{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,26]],"date-time":"2026-02-26T13:25:58Z","timestamp":1772112358938,"version":"3.50.1"},"publisher-location":"Berlin, Heidelberg","reference-count":28,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783642030062","type":"print"},{"value":"9783642030079","type":"electronic"}],"license":[{"start":{"date-parts":[[2009,1,1]],"date-time":"2009-01-01T00:00:00Z","timestamp":1230768000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2009]]},"DOI":"10.1007\/978-3-642-03007-9_3","type":"book-chapter","created":{"date-parts":[[2009,7,11]],"date-time":"2009-07-11T02:54:17Z","timestamp":1247280857000},"page":"33-48","source":"Crossref","is-referenced-by-count":8,"title":["An Approach to Security Policy Configuration Using Semantic Threat Graphs"],"prefix":"10.1007","author":[{"given":"Simon N.","family":"Foley","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"William M.","family":"Fitzgerald","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"3_CR1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"186","DOI":"10.1007\/11734727_17","volume-title":"Information Security and Cryptology - ICISC 2005","author":"S. Mauw","year":"2006","unstructured":"Mauw, S., Oostdijk, M.: Foundations of Attack Trees. In: Won, D.H., Kim, S. (eds.) ICISC 2005. LNCS, vol.\u00a03935, pp. 186\u2013198. Springer, Heidelberg (2006)"},{"key":"3_CR2","unstructured":"Stamatelatos, M., Vesely, W., Dugan, J., Fragola, J., Minarick, J., Railsback, J.: Fault Tree Handbook with Aerospace Applications. NASA Office of Safety and Mission Assurance NASA Headquarters, Washington, DC 20546, Version 1.1 (August 2002)"},{"key":"3_CR3","volume-title":"Secrets and Lies Digital Security in Networked World","author":"B. Schneier","year":"2004","unstructured":"Schneier, B.: Secrets and Lies Digital Security in Networked World. Wiley Publishing, Chichester (2004)"},{"key":"3_CR4","doi-asserted-by":"crossref","unstructured":"Bistarelli, S., Fioravanti, F., Peretti, P.: Defense trees for economic evaluation of security investments. In: 1st International Conference on Availability, Reliability and Security (ARES), Vienna (April 2006)","DOI":"10.1109\/ARES.2006.46"},{"key":"3_CR5","doi-asserted-by":"crossref","unstructured":"Edge, K., Raines, R., Grimaila, M., Baldwin, R., Bennington, R., Reuter, C.: The Use of Attack and Protection Trees to Analyze Security for an Online Banking System. In: Proceedings of the 40th Annual Hawaii International Conference on System Sciences (HICSS 2007) (2007)","DOI":"10.1109\/HICSS.2007.558"},{"key":"3_CR6","doi-asserted-by":"crossref","unstructured":"Eddy, W.: RFC 4987: TCP SYN Flooding Attacks and Common Mitigations (August 2007), http:\/\/ietf.org","DOI":"10.17487\/rfc4987"},{"key":"3_CR7","doi-asserted-by":"crossref","unstructured":"Taniar, D., Rahayu, J.W.: Web Semantics Ontology. Idea Publishing (2006)","DOI":"10.4018\/978-1-59140-905-2"},{"key":"3_CR8","volume-title":"The Description Logic Handbook: Theory, Implementation and Applications","author":"F. Baader","year":"2003","unstructured":"Baader, F., Calvanese, D., McGuinness, D., Nardi, D., Patel-Schneider, P.: The Description Logic Handbook: Theory, Implementation and Applications. Cambridge University Press, Cambridge (2003)"},{"key":"3_CR9","unstructured":"Fitzgerald, W.M., Foley, S.N., Foghl\u00fa, M.O.: Network Access Control Interoperation using Semantic Web Techniques. In: 6th International Workshop on Security In Information Systems (WOSIS), Barcelona, Spain (June 2008)"},{"key":"3_CR10","volume-title":"First International Workshop on Secure Semantic Web (SSW 2008)","author":"S.N. Foley","year":"2008","unstructured":"Foley, S.N., Fitzgerald, W.M.: Semantic Web and Firewall Alignment. In: First International Workshop on Secure Semantic Web (SSW 2008), Cancun, Mexico. IEEE CS Press, Los Alamitos (2008)"},{"key":"3_CR11","unstructured":"IANA: RFC 3330: Special-Use IPv4 Addresses (September 2002), http:\/\/ietf.org"},{"key":"3_CR12","doi-asserted-by":"crossref","unstructured":"Rekhter, Y., Moskowitz, B., Karrenberg, D., de Groot, G., Lear, E.: RFC1918: Address Allocation for Private Internets (Febuary 