{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,12]],"date-time":"2026-02-12T11:18:45Z","timestamp":1770895125586,"version":"3.50.1"},"publisher-location":"Cham","reference-count":27,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319445236","type":"print"},{"value":"9783319445243","type":"electronic"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-44524-3_2","type":"book-chapter","created":{"date-parts":[[2016,9,8]],"date-time":"2016-09-08T15:32:52Z","timestamp":1473348772000},"page":"21-40","source":"Crossref","is-referenced-by-count":8,"title":["Hybrid Risk Assessment Model Based on Bayesian Networks"],"prefix":"10.1007","author":[{"given":"Fran\u00e7ois-Xavier","family":"Aguessy","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Olivier","family":"Bettan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gregory","family":"Blanc","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vania","family":"Conan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Herv\u00e9","family":"Debar","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,9,9]]},"reference":[{"key":"2_CR1","doi-asserted-by":"crossref","unstructured":"Ammann, P., Wijesekera, D., Kaushik, S.: Scalable, graph-based network vulnerability analysis. In: Proceedings of the 9th ACM Conference on Computer and Communications Security, pp. 217\u2013224. ACM (2002)","DOI":"10.1145\/586110.586140"},{"key":"2_CR2","unstructured":"Artz, M.L.: Netspa: a network security planning architecture. Ph.D. thesis, Massachusetts Institute of Technology (2002)"},{"key":"2_CR3","doi-asserted-by":"crossref","unstructured":"Ben-Gal, I., Ruggeri, F., Faltin, F., Kenett, R.: Bayesian networks. In: Encyclopedia of Statistics in Quality and Reliability (2007)","DOI":"10.1002\/9780470061572"},{"key":"2_CR4","unstructured":"Cole, R.: Multi-step attack detection via bayesian modeling under model parameter uncertainty. Ph.D. thesis, The Pennsylvania State University (2013)"},{"key":"2_CR5","unstructured":"Secr\u00e9tariat G\u00e9n\u00e9ral de la D\u00e9fense Nationale: Ebios-expression des besoins et identification des objectifs de s\u00e9curit\u00e9 (2004)"},{"key":"2_CR6","unstructured":"Forum of Incident Response and Security Teams: Common vulnerability scoring system v3.0: Specification document, pp. 1\u201321 (2015)"},{"key":"2_CR7","doi-asserted-by":"crossref","unstructured":"Frigault, M., Wang, L.: Measuring network security using bayesian network-based attack graphs, pp. 698\u2013703, July 2008","DOI":"10.1109\/COMPSAC.2008.88"},{"key":"2_CR8","doi-asserted-by":"crossref","unstructured":"Frigault, M., Wang, L., Singhal, A., Jajodia, S.: Measuring network security using dynamic bayesian network. In: Proceedings of the 4th ACM Workshop on Quality of Protection, pp. 23\u201330. ACM (2008)","DOI":"10.1145\/1456362.1456368"},{"key":"2_CR9","unstructured":"ISO\/IEC 27005:2011. Information technology - Security techniques - Information security risk management. ISO (2011)"},{"key":"2_CR10","unstructured":"ISO\/IEC 27000:2014: Information technology - Security techniques - Information security management systems - Overview and vocabulary. Technical report (2014)"},{"key":"2_CR11","series-title":"Massive Computing","doi-asserted-by":"crossref","first-page":"247","DOI":"10.1007\/0-387-24230-9_9","volume-title":"Managing Cyber Threats","author":"S Jajodia","year":"2005","unstructured":"Jajodia, S., Noel, S., O\u2019Berry, B.: Topological analysis of network attack vulnerability. In: Kumar, V., Srivastava, J., Lazarevic, A. (eds.) Managing Cyber Threats. Massive Computing, vol. 5, pp. 247\u2013266. Springer, US (2005)"},{"key":"2_CR12","doi-asserted-by":"crossref","unstructured":"Jajodia, S., Noel, S., Kalapa, P., Albanese, M., Williams, J.: Cauldron mission-centric cyber situational awareness with defense in depth. In: Military Communications Conference, pp. 1339\u20131344. IEEE (2011)","DOI":"10.1109\/MILCOM.2011.6127490"},{"key":"2_CR13","unstructured":"Kheir, N., Debar, H., Cuppens-Boulahia, N., Cuppens, F., Viinikka, J.: Cost evaluation for intrusion response using dependency graphs. In: International Conference on Network and Service Security, N2S 2009, pp. 1\u20136. IEEE (2009)"},{"key":"2_CR14","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.cosrev.2014.07.001","volume":"13","author":"B Kordy","year":"2014","unstructured":"Kordy, B., Pi\u00e8tre-Cambac\u00e9d\u00e8s, L., Schweitzer, P.: DAG-based attack and defense modeling: don\u2019t miss the forest for the attack trees. Comput. Sci. Rev. 13, 1\u201338 (2014)","journal-title":"Comput. Sci. Rev."