{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T00:00:23Z","timestamp":1740096023908,"version":"3.37.3"},"publisher-location":"Wiesbaden","reference-count":23,"publisher":"Vieweg+Teubner","isbn-type":[{"type":"print","value":"9783834814388"},{"type":"electronic","value":"9783834897886"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011]]},"DOI":"10.1007\/978-3-8348-9788-6_21","type":"book-chapter","created":{"date-parts":[[2011,1,12]],"date-time":"2011-01-12T21:35:36Z","timestamp":1294868136000},"page":"214-225","source":"Crossref","is-referenced-by-count":1,"title":["Defining Threat Agents: Towards a More Complete Threat Analysis"],"prefix":"10.1007","author":[{"given":"Timothy","family":"Casey","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Patrick","family":"Koeberl","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Claire","family":"Vishik","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"21_CR1","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1558607.1558677","volume-title":"CSIIRW \u201809","author":"R. C. Th omas","year":"2009","unstructured":"Th omas, R. C. 2009. Total cost of security: a method for managing risks and incentives across the extended enterprise. In Proceedings of the 5th Annual Workshop on Cyber Security and information intelligence Research: Cyber Security and information intelligence Challenges and Strategies (Oak Ridge, Tennessee, April 13 - 15, 2009). F. Sheldon, G. Peterson, A. Krings, R. Abercrombie, and A. Mili, Eds. CSIIRW \u201809. ACM, New York, NY, 1\u20134."},{"key":"21_CR2","first-page":"285","volume-title":"Research Directions in Requirements Engineering. In 2007 Future of Soft ware Engineering (May 23\u201325, 2007). International Conference on Soft ware Engineering","author":"B. H. Cheng","year":"2007","unstructured":"Cheng, B. H. and Atlee, J. M. 2007. Research Directions in Requirements Engineering. In 2007 Future of Soft ware Engineering (May 23\u201325, 2007). International Conference on Soft ware Engineering. IEEE Computer Society, Washington, DC, 285\u2013303."},{"key":"21_CR3","first-page":"183","volume-title":"Formalizing information security knowledge. In Proceedings of the 4th international Symposium on information, Computer, and Communications Security (Sydney, Australia, March 10 - 12, 2009). ASIACCS \u201809","author":"S. Fenz","year":"2009","unstructured":"Fenz, S. and Ekelhart, A. 2009. Formalizing information security knowledge. In Proceedings of the 4th international Symposium on information, Computer, and Communications Security (Sydney, Australia, March 10 - 12, 2009). ASIACCS \u201809. ACM, New York, NY, 183\u2013194."},{"issue":"8","key":"21_CR4","doi-asserted-by":"publisher","first-page":"1434","DOI":"10.1016\/j.adhoc.2009.04.012","volume":"7","author":"A. A. Cardenas","year":"2009","unstructured":"Cardenas, A. A., Roosta, T., and Sastry, S. 2009. Rethinking security properties, threat models, and the design space in sensor networks: A case study in SCADA systems. Ad Hoc Netw. 7, 8 (Nov. 2009), 1434\u20131447.","journal-title":"Ad Hoc Netw"},{"key":"21_CR5","first-page":"535","volume-title":"Improving CVSS-based vulnerability prioritization and response with context information. In Proceedings of the 2009 3rd international Symposium on Empirical Software Engineering and Measurement (October 15 - 16, 2009). ESEM","author":"C. Fruhwirth","year":"2009","unstructured":"Fruhwirth, C. and Mannisto, T. 2009. Improving CVSS-based vulnerability prioritization and response with context information. In Proceedings of the 2009 3rd international Symposium on Empirical Software Engineering and Measurement (October 15 - 16, 2009). ESEM. IEEE Computer Society, Washington, DC, 535\u2013544."},{"key":"21_CR6","unstructured":"Daruwala, B., Mandujano, S., Mangipudi, N. K., and Wong, H. 2009. Threat analysis for hardware and software products using HazOP. In Proceedings of the international Conference on Computational and information Science 2009 (Houston, USA, April 30 - May 02, 2009). V. Zafiris, M. Benavides, K. Gao, S. Hashemi, K. Jegdic, G. A. Kouzaev, P. Simeonov, L. Vladareanu, and C. Vobach, Eds. Recent Advances In Electrical Engineering. World Scientific and Engineering Academy and Society (WSEAS), Stevens Point, Wisconsin, 446\u2013453."