1996), http:\/\/ietf.org","DOI":"10.17487\/rfc1918"},{"key":"3_CR13","doi-asserted-by":"crossref","unstructured":"Wack, J., Cutler, K., Pole, J.: Guidelines on Firewalls and Firewall Policy: Recommendations of the National Institute of Standards and Technology. NIST-800-41 (2002)","DOI":"10.6028\/NIST.SP.800-41"},{"key":"3_CR14","doi-asserted-by":"crossref","unstructured":"Tracy, M., Jansen, W., Scarfone, K., Winograd, T.: Guidelines on Securing Public Web Servers: Recommendations of the National Institute of Standards and Technology. NIST Special Publication 800-44, Version 2 (September 2007)","DOI":"10.6028\/NIST.SP.800-44ver2"},{"key":"3_CR15","doi-asserted-by":"crossref","unstructured":"Shirey, R.: RFC 2828: Internet Security Glossary (May 2000), http:\/\/ietf.org","DOI":"10.17487\/rfc2828"},{"key":"3_CR16","unstructured":"Hernan, S., Lambert, S., Ostwald, T., Shostack, A.: Uncover Security Design Flaws Using The STRIDE Approach (2009), http:\/\/microsoft.com\/"},{"key":"3_CR17","doi-asserted-by":"crossref","unstructured":"Gennari, J., Musen, M.A., Fergerson, R.W., Grosso, W.E., Crubezy, M., Eriksson, H., Noy, N.F., Tu., S.W.: The Evolution of Protege: An Environment for Knowledge-Based Systems Development. Journal of Human-Computer Studies\u00a058(1) (2003)","DOI":"10.1016\/S1071-5819(02)00127-1"},{"key":"3_CR18","unstructured":"FIRST: Common Vulnerability Scoring System (2009), http:\/\/first.org\/cvss\/"},{"key":"3_CR19","unstructured":"International, C.: Common Vulnerabilities and Exposures (2009), http:\/\/cve.mitre.org\/"},{"key":"3_CR20","unstructured":"Meier, J., Mackma, A., Dunner, M., Vasireddy, S., Escamilla, R., Murukan, A.: Improving Web Application Security: Threats and Countermeasures. Microsoft Press (2003)"},{"key":"3_CR21","unstructured":"OSVDB: Open Source Vulnerability Database (2009), http:\/\/osvdb.org\/"},{"key":"3_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"974","DOI":"10.1007\/11574620_69","volume-title":"The Semantic Web \u2013 ISWC 2005","author":"M.J. O\u2019Connor","year":"2005","unstructured":"O\u2019Connor, M.J., Knublauch, H., Tu, S.W., Grossof, B., Dean, M., Grosso, W.E., Musen, M.A.: Supporting Rule System Interoperability on the Semantic Web with SWRL. In: Gil, Y., Motta, E., Benjamins, V.R., Musen, M.A. (eds.) ISWC 2005. LNCS, vol.\u00a03729, pp. 974\u2013986. Springer, Heidelberg (2005)"},{"key":"3_CR23","doi-asserted-by":"crossref","unstructured":"Ferguson, P.: RFC 2827: Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing (May 2000), http:\/\/ietf.org","DOI":"10.17487\/rfc2827"},{"key":"3_CR24","unstructured":"Smith, M.K., Welty, C., McGuinness, D.L.: OWL Web Ontology Language Guide. W3C Recommendation, Technical Report (2004)"},{"key":"3_CR25","series-title":"Lecture Notes in Computer Science","volume-title":"The Semantic Web \u2013 ISWC 2004","author":"B. Parsia","year":"2004","unstructured":"Parsia, B., Sirin, E.: Pellet: An OWL DL Reasoner. In: McIlraith, S.A., Plexousakis, D., van Harmelen, F. (eds.) ISWC 2004. LNCS, vol.\u00a03298. Springer, Heidelberg (2004)"},{"key":"3_CR26","unstructured":"Friedman-Hil, E.J.: Jess the Rule Engine for the Java Platform. Version 7.0p1 (2006)"},{"key":"3_CR27","doi-asserted-by":"crossref","unstructured":"Camtepe, S.A., ulent Yener, B.: Modeling and Detection of Complex Attacks. In: 3rd International Conference on Security and Privacy in Communications Networks, Secure Comm, Nice, France (September 2007)","DOI":"10.1109\/SECCOM.2007.4550338"},{"key":"3_CR28","unstructured":"Opel, A.: Design and Implementation of a Support Tool for Attack Trees. Internship Thesis, Otto-von-Guericke University Magdeburg (March 2005)"}],"container-title":["Lecture Notes in Computer Science","Data and Applications Security XXIII"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-03007-9_3","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,21]],"date-time":"2019-05-21T07:05:08Z","timestamp":1558422308000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-03007-9_3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2009]]},"ISBN":["9783642030062","9783642030079"],"references-count":28,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-03007-9_3","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2009]]}}}