{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,4,10]],"date-time":"2025-04-10T04:10:28Z","timestamp":1744258228184,"version":"3.40.4"},"publisher-location":"Berlin, Heidelberg","reference-count":26,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642319082"},{"type":"electronic","value":"9783642319099"}],"license":[{"start":{"date-parts":[[2012,1,1]],"date-time":"2012-01-01T00:00:00Z","timestamp":1325376000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012]]},"DOI":"10.1007\/978-3-642-31909-9_1","type":"book-chapter","created":{"date-parts":[[2012,9,22]],"date-time":"2012-09-22T07:23:23Z","timestamp":1348298603000},"page":"1-18","source":"Crossref","is-referenced-by-count":1,"title":["Designing Scalable and Effective Decision Support for Mitigating Attacks in Large Enterprise Networks"],"prefix":"10.1007","author":[{"given":"Zhiyun","family":"Qian","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Z. Morley","family":"Mao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ammar","family":"Rayes","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"David","family":"Jaffe","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"1_CR1","unstructured":"Cisco IOS HTTP Server Code Injection Vulnerability, http:\/\/tools.cisco.com\/security\/center\/viewAlert.x?alertId=10102"},{"key":"1_CR2","unstructured":"Cisco IOS Software UDP Packet Processing Denial of Service Vulnerability, http:\/\/tools.cisco.com\/security\/center\/viewAlert.x?alertId=17765"},{"key":"1_CR3","unstructured":"Cisco Intrusion Prevention System, http:\/\/www.cisco.com\/en\/US\/products\/sw\/secursw\/ps2113\/index.html"},{"key":"1_CR4","unstructured":"Multiple Vendor DNS Implementations Insufficient Entropy Vulnerability, http:\/\/tools.cisco.com\/security\/center\/viewAlert.x?alertId=16183"},{"key":"1_CR5","unstructured":"Grote, A., Funke, R., Heiss, H.-U.: Performance evaluation of firewalls in gigabit-networks. In: Proc. 1999 Symposium on Performance Evaluation of Computer and Telecommunication Systems (1999), http:\/\/www.kbs.cs.tu-berlin.de\/publications\/fulltext\/GFH99.pdf"},{"key":"1_CR6","doi-asserted-by":"crossref","unstructured":"Capretta, V., Stepien, B., Felty, A., Matwin, S.: Formal correctness of conflict detection for firewalls. In: FMSE 2007: Proceedings of the 2007 ACM Workshop on Formal Methods in Security Engineering, pp. 22\u201330 (2007)","DOI":"10.1145\/1314436.1314440"},{"key":"1_CR7","unstructured":"Introduction to Cisco Inventory and Reporting, http:\/\/www.cisco.com\/en\/US\/docs\/net_mgmt\/inventory_and_reporting\/User_Guides\/Introduction_to_Cisco_Inventory_and_Reporting.html"},{"key":"1_CR8","unstructured":"David System, a network management system (nms), http:\/\/www.hadden.pl\/en\/index.php"},{"key":"1_CR9","unstructured":"Introduction to OVAL: A new language to determine the presence of software vulnerabilities (2003), http:\/\/oval.mitre.org\/documents\/docs03\/intro\/intro.html"},{"key":"1_CR10","unstructured":"Cisco Intellishield, http:\/\/www.cisco.com\/security\/"},{"key":"1_CR11","doi-asserted-by":"crossref","unstructured":"Todtmann, B., Rathgeb, E.P.: Integrated management of distributed packet filter configurations in carrier-grade ip networks. In: International Conference on Networking, p. 44 (2007)","DOI":"10.1109\/ICN.2007.51"},{"key":"1_CR12","unstructured":"NetMRI, http:\/\/www.netcordia.com\/"},{"key":"1_CR13","unstructured":"Cisco Multiple Vulnerabilities, http:\/\/secunia.com\/advisories\/23867\/"},{"key":"1_CR14","unstructured":"Old, J.L., Buchanan, W., Graves, J., Saliou, L.: Performance analysis of network based forensic systems for in-line and out-of-line detection and logging. In: 5th European Conference on Information Warfare and Security, ECIW (2006)"},{"key":"1_CR15","unstructured":"CPLEX, High-performance software for mathematical programming and optimization, http:\/\/www.ilog.com\/products\/cplex\/"},{"key":"1_CR16","unstructured":"GTITM, Modeling Topology of Large Internetworks, http:\/\/www.cc.gatech.edu\/projects\/gtitm\/"},{"issue":"4","key":"1_CR17","doi-asserted-by":"publisher","first-page":"381","DOI":"10.1145\/1035582.1035583","volume":"22","author":"Y. Bartal","year":"2004","unstructured":"Bartal, Y., Mayer, A., Nissim, K., Wool, A.: Firmato: A novel firewall management toolkit. ACM Trans. Comput. Syst.