{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T10:15:07Z","timestamp":1742984107935,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":32,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642414848"},{"type":"electronic","value":"9783642414855"}],"license":[{"start":{"date-parts":[[2013,1,1]],"date-time":"2013-01-01T00:00:00Z","timestamp":1356998400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-41485-5_2","type":"book-chapter","created":{"date-parts":[[2013,10,18]],"date-time":"2013-10-18T08:14:11Z","timestamp":1382084051000},"page":"10-21","source":"Crossref","is-referenced-by-count":18,"title":["Enhancing SIEM Technology to Protect Critical Infrastructures"],"prefix":"10.1007","author":[{"given":"Luigi","family":"Coppolino","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Salvatore","family":"D\u2019Antonio","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Valerio","family":"Formicola","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Luigi","family":"Romano","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"issue":"3","key":"2_CR1","doi-asserted-by":"publisher","first-page":"66","DOI":"10.1145\/2093548.2093568","volume":"55","author":"S.H. Kim","year":"2012","unstructured":"Kim, S.H., Wang, Q., Ullrich, J.B.: A comparative study of cyberattacks. Commun. ACM\u00a055(3), 66\u201373 (2012), doi:10.1145\/2093548.2093568","journal-title":"Commun. ACM"},{"key":"2_CR2","unstructured":"Symantec \u00ae Applied Research.\u00a0Symantec 2010 Critical Infrastructure Protection Study (Global Results) (October 2010)"},{"key":"2_CR3","unstructured":"White Paper, Symantec \u00ae Intelligence Quarterly Report: October-December. Targeted Attacks on Critical Infrastructures (2010)"},{"key":"2_CR4","unstructured":"White Paper, Global Energy Cyberattacks: \u201cNight Dragon\u201d, McAfee \u00ae FoundstonerProfessional Services and McAfee Labs (February 10, 2011)"},{"key":"2_CR5","unstructured":"Baker, S., Waterman, S., Ivanov, G.: In the Crossfire: Critical Infrastructure in the Age of Cyber War. McAffee\u00a9 (2010), \n                    \n                      http:\/\/resources.mcafee.com\/content\/NACIPReport"},{"key":"2_CR6","unstructured":"Stouffer, K., Falco, J., Scarfone, K.: Guide to Industrial Control Systems (ICS) Security. National Institute of Standards and Technology (NIST), SP 800-82 (June 2011)"},{"key":"2_CR7","unstructured":"MASSIF project, \n                    \n                      http:\/\/www.massif-project.eu\/"},{"key":"2_CR8","unstructured":"MASSIF project, Scenario requirements Deliverable D2.1.1 (April 2011)"},{"key":"2_CR9","unstructured":"INSPIRE project"},{"key":"2_CR10","doi-asserted-by":"crossref","unstructured":"Zeng, W., Chow, M.Y.: A trade-off model for performance and security in secured networked control systems. In: Proc. IEEE ISIE, pp. 1997\u20132002 (2011)","DOI":"10.1109\/ISIE.2011.5984466"},{"issue":"4","key":"2_CR11","doi-asserted-by":"publisher","first-page":"217","DOI":"10.1109\/TII.2005.843826","volume":"1","author":"Y. Xu","year":"2005","unstructured":"Xu, Y., Song, R., Korba, L., Wang, L., Shen, W., Lang, S.: Distributed device networks with security constraints. IEEE Trans. Ind. Informat.\u00a01(4), 217\u2013225 (2005)","journal-title":"IEEE Trans. Ind. Informat."},{"issue":"4","key":"2_CR12","doi-asserted-by":"publisher","first-page":"74","DOI":"10.1109\/MSP.2008.95","volume":"6","author":"S. Landau","year":"2008","unstructured":"Landau, S.: Security and Privacy Landscape in Emerging Technologies. IEEE Security & Privacy\u00a06(4), 74\u201377 (2008), doi:10.1109\/MSP.2008.95","journal-title":"IEEE Security & Privacy"},{"key":"2_CR13","unstructured":"RSATM Security. RSA enVisionTM Universal Device Support Guide (2008)"},{"key":"2_CR14","unstructured":"AlienVaultTM, Available OSSIM Plugin List (2010)"},{"key":"2_CR15","unstructured":"ArcSightTM, ArcSightTM Smartconnector (2009)"},{"key":"2_CR16","unstructured":"Q1LabsTM, Supported devices, \n                    \n                      http:\/\/q1labs.com\/products\/supported-devices.aspx"},{"key":"2_CR17","unstructured":"Federal Rules of Evidence, The Committee on the Judiciary House of Representatives (December 1, 2010), \n                    \n                      http:\/\/judiciary.house.gov\/hearings\/printers\/111th\/evid2010.pdf"},{"issue":"4","key":"2_CR18","doi-asserted-by":"publisher","first-page":"452","DOI":"10.1109\/TPDS.2009.83","volume":"21","author":"Paulo Sousa","year":"2010","unstructured":"Sousa, P., Bessani, A., Correia, M., Neves, N., Verissimo, P.: Highly available intrusion-tolerant services with proactive-reactive recovery. IEEE Transactions on Parallel and Distributed Systems\u00a021(4) (2010)","journal-title":"IEEE Transactions on Parallel and Distributed Systems"},{"key":"2_CR19","unstructured":"BSD Syslog Protocol, RFC 3164, \n                    \n                      