{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,5]],"date-time":"2024-09-05T21:13:08Z","timestamp":1725570788937},"publisher-location":"Berlin, Heidelberg","reference-count":10,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642173578"},{"type":"electronic","value":"9783642173585"}],"license":[{"start":{"date-parts":[[2013,1,1]],"date-time":"2013-01-01T00:00:00Z","timestamp":1356998400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-45005-1_55","type":"book-chapter","created":{"date-parts":[[2013,11,27]],"date-time":"2013-11-27T09:53:14Z","timestamp":1385545994000},"page":"639-651","source":"Crossref","is-referenced-by-count":0,"title":["Towards Optimal Risk-Aware Security Compliance of a Large IT System"],"prefix":"10.1007","author":[{"given":"Daniel","family":"Coffman","sequence":"first","affiliation":[]},{"given":"Bhavna","family":"Agrawal","sequence":"additional","affiliation":[]},{"given":"Frank","family":"Schaffa","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"key":"55_CR1","doi-asserted-by":"crossref","unstructured":"Jansen, W.: Directions in security metrics research. National Institute of Standards and Technology, NISTIR 7564 (2010)","DOI":"10.6028\/NIST.IR.7564"},{"key":"55_CR2","doi-asserted-by":"crossref","unstructured":"Julisch, K.: Security compliance: the next frontier in security research. In: Proceedings of the 2008 Workshop on New Security Paradigms, pp. 71\u201374. ACM (2009)","DOI":"10.1145\/1595676.1595687"},{"key":"55_CR3","unstructured":"First.org. A Complete Guide to the Common Vulnerability Scoring System Version 2.0 - CVSS, \n                    \n                      http:\/\/www.first.org\/cvss\/cvss-guide"},{"key":"55_CR4","unstructured":"Pironti, J.P.: Developing Metrics for Effective Information Security Governance. INTEROP, New York (September 2008), \n                    \n                      http:\/\/www.interop.com\/newyork\/2008\/presentations\/conference\/rc10-pironti.pdf"},{"key":"55_CR5","doi-asserted-by":"crossref","unstructured":"Savola, R.: Towards a security metrics taxonomy for the information and communication technology industry. In: International Confernce on Software Engineering Advances, ICSEA, Cap Estrel, France (August 2007)","DOI":"10.1109\/ICSEA.2007.79"},{"key":"55_CR6","doi-asserted-by":"crossref","unstructured":"Herrmann, D.S.: Complete guide to security and privacy metrics: measuring regulatory compliance, operational resilience, and ROI. CRC Press (2007)","DOI":"10.1201\/9781420013283"},{"key":"55_CR7","unstructured":"Levi, E.: Device, Method and Program Product for Prioritizing Security Flaw Mitigation Tasks in a Business Service. U.S. Patent Application 12\/361,279, Filed (January 28, 2009)"},{"key":"55_CR8","unstructured":"Taraz, R.: Method and apparatus for rating a compliance level of a computer connecting to a network. U.S. Patent Application 11\/289,740, Filed (November 29, 2005)"},{"key":"55_CR9","unstructured":"Cplex, IBM ILOG. 12.5 User\u2019s Manual (2010), \n                    \n                      ftp:\/\/public.dhe.ibm.com\/software\/websphere\/ilog\/docs\/optimization\/cplex\/ps_usrmancplex.pdf"},{"key":"55_CR10","unstructured":"Optimization, Gurobi. Gurobi optimizer reference manual (2012), \n                    \n                      http:\/\/www.gurobi.com"}],"container-title":["Lecture Notes in Computer Science","Service-Oriented Computing"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-45005-1_55","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,24]],"date-time":"2019-05-24T21:43:28Z","timestamp":1558734208000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-45005-1_55"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642173578","9783642173585"],"references-count":10,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-45005-1_55","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}