{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,4]],"date-time":"2024-09-04T14:33:45Z","timestamp":1725460425212},"publisher-location":"Berlin, Heidelberg","reference-count":28,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642380327"},{"type":"electronic","value":"9783642380334"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-38033-4_20","type":"book-chapter","created":{"date-parts":[[2013,5,7]],"date-time":"2013-05-07T00:51:00Z","timestamp":1367887860000},"page":"278-294","source":"Crossref","is-referenced-by-count":1,"title":["Increasing Automated Vulnerability Assessment Accuracy on Cloud and Grid Middleware"],"prefix":"10.1007","author":[{"given":"Jairo","family":"Serrano","sequence":"first","affiliation":[]},{"given":"Eduardo","family":"Cesar","sequence":"additional","affiliation":[]},{"given":"Elisa","family":"Heymann","sequence":"additional","affiliation":[]},{"given":"Barton","family":"Miller","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"key":"20_CR1","doi-asserted-by":"crossref","unstructured":"Sommestad, T., Ericsson, G.N., Nordlander, J.: Scada system cyber security - a comparison of standards. In: Power and Energy Society General Meeting IEEE, pp. 1\u20138 (July 2010)","DOI":"10.1109\/PES.2010.5590215"},{"key":"20_CR2","unstructured":"Coverity Prevent, \n                    \n                      http:\/\/www.coverity.com"},{"key":"20_CR3","unstructured":"Fortify Source Code Analyzer, \n                    \n                      http:\/\/www.fortify.com"},{"key":"20_CR4","unstructured":"Kupsch, J., Miller, B.: Manual vs. automated vulnerability assessment: A case study. In: International Workshop on Managing Insider Security Threats, vol.\u00a0469, pp. 83\u201397 (June 2009)"},{"key":"20_CR5","doi-asserted-by":"crossref","unstructured":"Kupsch, J., Miller, B., Heymann, E., Cesar, E.: First principles vulnerability assessment, mist project. tech. rep., UAB & UW (September 2009)","DOI":"10.1145\/1866835.1866852"},{"key":"20_CR6","unstructured":"Condor Project, \n                    \n                      http:\/\/www.cs.wisc.edu\/condor"},{"key":"20_CR7","unstructured":"Storage Resource Broker, \n                    \n                      http:\/\/www.sdsc.edu\/srb\/"},{"key":"20_CR8","unstructured":"Fernandez del Castillo, E.: Scheduling for Interactive and Parallel Applications on Grid. PhD thesis, Universitat Aut\u00f2noma de Barcelona (2008)"},{"key":"20_CR9","unstructured":"MIST Group: Middleware security and testing web site, \n                    \n                      http:\/\/www.cs.wisc.edu\/mist"},{"key":"20_CR10","unstructured":"The Common Weakness Enumeration, \n                    \n                      http:\/\/cwe.mitre.org\/"},{"key":"20_CR11","doi-asserted-by":"publisher","first-page":"81","DOI":"10.1109\/MSP.2005.159","volume":"3","author":"G. McGraw","year":"2005","unstructured":"McGraw, G., Tsipenyuk, K., Chess, B.: Seven pernicious kingdoms: A taxonomy of software security errors. IEEE Security and Privacy\u00a03, 81\u201384 (2005)","journal-title":"IEEE Security and Privacy"},{"key":"20_CR12","unstructured":"The open web application security project (owasp), \n                    \n                      https:\/\/www.owasp.org\/"},{"key":"20_CR13","unstructured":"Swiderski, F., Snyder, W.: Threat Modeling. Microsoft Press (2004)"},{"key":"20_CR14","unstructured":"The Common Weakness Scoring System, \n                    \n                      http:\/\/cwe.mitre.org\/cwss\/"},{"key":"20_CR15","unstructured":"Serrano Latorre, J.D., Heymann, E., Cesar, E.: Manual vs automated vulnerability assessment on grid middleware. III Congreso Espanol de Informatica (CEDI 2010) (September 2010)"},{"key":"20_CR16","unstructured":"Serrano Latorre, J.D., Heymann, E., Cesar, E.: Developing new automatic vulnerability strategies for hpc systems. In: Latinamerican Conference on High Performance Computing (CLCAR), pp. 166\u2013173 (August 2010)"},{"key":"20_CR17","unstructured":"MyProxy, \n                    \n                      http:\/\/grid.ncsa.illinois.edu\/myproxy"},{"key":"20_CR18","unstructured":"gLExec - Gluing grid computing jobs to the Unix world, \n                    \n                      https:\/\/www.nikhef.nl\/"},{"key":"20_CR19","unstructured":"The virtual organization membership service (voms), \n                    \n                      http:\/\/edg-wp2.web.cern.ch\/edg-wp2\/security\/voms\/voms.html"},{"key":"20_CR20","unstructured":"Serrano Latorre, J.D., Heymann, E., Cesar, E., Miller, B.: Vulnerability assessment enhancement for middleware. In: 5th Iberian Grid Infrastructure Conference (IBERGRID) (June 2011)"},{"key":"20_CR21","unstructured":"The GraphML File Format, \n                    \n                      http:\/\/graphml.graphdrawing.org\/"},{"key":"20_CR22","unstructured":"Crossgrid EU Project, \n                    \n                      http:\/\/www.eu-crossgrid.org\/"},{"key":"20_CR23","unstructured":"Interactive European Grid Project, \n                    \n                      http:\/\/grid.ifca.es\/inteugrid_ifca.htm"},{"key":"20_CR24","unstructured":"Baud, J.-P.B., Caey, J., Lemaitre, S., Nicholson, C., Smith, D., Stewart, G.: Lcg data management: From edg to egee (2005)"},{"key":"20_CR25","unstructured":"Andreetto, P., et al.: Practical approaches to grid workload and resource management in the egee project. In: Proceedings of the International Computing in High Energy and Nuclear Physics, pp. 899\u2013902 (2004)"},{"key":"20_CR26","unstructured":"OVAL - Open Vulnerability and Assessment Language, \n                    \n                      http:\/\/oval.mitre.org\/"},{"key":"20_CR27","doi-asserted-by":"crossref","unstructured":"Byers, D., Ardi, S., Shahmehri, N., Duma, C.: Modeling software vulnerabilities with vulnerability cause graphs. In: 22nd IEEE International Conference on Software Maintenance (ICSM 2006), pp. 411\u2013422 (2006)","DOI":"10.1109\/ICSM.2006.40"},{"key":"20_CR28","unstructured":"The Common Vulnerability and Exposures, \n                    \n                      http:\/\/cve.mitre.org\/"}],"container-title":["Lecture Notes in Computer Science","Information Security Practice and Experience"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-38033-4_20","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,12]],"date-time":"2019-05-12T21:59:12Z","timestamp":1557698352000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-38033-4_20"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642380327","9783642380334"],"references-count":28,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-38033-4_20","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}