http:\/\/www.ietf.org\/rfc\/rfc3164.txt"},{"key":"2_CR20","doi-asserted-by":"publisher","first-page":"412","DOI":"10.1109\/PDP.2007.16","volume-title":"Proceedings of the 15th Euromicro International Conference on Parallel, Distributed and Network-Based Processing (PDP 2007)","author":"F. Campanile","year":"2007","unstructured":"Campanile, F., Cilardo, A., Coppolino, L., Romano, L.: Adaptable Parsing of Real-Time Data Streams. In: Proceedings of the 15th Euromicro International Conference on Parallel, Distributed and Network-Based Processing (PDP 2007), pp. 412\u2013418. IEEE Computer Society, Washington, DC (2007), doi:10.1109\/PDP.2007.16"},{"key":"2_CR21","unstructured":"Coppolino, L., D\u2019Antonio, S., Esposito, M., Romano, L.: Exploiting diversity and correlation to improve the performance of intrusion detection systems. In: International Conference on Network and Service Security, N2S 2009, June 24-26 (2009) ISBN: 978-2-9532-4431-1"},{"key":"2_CR22","unstructured":"Home of SMC: the State Machine Compiler, \n                    \n                      http:\/\/smc.sourceforge.net\/"},{"key":"2_CR23","doi-asserted-by":"crossref","unstructured":"Afzaal, M., Di Sarno, C., Coppolino, L., D\u2019Antonio, S., Romano, L.: A Resilient Architecture for Forensic Storage of Events in Critical Infrastructures. In: 2012 IEEE 14th International Symposium on High-Assurance Systems Engineering (HASE), October 25-27, pp. 48\u201355 (2012), doi:10.1109\/HASE.2012.9","DOI":"10.1109\/HASE.2012.9"},{"key":"2_CR24","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"207","DOI":"10.1007\/3-540-45539-6_15","volume-title":"Advances in Cryptology - EUROCRYPT 2000","author":"V. Shoup","year":"2000","unstructured":"Shoup, V.: Practical threshold signatures. In: Preneel, B. (ed.) EUROCRYPT 2000. LNCS, vol.\u00a01807, pp. 207\u2013220. Springer, Heidelberg (2000)"},{"issue":"5","key":"2_CR25","doi-asserted-by":"publisher","first-page":"44","DOI":"10.1109\/MWC.2010.5601957","volume":"17","author":"L. Buttyan","year":"2010","unstructured":"Buttyan, L., Gessner, D., Hessler, A., Langendoerfer, P.: Application of wireless sensor networks in critical infrastructure protection: challenges and design options (Security and Privacy in Emerging Wireless Networks). IEEE Wireless Communications\u00a017(5), 44\u201349 (2010), doi:10.1109\/MWC.2010.5601957","journal-title":"IEEE Wireless Communications"},{"key":"2_CR26","unstructured":"Wolmarans, V., Hancke, G.: Wireless Sensor Networks in Power Supply Grids. In: SATNAC 2008. Wild Coast Sun (September 2008)"},{"key":"2_CR27","unstructured":"Bai, X., Meng, X., Du, Z., Gong, M., Hu, Z.: Design of Wireless Sensor Network in SCADA System for Wind Power Plant. In: Proceedings of the IEEE International Conference on Automation and Logistics, Qingdao, China (September 2008)"},{"key":"2_CR28","unstructured":"Minteos DamWatch, \n                    \n                      http:\/\/www.minteos.com\/wp-content\/uploads\/2011\/02\/Microsoft-Word-minteos-damwatch_ita.pdf"},{"issue":"3","key":"2_CR29","doi-asserted-by":"publisher","first-page":"49","DOI":"10.1109\/MSP.2011.67","volume":"9","author":"R. Langner","year":"2011","unstructured":"Langner, R.: Stuxnet: Dissecting a Cyberwarfare Weapon. IEEE Security and Privacy\u00a09(3), 49\u201351 (2011), doi:10.1109\/MSP.2011.67","journal-title":"IEEE Security and Privacy"},{"key":"2_CR30","doi-asserted-by":"crossref","unstructured":"Bondavalli, A., Daidone, A., Coppolino, L., Romano, L.: A hidden Markov model based intrusion detection system for wireless sensor networks. International Journal of Critical Computer-Based Systems (IJCCBS)\u00a03(3) (2012)","DOI":"10.1504\/IJCCBS.2012.050305"},{"key":"2_CR31","unstructured":"OSSIM AlienVaultTM, \n                    \n                      http:\/\/www.alienvault.com\/"},{"key":"2_CR32","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"199","DOI":"10.1007\/978-3-642-24270-0_15","volume-title":"Computer Safety, Reliability, and Security","author":"L. Coppolino","year":"2011","unstructured":"Coppolino, L., D\u2019Antonio, S., Formicola, V., Romano, L.: Integration of a System for Critical Infrastructure Protection with the OSSIM SIEM Platform: A dam case study. In: Flammini, F., Bologna, S., Vittorini, V. (eds.) SAFECOMP 2011. LNCS, vol.\u00a06894, pp. 199\u2013212. Springer, Heidelberg (2011)"}],"container-title":["Lecture Notes in Computer Science","Critical Information Infrastructures Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-41485-5_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,23]],"date-time":"2019-05-23T15:39:28Z","timestamp":1558625968000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-41485-5_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642414848","9783642414855"],"references-count":32,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-41485-5_2","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}