},{"key":"2_CR15","doi-asserted-by":"crossref","first-page":"157","DOI":"10.1111\/j.2517-6161.1988.tb01721.x","volume":"50","author":"SL Lauritzen","year":"1988","unstructured":"Lauritzen, S.L., Spiegelhalter, D.J.: Local computations with probabilities on graphical structures and their application to expert systems. J. R. Stat. Soc. 50, 157\u2013224 (1988)","journal-title":"J. R. Stat. Soc."},{"key":"2_CR16","doi-asserted-by":"crossref","unstructured":"Lippmann, R.P., Ingols, K.W.: An annotated review of past papers on attack graphs. Technical report, DTIC Document (2005)","DOI":"10.21236\/ADA431826"},{"key":"2_CR17","doi-asserted-by":"crossref","unstructured":"Liu, Y., Man, H.: Network vulnerability assessment using bayesian networks. In: Defense and Security, pp. 61\u201371. International Society for Optics and Photonics (2005)","DOI":"10.1117\/12.604240"},{"key":"2_CR18","unstructured":"National Information Assurance Glossary: CNSS N 4009: Committee on National Security Systems. Technical report (2010)"},{"key":"2_CR19","unstructured":"National Institute of Standards and Technology: SP 800-30 Rev. 1: Guide for Conducting Risk Assessments. Technical report (2012)"},{"key":"2_CR20","unstructured":"National Institute of Standards and Technology: SP 800-53 Rev. 4: Security and Privacy Controls for Federal Information Systems and Organizations. Technical report (2013)"},{"key":"2_CR21","unstructured":"Ou, X., Govindavajhala, S., Appel, A.W.: Mulval: a logic-based network security analyzer. In: USENIX Security Symposium (2005)"},{"issue":"3","key":"2_CR22","doi-asserted-by":"crossref","first-page":"241","DOI":"10.1016\/0004-3702(86)90072-X","volume":"29","author":"J Pearl","year":"1986","unstructured":"Pearl, J.: Fusion, propagation, and structuring in belief networks. Artif. Intell. 29(3), 241\u2013288 (1986)","journal-title":"Artif. Intell."},{"key":"2_CR23","volume-title":"Probabilistic Reasoning in Intelligent Systems: Networks of Plausible Inference","author":"J Pearl","year":"1988","unstructured":"Pearl, J.: Probabilistic Reasoning in Intelligent Systems: Networks of Plausible Inference. Morgan Kaufmann, Massachusetts (1988)"},{"key":"2_CR24","doi-asserted-by":"crossref","unstructured":"Phillips, C., Swiler, L.P.: A graph-based system for network-vulnerability analysis (1998)","DOI":"10.1145\/310889.310919"},{"key":"2_CR25","doi-asserted-by":"crossref","first-page":"61","DOI":"10.1109\/TDSC.2011.34","volume":"9","author":"N Poolsappasit","year":"2012","unstructured":"Poolsappasit, N., Dewri, R., Ray, I.: Dynamic security risk management using bayesian attack graphs. Dependable Secure Comput. 9, 61\u201374 (2012)","journal-title":"Dependable Secure Comput."},{"key":"2_CR26","unstructured":"Qin, X., Lee, W.: Attack plan recognition and prediction using causal networks. In: Computer Security Applications Conference, pp. 370\u2013379, December 2004"},{"key":"2_CR27","doi-asserted-by":"crossref","unstructured":"Xie, P., Li, J.H., Ou, X., Liu, P., Levy, R.: Using bayesian networks for cyber security analysis. In: IEEE\/IFIP International Conference on Dependable Systems and Networks, pp. 211\u2013220. IEEE (2010)","DOI":"10.1109\/DSN.2010.5544924"}],"container-title":["Lecture Notes in Computer Science","Advances in Information and Computer Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-44524-3_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,10]],"date-time":"2025-06-10T17:33:27Z","timestamp":1749576807000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-44524-3_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319445236","9783319445243"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-44524-3_2","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016]]}}}