{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,14]],"date-time":"2025-12-14T11:04:26Z","timestamp":1765710266864,"version":"3.48.0"},"publisher-location":"Cham","reference-count":12,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032135612","type":"print"},{"value":"9783032135629","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,12,15]],"date-time":"2025-12-15T00:00:00Z","timestamp":1765756800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,12,15]],"date-time":"2025-12-15T00:00:00Z","timestamp":1765756800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-13562-9_30","type":"book-chapter","created":{"date-parts":[[2025,12,14]],"date-time":"2025-12-14T11:00:38Z","timestamp":1765710038000},"page":"392-399","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["A Formal Methodology for\u00a0Risk Estimation in\u00a0Business Process Management"],"prefix":"10.1007","author":[{"given":"Matteo","family":"Cristani","sequence":"first","affiliation":[]},{"given":"Tewabe Chekole","family":"Workneh","sequence":"additional","affiliation":[]},{"given":"Claudio","family":"Tomazzoli","sequence":"additional","affiliation":[]},{"given":"Federica","family":"Paci","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,12,15]]},"reference":[{"key":"30_CR1","unstructured":"Alberts, C.J., Dorofee, A.J.: OCTAVE approach: a risk-based information security assessment methodology. Carnegie Mellon University, Software Engineering Institute, Pittsburgh (2001)"},{"key":"30_CR2","unstructured":"ANSSI: Ebios risk manager: expression of needs and identification of security objectives. Tech. rep., Agence nationale de la s\u00e9curit\u00e9 des syst\u00e8mes d\u2019information (ANSSI) (2018). https:\/\/www.ssi.gouv.fr\/administration\/bonnes-pratiques\/ebios-risk-manager\/. Accessed 05 Oct 2025"},{"key":"30_CR3","doi-asserted-by":"publisher","unstructured":"Harmelen, F.: Where Does It Break? or: Why the Semantic Web Is Not Just \u201cResearch as Usual\u201d. In: Sure, Y., Domingue, J. (eds.) ESWC 2006, LNCS, vol. 4011, pp. 1\u20131. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11762256_1","DOI":"10.1007\/11762256_1"},{"key":"30_CR4","unstructured":"Naved, M., et\u00a0al.: Security risk assessment in business process modeling. In: RCIS (2013)"},{"key":"30_CR5","doi-asserted-by":"crossref","unstructured":"Rinderle-Ma, S., et\u00a0al.: Predictive compliance monitoring in process-aware information systems: state of the art, functionalities, research directions. arXiv preprint: arXiv:2205.05446 (2022)","DOI":"10.1016\/j.is.2023.102210"},{"key":"30_CR6","unstructured":"Spanish Ministry of Finance and Public Administration: MAGERIT-Methodology for Information Systems Risk Analysis and Management, Version 3.0. Ministerio de Hacienda y Administraciones P\u00fablicas, Spain (2020). https:\/\/administracionelectronica.gob.es\/pae_Home\/dms\/pae_Home\/documentos\/pae_Actualidad\/magerit-v3-en\/magerit-v3-en.pdf. Accessed Oct 2025"},{"key":"30_CR7","unstructured":"of\u00a0Standards, N.I., Technology: Nist special publication 800-30 - revision 1 - guide for conducting risk assessment (2012). https:\/\/www.nist.gov\/privacy-framework\/nist-sp-800-30"},{"key":"30_CR8","doi-asserted-by":"publisher","unstructured":"Stoneburner, G., Goguen, A., Feringa, A.: Guide for conducting risk assessments. Tech. Rep. NIST Special Publication 800-30 Revision 1, National Institute of Standards and Technology (NIST) (2012). https:\/\/doi.org\/10.6028\/NIST.SP.800-30r1","DOI":"10.6028\/NIST.SP.800-30r1"},{"key":"30_CR9","doi-asserted-by":"publisher","unstructured":"Thabet, R., Bork, D., Boufaied, A., Lamine, E., Korbaa, O., Pingaud, H.: Risk-aware business process management using multi-view modeling: method and tool. Requirements Eng., 1\u201327 (2021). https:\/\/doi.org\/10.1007\/s00766-021-00348-2","DOI":"10.1007\/s00766-021-00348-2"},{"key":"30_CR10","unstructured":"Varela-Vaca, A.J., et\u00a0al.: Estimating security risks in business processes. IEEE Access (2019)"},{"key":"30_CR11","unstructured":"Weinzierl, S., et\u00a0al.: Machine learning in business process management: a systematic literature review. arXiv preprint: arXiv:2405.16396 (2024)"},{"key":"30_CR12","doi-asserted-by":"publisher","unstructured":"Workneh, T.C., Sala, P., Renzi, R., Cristani, M.: Business process compliance with impact constraints. Inf. Syst. 120, 102505 (2024). https:\/\/doi.org\/10.1016\/j.is.2024.102505,","DOI":"10.1016\/j.is.2024.102505"}],"container-title":["Lecture Notes in Computer Science","PRIMA 2025: Principles and Practice of Multi-Agent Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-13562-9_30","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,14]],"date-time":"2025-12-14T11:00:39Z","timestamp":1765710039000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-13562-9_30"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,12,15]]},"ISBN":["9783032135612","9783032135629"],"references-count":12,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-13562-9_30","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,12,15]]},"assertion":[{"value":"15 December 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"PRIMA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Principles and Practice of Multi-Agent Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Modena","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Italy","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15 December 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 December 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"prima2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/conferences-website.github.io\/prima2025\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}