{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T12:16:39Z","timestamp":1763468199395,"version":"3.40.4"},"publisher-location":"Cham","reference-count":28,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319089140"},{"type":"electronic","value":"9783319089157"}],"license":[{"start":{"date-parts":[[2014,1,1]],"date-time":"2014-01-01T00:00:00Z","timestamp":1388534400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014]]},"DOI":"10.1007\/978-3-319-08915-7_5","type":"book-chapter","created":{"date-parts":[[2014,7,4]],"date-time":"2014-07-04T13:35:54Z","timestamp":1404480954000},"page":"137-161","source":"Crossref","is-referenced-by-count":11,"title":["Model-driven, Moving-Target Defense for Enterprise Network Security"],"prefix":"10.1007","author":[{"given":"Scott A.","family":"DeLoach","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xinming","family":"Ou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rui","family":"Zhuang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Su","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"5_CR1","doi-asserted-by":"publisher","first-page":"3471","DOI":"10.1016\/j.comnet.2007.02.006","volume":"51","author":"S. Antonatos","year":"2007","unstructured":"Antonatos, S., Akritidis, P., Markatos, E.P., Anagnostakis, K.G.: Defending against hitlist worms using network address space randomization. Computer Networks: The International Journal of Computer and Telecommunications Networking\u00a051, 3471\u20133490 (2007)","journal-title":"Computer Networks: The International Journal of Computer and Telecommunications Networking"},{"key":"5_CR2","doi-asserted-by":"publisher","first-page":"183","DOI":"10.1109\/ISORC.2003.1199253","volume-title":"Proceedings of the Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing (ISORC 2003)","author":"M. Atighetchi","year":"2003","unstructured":"Atighetchi, M., Pal, P., Webber, F., Jones, C.: Adaptive Use of Network-Centric Mechanisms in Cyber-Defense. In: Proceedings of the Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing (ISORC 2003), pp. 183\u2013192. IEEE Computer Society, Washington, DC (2003)"},{"key":"5_CR3","first-page":"13","volume-title":"Proceedings of the 2007 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communications (SIGCOMM 2007)","author":"P. Bahl","year":"2007","unstructured":"Bahl, P., Chandra, R., Greenberg, A., Kandula, S., Maltz, D.A., Zhang, M.: Towards highly reliable enterprise network services via inference of multi-level dependencies. In: Proceedings of the 2007 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communications (SIGCOMM 2007), pp. 13\u201324. ACM, New York (2007)"},{"key":"5_CR4","unstructured":"Barrett, D.: Hackers Penetrate Nasdaq Computers. Wall Street Journal, http:\/\/online.wsj.com\/article\/SB10001424052748704709304576124502351634690.html (February 5, 2011)"},{"key":"5_CR5","doi-asserted-by":"publisher","first-page":"199","DOI":"10.1145\/1810295.1810329","volume-title":"Proceedings of the 32nd ACM\/IEEE International Conference on Software Engineering (ICSE 2010)","author":"N. Bencomo","year":"2010","unstructured":"Bencomo, N., Whittle, J., Sawyer, P., Finkelstein, A., Letier, E.: Requirements reflection: Requirements as runtime entities. In: Proceedings of the 32nd ACM\/IEEE International Conference on Software Engineering (ICSE 2010), vol.