{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,6]],"date-time":"2025-05-06T08:52:05Z","timestamp":1746521525541,"version":"3.40.3"},"publisher-location":"Cham","reference-count":19,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031575365"},{"type":"electronic","value":"9783031575372"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-57537-2_14","type":"book-chapter","created":{"date-parts":[[2024,4,24]],"date-time":"2024-04-24T19:02:38Z","timestamp":1713985358000},"page":"219-232","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["A BERT-Based Framework for\u00a0Automated Extraction of\u00a0Behavioral Indicators of\u00a0Compromise from\u00a0Security Incident Reports"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-3573-8165","authenticated-orcid":false,"given":"Mohamed El Amine","family":"Bekhouche","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2869-0333","authenticated-orcid":false,"given":"Kamel","family":"Adi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,4,25]]},"reference":[{"key":"14_CR1","doi-asserted-by":"crossref","unstructured":"Alves, F., Ferreira, P.M., Bessani, A.: Design of a classification model for a Twitter-based streaming threat monitor. In: 2019 49th annual IEEE\/IFIP International Conference on Dependable Systems and Networks Workshops (DSN-W), pp. 9\u201314. IEEE (2019)","DOI":"10.1109\/DSN-W.2019.00010"},{"issue":"2","key":"14_CR2","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3587255","volume":"7","author":"M Asiri","year":"2023","unstructured":"Asiri, M., Saxena, N., Gjomemo, R., Burnap, P.: Understanding indicators of compromise against cyber-attacks in industrial control systems: a security perspective. ACM Trans. Cyber-phys. Syst. 7(2), 1\u201333 (2023)","journal-title":"ACM Trans. Cyber-phys. Syst."},{"key":"14_CR3","doi-asserted-by":"crossref","unstructured":"Brown, S., Gommers, J., Serrano, O.: From cyber security information sharing to threat management. In: Proceedings of the 2nd ACM Workshop on Information Sharing and Collaborative Security, pp. 43\u201349 (2015)","DOI":"10.1145\/2808128.2808133"},{"key":"14_CR4","unstructured":"CrowdStrike, Inc. https:\/\/www.crowdstrike.com\/"},{"key":"14_CR5","unstructured":"Devlin, J., Chang, M.W., Lee, K., Toutanova, K.: BERT: pre-training of deep bidirectional transformers for language understanding. arXiv preprint arXiv:1810.04805 (2018)"},{"key":"14_CR6","unstructured":"FireEye, Inc. https:\/\/www.fireeye.com\/"},{"key":"14_CR7","doi-asserted-by":"publisher","unstructured":"Fujii, S., Kawaguchi, N., Shigemoto, T., Yamauchi, T.: CyNER: information extraction from unstructured text of CTI sources with noncontextual IOCs. In: Cheng, CM., Akiyama, M. (eds.) Advances in Information and Computer Security, IWSEC 2022. LNCS, vol. 13504, pp. 85\u2013104. Springer, Cham (2022). https:\/\/doi.org\/10.1007\/978-3-031-15255-9_5","DOI":"10.1007\/978-3-031-15255-9_5"},{"key":"14_CR8","doi-asserted-by":"crossref","unstructured":"Ghazi, Y., Anwar, Z., Mumtaz, R., Saleem, S., Tahir, A.: A supervised machine learning based approach for automatically extracting high-level threat intelligence from unstructured sources. In: 2018 International Conference on Frontiers of Information Technology (FIT), pp. 129\u2013134. IEEE (2018)","DOI":"10.1109\/FIT.2018.00030"},{"issue":"17","key":"14_CR9","doi-asserted-by":"publisher","first-page":"5841","DOI":"10.3390\/app10175841","volume":"10","author":"B Jang","year":"2020","unstructured":"Jang, B., Kim, M., Harerimana, G., Kang, S., Kim, J.W.: Bi-LSTM model to increase accuracy in text classification: combining Word2vec CNN and attention mechanism. Appl. Sci. 10(17), 5841 (2020)","journal-title":"Appl. Sci."},{"key":"14_CR10","doi-asserted-by":"crossref","unstructured":"Lehto, M.: Apt cyber-attack modelling: building a general model. In: International Conference on Cyber Warfare and Security, vol.\u00a017, pp. 121\u2013129. Academic Conferences International Limited (2022)","DOI":"10.34190\/iccws.17.1.36"},{"issue":"3","key":"14_CR11","doi-asserted-by":"publisher","first-page":"259","DOI":"10.26599\/TST.2019.9010033","volume":"26","author":"P Ma","year":"2020","unstructured":"Ma, P., Jiang, B., Lu, Z., Li, N., Jiang, Z.: Cybersecurity named entity recognition using bidirectional long short-term memory with conditional random fields. Tsinghua Sci. Technol. 26(3), 259\u2013265 (2020)","journal-title":"Tsinghua Sci. Technol."},{"issue":"3","key":"14_CR12","doi-asserted-by":"publisher","first-page":"153","DOI":"10.1049\/iet-ifs.2013.0202","volume":"8","author":"RM Mohammad","year":"2014","unstructured":"Mohammad, R.M., Thabtah, F., McCluskey, L.: Intelligent rule-based phishing websites classification. IET Inf. Secur. 8(3), 153\u2013160 (2014)","journal-title":"IET Inf. Secur."},{"key":"14_CR13","doi-asserted-by":"crossref","unstructured":"Peters, M.E., et al.: Deep contextualized word representations. In: Proceedings of the 2018 Conference of the North American Chapter of the Association for Computational Linguistics: Human Language Technologies (NAACL-HLT), Volume 1 (Long Papers) (2018)","DOI":"10.18653\/v1\/N18-1202"},{"key":"14_CR14","unstructured":"Radford, A., Narasimhan, K., Salimans, T., Sutskever, I., et\u00a0al.: Improving language understanding by generative pre-training (2018)"},{"key":"14_CR15","unstructured":"Roy, A., Park, Y., Pan, S.: Learning domain-specific word embeddings from sparse cybersecurity texts. arXiv preprint arXiv:1709.07470 (2017)"},{"key":"14_CR16","doi-asserted-by":"crossref","unstructured":"Sapienza, A., Ernala, S.K., Bessi, A., Lerman, K., Ferrara, E.: DISCOVER: mining online chatter for emerging cyber threats. In: Companion Proceedings of the The Web Conference 2018, pp. 983\u2013990 (2018)","DOI":"10.1145\/3184558.3191528"},{"key":"14_CR17","unstructured":"Shahi, M.A.H.: Tactics, techniques and procedures (TTPs) to augment cyber threat intelligence (CTI): a comprehensive study (2018)"},{"key":"14_CR18","unstructured":"Strom, B.E., Applebaum, A., Miller, D.P., Nickels, K.C., Pennington, A.G., Thomas, C.B.: MITRE ATT &CK: Design and Philosophy. Technical report. The MITRE Corporation (2018)"},{"key":"14_CR19","unstructured":"Vaswani, A., et al.: Attention is all you need. In: Advances in Neural Information Processing Systems, vol. 30 (2017)"}],"container-title":["Lecture Notes in Computer Science","Foundations and Practice of Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-57537-2_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,4,24]],"date-time":"2024-04-24T19:04:27Z","timestamp":1713985467000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-57537-2_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031575365","9783031575372"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-57537-2_14","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"25 April 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"FPS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Symposium on Foundations and Practice of Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bordeaux","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"11 December 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"13 December 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"fps2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.fps-2023.com\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"80","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"27","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"8","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"34% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}