measuring cyber agility. IEEE T-IFS 14(12), 3217\u20133232 (2019)","journal-title":"IEEE T-IFS"},{"key":"1_CR31","unstructured":"Morales, J., Xu, S., Sandhu, R.: Analyzing malware detection efficiency with multiple anti-malware programs. In: Proceedings CyberSecurity (2012)"},{"key":"1_CR32","unstructured":"Nicol, D., et al.: The science of security 5 hard problems, August 2015. http:\/\/cps-vo.org\/node\/21590"},{"key":"1_CR33","doi-asserted-by":"publisher","first-page":"141","DOI":"10.1007\/978-3-319-66505-4_7","volume-title":"Network Security Metrics","author":"S Noel","year":"2017","unstructured":"Noel, S., Jajodia, S.: A suite of metrics for network attack graph analytics. In: Network Security Metrics, pp. 141\u2013176. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-66505-4_7"},{"issue":"3","key":"1_CR34","doi-asserted-by":"publisher","first-page":"356","DOI":"10.1111\/j.1539-6924.2012.01885.x","volume":"33","author":"J Park","year":"2013","unstructured":"Park, J., Seager, T.P., Rao, P.S.C., Convertino, M., Linkov, I.: Integrating risk and resilience approaches to catastrophe management in engineering systems. Risk Anal. 33(3), 356\u2013367 (2013)","journal-title":"Risk Anal."},{"key":"1_CR35","doi-asserted-by":"crossref","unstructured":"Pendleton, M., Garcia-Lebron, R., Cho, J., Xu, S.: A survey on systems security metrics. ACM Comput. Surv. 49(4), 62:1\u201362:35 (2016)","DOI":"10.1145\/3005714"},{"issue":"4","key":"1_CR36","doi-asserted-by":"publisher","first-page":"46","DOI":"10.1109\/MSP.2010.60","volume":"8","author":"SL Pfleeger","year":"2010","unstructured":"Pfleeger, S.L., Cunningham, R.K.: Why measuring security is hard. IEEE Secur. Priv. 8(4), 46\u201354 (2010)","journal-title":"IEEE Secur. Priv."},{"issue":"4","key":"1_CR37","doi-asserted-by":"publisher","first-page":"2704","DOI":"10.1109\/COMST.2017.2745505","volume":"19","author":"A Ramos","year":"2017","unstructured":"Ramos, A., Lazar, M., Filho, R.H., Rodrigues, J.J.P.C.: Model-based quantitative network security metrics: a survey. IEEE Commun. Surv. Tutor. 19(4), 2704\u20132734 (2017)","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"1_CR38","unstructured":"National Science and Technology Council: Trustworthy cyberspace: strategic plan for the federal cybersecurity research and development program (2011). https:\/\/www.nitrd.gov\/SUBCOMMITTEE\/csia\/Fed_Cybersecurity_RD_Strategic_Plan_2011.pdf"},{"key":"1_CR39","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66505-4","volume-title":"Network Security Metrics","author":"L Wang","year":"2017","unstructured":"Wang, L., Jajodia, S., Singhal, A.: Network Security Metrics. Network Security Metrics, Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-66505-4"},{"issue":"1","key":"1_CR40","first-page":"30","volume":"11","author":"L Wang","year":"2014","unstructured":"Wang, L., Jajodia, S., Singhal, A., Cheng, P., Noel, S.: k-zero day safety: a network security metric for measuring the risk of unknown vulnerabilities. IEEE TDSC 11(1), 30\u201344 (2014)","journal-title":"IEEE TDSC"},{"key":"1_CR41","doi-asserted-by":"crossref","unstructured":"Xu, L., et al.: KCRS: a blockchain-based key compromise resilient signature system. In: Proceedings BlockSys, pp. 226\u2013239 (2019)","DOI":"10.1007\/978-981-15-2777-7_19"},{"issue":"1","key":"1_CR42","doi-asserted-by":"publisher","first-page":"62","DOI":"10.1080\/15427951.2014.902407","volume":"11","author":"M Xu","year":"2015","unstructured":"Xu, M., Da, G., Xu, S.: Cyber epidemic models with dependences. Internet Math. 11(1), 62\u201392 (2015)","journal-title":"Internet Math."},{"issue":"4","key":"1_CR43","doi-asserted-by":"publisher","first-page":"508","DOI":"10.1080\/00401706.2016.1256841","volume":"59","author":"M Xu","year":"2017","unstructured":"Xu, M., Hua, L., Xu, S.: A vine copula model for predicting the effectiveness of cyber defense early-warning. Technometrics 59(4), 508\u2013520 (2017)","journal-title":"Technometrics"},{"issue":"11","key":"1_CR44","first-page":"2856","volume":"13","author":"M Xu","year":"2018","unstructured":"Xu, M., Schweitzer, K.M., Bateman, R.M., Xu, S.: Modeling and predicting cyber hacking breaches. IEEE T-IFS 13(11), 2856\u20132871 (2018)","journal-title":"IEEE T-IFS"},{"issue":"3","key":"1_CR45","doi-asserted-by":"publisher","first-page":"288","DOI":"10.1080\/15427951.2012.654480","volume":"8","author":"M Xu","year":"2012","unstructured":"Xu, M., Xu, S.: An extended stochastic model for quantitative security analysis of networked systems. Internet Math. 8(3), 288\u2013320 (2012)","journal-title":"Internet Math."