\u00a02, pp. 199\u2013202. ACM, New York (2010)"},{"key":"5_CR6","first-page":"117","volume-title":"Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI 2008)","author":"X. Chen","year":"2008","unstructured":"Chen, X., Zhang, M., Mao, Z.M., Bahl, V.: Automating Network Application Dependency Discovery: Experiences, Limitations, and New Solutions. In: Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI 2008), pp. 117\u2013130. USENIX Association, Berkeley (2008)"},{"key":"5_CR7","unstructured":"Compton, M.D., Hopkinson, K.M., Peterson, G.L., Moore, J.T.: Network Obfuscation Through Polymorphic Routing and Topology Control. IEEE Transactions on Dependable and Secure Computing (2012) (in preparation)"},{"key":"5_CR8","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1016\/0167-6423(93)90021-G","volume":"20","author":"D. Dardenne","year":"1993","unstructured":"Dardenne, D., van Lamsweerde, A., Fickas, S.: Goal-directed requirements acquisition. Science of Computer Programming\u00a020, 3\u201350 (1993)","journal-title":"Science of Computer Programming"},{"key":"5_CR9","first-page":"83","volume":"5","author":"S.A. DeLoach","year":"2010","unstructured":"DeLoach, S.A., Miller, M.: A Goal Model for Adaptive Complex Systems. International Journal of Computational Intelligence: Theory and Practice\u00a05, 83\u201392 (2010)","journal-title":"International Journal of Computational Intelligence: Theory and Practice"},{"key":"5_CR10","doi-asserted-by":"publisher","first-page":"13","DOI":"10.1007\/s10458-007-9019-4","volume":"16","author":"S.A. DeLoach","year":"2008","unstructured":"DeLoach, S.A., Oyenan, W., Matson, E.T.: A Capabilities-Based Model for Artificial Organizations. Journal of Autonomous Agents and Multiagent Systems\u00a016, 13\u201356 (2008)","journal-title":"Journal of Autonomous Agents and Multiagent Systems"},{"key":"5_CR11","unstructured":"DeLoach, S.A., Ou, X.: A Value Based Goal Model. Multiagent and Cooperative Robotics Laboratory Technical Report No. MACR-TR-2011-01. Kansas State University (2011)"},{"key":"5_CR12","doi-asserted-by":"publisher","first-page":"231","DOI":"10.1142\/S0218194001000542","volume":"11","author":"S.A. DeLoach","year":"2001","unstructured":"DeLoach, S.A., Wood, M.F., Sparkman, C.H.: Multiagent Systems Engineering. The Intl. Journal of Software Engineering and Knowledge Engineering\u00a011, 231\u2013258 (2001)","journal-title":"The Intl. Journal of Software Engineering and Knowledge Engineering"},{"key":"5_CR13","doi-asserted-by":"crossref","unstructured":"Grimaila, M.R., Fortson, L.W., Sutton, J.L.: Design Considerations for a Cyber Incident Mission Impact Assessment (CIMIA) Process. In: Proceedings of the 2009 International Conference on Security and Management, SAM 2009 (2009)","DOI":"10.1145\/1413140.1413177"},{"key":"5_CR14","unstructured":"Hellesen, D., Grimaila, M.R.: Information Asset Value Quantification. In: Proceedings of the 2010 International Conference on Information Warfare and Security (ICIW 2010), pp. 138\u2013147 (2010)"},{"key":"5_CR15","doi-asserted-by":"crossref","unstructured":"Joukov, N., Pfitzmann, B., Ramasamy, H.V., Devarakonda, M.V.: Application-storage discovery. In: Proceedings of the 3rd Annual Haifa Experimental Systems Conference (SYSTOR). ACM, New York (2010)","DOI":"10.1145\/1815695.1815720"},{"key":"5_CR16","doi-asserted-by":"publisher","first-page":"331","DOI":"10.1109\/3468.935052","volume":"31","author":"D.L. Kewley","year":"2001","unstructured":"Kewley, D.L., Bouchard, J.F.: DARPA Information Assurance Program dynamic defense experiment summary. Systems, Man and Cybernetics, Part A: Systems and Humans\u00a031, 331\u2013336 (2001)","journal-title":"Systems, Man and Cybernetics, Part A: Systems and Humans"},{"key":"5_CR17","unstructured":"Lippmann, K.W., Ingols, C., Piwowarski, S.K., Kratkiewicz, K.J., Artz, M., Cunningham, R.K.: Evaluating and strengthening enterprise network security using attack graphs. Technical Report. MIT Lincoln Laboratory (2005)"},{"key":"5_CR18","doi-asserted-by":"crossref","unstructured":"McQueen, M., McQueen, T., Boyer, W., Chaffin, M.: Empirical estimates and observations of 0day vulnerabilities. In: 42nd Hawaii International Conference on System Sciences, pp. 1\u201312 (2009)","DOI":"10.1109\/HICSS.2009.186"},{"key":"5_CR19","unstructured":"Michalski, J., Price, C., Stanton, E., Chua, E.L., Seah, K., Heng, W.Y., Pheng, T.C.: Final Report for the Network Security Mechanisms Utilizing Network Address Translation LDRD Project. Technical Report SAND2002-3613. Sandia National Laboratories (2002)"},{"key":"5_CR20","unstructured":"National Cyber Leap Year Summit 2009, Co-Chairs\u2019 Report. (September 16, 2009)"},{"key":"5_CR21","first-page":"336","volume-title":"13th ACM Conference on Computer and Communications Security","author":"X. Ou","year":"2006","unstructured":"Ou, X., Boyer, W.F., McQueen, M.A.: A scalable approach to attack graph generation. In: 13th ACM Conference on Computer and Communications Security, pp. 336\u2013345. ACM, New York (2006)"},{"key":"5_CR22","unstructured":"Ou, X., Govindavajhala, S., Appel, A.W.: MulVAL: A logic-based network security analyzer. In: 14th USENIX Security Symposium, Baltimore, Maryland, U.S.A (August 2005)"},{"key":"5_CR23","doi-asserted-by":"crossref","unstructured":"Ou, X., Rajagopalan, S.R., Sakthivelmurugan, S.: An empirical approach to modeling uncertainty in intrusion analysis. In: Annual Computer Security Applications Conference, pp. 494\u2013503 (December 2009)","DOI":"10.1109\/ACSAC.2009.53"},{"key":"5_CR24","doi-asserted-by":"crossref","unstructured":"Roeder, T., Schneider, F.B.: Proactive obfuscation. ACM Trans. Comput. Syst. 28, 4:1\u20134:54 (2010)","DOI":"10.1145\/1813654.1813655"},{"key":"5_CR25","first-page":"95","volume-title":"Proceedings of 18th IEEE International Requirements Engineering Conference","author":"P. Sawyer","year":"2010","unstructured":"Sawyer, P., Bencomo, N., Whittle, J., Letier, E., Finkelstein, A.: Requirements-Aware Systems: A Research Agenda for RE for Self-adaptive Systems. In: Proceedings of 18th IEEE International Requirements Engineering Conference, pp. 95\u2013103. IEEE Press, New York (2010)"},{"key":"5_CR26","doi-asserted-by":"publisher","first-page":"311","DOI":"10.1177\/0037549709340730","volume":"86","author":"S. Schmidt","year":"2010","unstructured":"Schmidt, S., Bye, R., Chinnow, J., Bsufka, K., Camtepe, A., Albayrak, S.: Application-level Simulation for Network Security. SIMULATION\u00a086, 311\u2013330 (2010)","journal-title":"SIMULATION"},{"issue":"3","key":"5_CR27","doi-asserted-by":"publisher","first-page":"379","DOI":"10.1002\/j.1538-7305.1948.tb01338.x","volume":"27","author":"C.E. Shannon","year":"1948","unstructured":"Shannon, C.E.: A Mathematical Theory of Communication. Bell Syst. Technical Journal\u00a027(3), 379\u2013423 (1948)","journal-title":"Bell Syst. Technical Journal"},{"key":"5_CR28","unstructured":"Sundaramurthy, S.C., Zomlot, L., Ou, X.: Practical IDS alert correlation in the face of dynamic threats. In: International Conference on Security and Management (2011)"}],"container-title":["Lecture Notes in Computer Science","Models@run.time"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-08915-7_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,3]],"date-time":"2025-05-03T17:34:39Z","timestamp":1746293679000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-08915-7_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014]]},"ISBN":["9783319089140","9783319089157"],"references-count":28,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-08915-7_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2014]]}}}