\u00a022(4), 381\u2013420 (2004)","journal-title":"ACM Trans. Comput. Syst."},{"key":"1_CR18","doi-asserted-by":"crossref","unstructured":"Mayer, A., Wool, A., Ziskind, E.: Fang: A firewall analysis engine. In: SP 2000: Proceedings of the 2000 IEEE Symposium on Security and Privacy, p. 177 (2000)","DOI":"10.1109\/SECPRI.2000.848455"},{"key":"1_CR19","doi-asserted-by":"publisher","first-page":"2069","DOI":"10.1109\/JSAC.2005.854119","volume":"23","author":"E. Al-shaer","year":"2005","unstructured":"Al-shaer, E., Hamed, H., Boutaba, R., Hasan, M.: Conflict classification and analysis of distributed firewall policies. IEEE Journal on Selected Areas in Communications\u00a023, 2069\u20132084 (2005)","journal-title":"IEEE Journal on Selected Areas in Communications"},{"key":"1_CR20","unstructured":"Bellovin, S.M.: Distributed firewalls. Login, 37\u201339 (1999)"},{"key":"1_CR21","doi-asserted-by":"crossref","unstructured":"Ioannidis, S., Keromytis, A.D., Bellovin, S.M., Smith, J.M.: Implementing a distributed firewall. In: CCS 2000: Proceedings of the 7th ACM Conference on Computer and Communications Security, pp. 190\u2013199 (2000)","DOI":"10.1145\/352600.353052"},{"key":"1_CR22","doi-asserted-by":"crossref","unstructured":"Guttman, J.D.: Filtering postures: local enforcement for global policies. In: SP 1997: Proceedings of the 1997 IEEE Symposium on Security and Privacy, p. 120. IEEE Computer Society (1997)","DOI":"10.1109\/SECPRI.1997.601327"},{"key":"1_CR23","doi-asserted-by":"crossref","unstructured":"Uribe, T.E., Cheung, S.: Automatic analysis of firewall and network intrusion detection system configurations. In: FMSE 2004: Proceedings of the 2004 ACM Workshop on Formal Methods in Security Engineering, pp. 66\u201374 (2004)","DOI":"10.1145\/1029133.1029143"},{"key":"1_CR24","unstructured":"Ou, X., Govindavajhala, S., Appel, A.W.: Mulval: a logic-based network security analyzer. In: SSYM 2005: Proceedings of the 14th Conference on USENIX Security Symposium (2005)"},{"issue":"10","key":"1_CR25","doi-asserted-by":"publisher","first-page":"2565","DOI":"10.1016\/j.comnet.2006.11.013","volume":"51","author":"B. T\u00f6dtmann","year":"2007","unstructured":"T\u00f6dtmann, B., Rathgeb, E.P.: Anticipatory distributed packet filter configurations for carrier-grade ip networks. Comput. Netw.\u00a051(10), 2565\u20132579 (2007)","journal-title":"Comput. Netw."},{"key":"1_CR26","doi-asserted-by":"crossref","unstructured":"Todtmann, B., Rathgeb, E.P.: Advanced packet filter placement strategies for carrier-grade ip-networks. In: AINAW 2007: Proceedings of the 21st International Conference on Advanced Information Networking and Applications Workshops, vol.\u00a01, pp. 415\u2013423 (2007)","DOI":"10.1109\/AINAW.2007.71"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-31909-9_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,9]],"date-time":"2025-04-09T06:39:26Z","timestamp":1744180766000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-31909-9_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012]]},"ISBN":["9783642319082","9783642319099"],"references-count":26,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-31909-9_1","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2012]]}}}