},{"key":"1_CR46","doi-asserted-by":"crossref","unstructured":"Xu, S.: Emergent behavior in cybersecurity. In: Proceedings HotSoS, pp. 13:1\u201313:2 (2014)","DOI":"10.1145\/2600176.2600189"},{"key":"1_CR47","doi-asserted-by":"crossref","unstructured":"Xu, S.: Cybersecurity dynamics: a foundation for the science of cybersecurity. In: Proactive and Dynamic Network Defense, pp. 1\u201331 (2019)","DOI":"10.1007\/978-3-030-10597-6_1"},{"key":"1_CR48","doi-asserted-by":"crossref","unstructured":"Xu, S.: The cybersecurity dynamics way of thinking and landscape (invited paper). In: ACM Workshop on Moving Target Defense (2020)","DOI":"10.1145\/3411496.3421225"},{"issue":"3","key":"1_CR49","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2348832.2348835","volume":"7","author":"S Xu","year":"2012","unstructured":"Xu, S., Lu, W., Xu, L.: Push- and pull-based epidemic spreading in networks: thresholds and deeper insights. ACM TAAS 7(3), 1\u201326 (2012)","journal-title":"ACM TAAS"},{"issue":"4","key":"1_CR50","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2555613","volume":"8","author":"S Xu","year":"2014","unstructured":"Xu, S., Lu, W., Xu, L., Zhan, Z.: Adaptive epidemic dynamics in networks: thresholds and control. ACM TAAS 8(4), 1\u201319 (2014)","journal-title":"ACM TAAS"},{"issue":"1","key":"1_CR51","doi-asserted-by":"publisher","first-page":"30","DOI":"10.1109\/TDSC.2011.33","volume":"9","author":"S Xu","year":"2012","unstructured":"Xu, S., Lu, W., Zhan, Z.: A stochastic model of multivirus dynamics. IEEE Trans. Dependable Secure Comput. 9(1), 30\u201345 (2012)","journal-title":"IEEE Trans. Dependable Secure Comput."},{"key":"1_CR52","doi-asserted-by":"crossref","unstructured":"Xu, S., Yung, M.: Expecting the unexpected: towards robust credential infrastructure. In: Financial Crypto, pp. 201\u2013221 (2009)","DOI":"10.1007\/978-3-642-03549-4_12"},{"key":"1_CR53","doi-asserted-by":"crossref","unstructured":"Xu, S.: Cybersecurity dynamics. In: Proceedings HotSoS 2014, pp. 14:1\u201314:2 (2014)","DOI":"10.1145\/2600176.2600190"},{"issue":"1","key":"1_CR54","doi-asserted-by":"publisher","first-page":"23","DOI":"10.1080\/15427951.2013.830583","volume":"11","author":"X Shouhuai","year":"2015","unstructured":"Shouhuai, X., Wenlian, L., Li, H.: A stochastic model of active cyber defense dynamics. Internet Math. 11(1), 23\u201361 (2015)","journal-title":"Internet Math."},{"key":"1_CR55","unstructured":"Xu, S., Trivedi, K.: Report of the 2019 SATC pi meeting break-out session on \u201ccybersecurity metrics: Why is it so hard?\u201d (2019)"},{"key":"1_CR56","doi-asserted-by":"publisher","first-page":"263","DOI":"10.1007\/s10796-021-10134-8","volume":"23","author":"X Shouhuai","year":"2021","unstructured":"Shouhuai, X., Yung, M., Wang, J.: Seeking foundations for the science of cyber security. Inf. Syst. Front. 23, 263\u2013267 (2021)","journal-title":"Inf. Syst. Front."},{"issue":"11","key":"1_CR57","first-page":"1775","volume":"8","author":"Z Zhan","year":"2013","unstructured":"Zhan, Z., Xu, M., Xu, S.: Characterizing honeypot-captured cyber attacks: statistical framework and case study. IEEE T-IFS 8(11), 1775\u20131789 (2013)","journal-title":"IEEE T-IFS"},{"issue":"8","key":"1_CR58","first-page":"1666","volume":"10","author":"Z Zhan","year":"2015","unstructured":"Zhan, Z., Maochao, X., Shouhuai, X.: Predicting cyber attack rates with extreme values. IEEE T-IFS 10(8), 1666\u20131677 (2015)","journal-title":"IEEE T-IFS"},{"issue":"5","key":"1_CR59","doi-asserted-by":"publisher","first-page":"1071","DOI":"10.1109\/TIFS.2016.2516916","volume":"11","author":"M Zhang","year":"2016","unstructured":"Zhang, M., Wang, L., Jajodia, S., Singhal, A., Albanese, M.: Network diversity: a security metric for evaluating the resilience of networks against zero-day attacks. IEEE Trans. Inf. Forensics Secur. 11(5), 1071\u20131086 (2016)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"1_CR60","doi-asserted-by":"crossref","unstructured":"Zheng, R., Lu, W., Xu, S.: Active cyber defense dynamics exhibiting rich phenomena. In: Proceedings HotSoS (2015)","DOI":"10.1145\/2746194.2746196"},{"issue":"2","key":"1_CR61","first-page":"156","volume":"5","author":"R Zheng","year":"2018","unstructured":"Zheng, R., Lu, W., Xu, S.: Preventive and reactive cyber defense dynamics is globally stable. IEEE TNSE 5(2), 156\u2013170 (2018)","journal-title":"IEEE TNSE"}],"container-title":["Lecture Notes in Computer Science","Science of Cyber Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-89137-4_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,9]],"date-time":"2024-09-09T17:50:50Z","timestamp":1725904250000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-89137-4_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021]]},"ISBN":["9783030891367","9783030891374"],"references-count":61,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-89137-4_1","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2021]]},"assertion":[{"value":"10 October 2021","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SciSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Science of Cyber Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Shanghai","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2021","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"13 August 2021","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15 August 2021","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"4","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"scisec2021","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/scisec.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}