},{"key":"21_CR7","doi-asserted-by":"crossref","unstructured":"R. K. Abercrombie, F. T. Sheldon, and A. Mili, \u201cManaging Complex IT Security Processes with Value Based Measures,\u201d Proceedings of 2009 IEEE Symposium on Computational Intelligence in Cyber Security, Nashville, TN, April 1, 2009","DOI":"10.1109\/CICYBS.2009.4925092"},{"key":"21_CR8","unstructured":"Lukas Ruf, Consecom AG, Anthony Thorn, ATSS GmbH, Tobias Christen, Z\u00fcrich Financial Services AG, Beatrice Gruber, Credit Suisse AG, Roland Portmann, Hochschule Luzer. Threat Modeling in Security Architecture -The Nature of Threats. ISSS Working Group. Available at: http:\/\/www.isss.ch\/fileadmin\/publ\/agsa\/ISSS-AG-Security-Architecture__Threat-Modeling_Lukas-Ruf.pdf"},{"key":"21_CR9","doi-asserted-by":"crossref","unstructured":"Kim, Y., Park, G., Kim, T., and Lee, S. 2007. Security Evaluation for Information Assurance. In Proceedings of the the 2007 international Conference Computational Science and Its Applications (August 26 - 29, 2007). ICCSA. IEEE Computer Society, Washington, DC, 227\u2013230.","DOI":"10.1109\/ICCSA.2007.55"},{"key":"21_CR10","doi-asserted-by":"crossref","unstructured":"Kwan, L., Ray, P., and Stephens, G. 2008. Towards a Methodology for Profiling Cyber Criminals. In Proceedings of the Proceedings of the 41st Annual Hawaii international Conference on System Sciences (January 07 - 10, 2008). HICSS. IEEE Computer Society, Washington, DC, 264. Williams, L. Y. 2007 A Taxonomy of Network-Perpetrated Criminal Activity: Developing an Empirically-Based Model for Recourse Strategies. Doctoral Thesis. UMI Order Number: AAI3259653., Capella University.","DOI":"10.1109\/HICSS.2008.460"},{"issue":"2","key":"21_CR11","doi-asserted-by":"publisher","first-page":"206","DOI":"10.1147\/sj.302.0206","volume":"30","author":"DG Abraham","year":"1991","unstructured":"DG Abraham, GM Dolan, GP Double, JV Stevens. 1991. Transaction Security System. In IBM Systems Journal Journal, v 30 no 2 (1991), 206\u2013229.","journal-title":"IBM Systems Journal Journal"},{"key":"21_CR12","unstructured":"Bierman, E. and Cloete, E. 2002. Classification of malicious host threats in mobile agent computing. In Proceedings of the 2002 Annual Research Conference of the South African institute of Computer Scientists and information Technologists on Enablement Through Technology (Port Elizabeth, South Africa, September 16 - 18, 2002). ACM International Conference Proceeding Series, vol. 30. South African Institute for Computer Scientists and Information Technologists, 141\u2013148."},{"key":"21_CR13","unstructured":"Casey, Timothy. Threat Agent Library Helps Identify Information Security Risks. Available at: http:\/\/communities.intel.com\/docs\/DOC-1151"},{"key":"21_CR14","unstructured":"Rosenquist, Matt. Prioritizing Information Security Risks with Threat Agent Risk Assessment. Available at http:\/\/download.intel.com\/it\/pdf\/Prioritizing_Info_Security_Risks_with_TARA.pdf"},{"issue":"8","key":"21_CR15","doi-asserted-by":"publisher","first-page":"50","DOI":"10.1109\/MC.2002.1023788","volume":"35","author":"G. Cybenko","year":"2002","unstructured":"Cybenko, G., Giani, A., and Thompson, P. 2002. Cognitive Hacking: A Battle for the Mind. Computer 35, 8 (Aug. 2002), 50\u201356.","journal-title":"Computer"},{"key":"21_CR16","doi-asserted-by":"crossref","unstructured":"Chen, Y. 2007. Stakeholder Value Driven Threat Modeling for Off the Shelf Based Systems. In Companion To the Proceedings of the 29th international Conference on Software Engineering (May 20 - 26, 2007). International Conference on Software Engineering. IEEE Computer Society, Washington, DC, 91\u201392. DOI= http:\/\/dx.doi.org\/10.1109\/ICSECOMPANION.2007.69","DOI":"10.1109\/ICSECOMPANION.2007.69"},{"issue":"4","key":"21_CR17","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1629080.1629082","volume":"5","author":"R. Hasan","year":"2009","unstructured":"Hasan, R., Sion, R., and Winslett, M. 2009. Preventing history forgery with secure provenance. Trans. Storage 5, 4 (Dec. 2009), 1\u201343.","journal-title":"Storage"},{"key":"21_CR18","unstructured":"Department of Homeland Security. Information Technology Sector Baseline Risk Assessment. August 2009. Available at: http:\/\/www.dhs.gov\/xlibrary\/assets\/nipp_it_baseline_risk_assessmen.pdf"},{"key":"21_CR19","unstructured":"Maybury M., Chase P., Cheiker B., Brackney D., Matzner S., Hetherington T., et al. Analysis and detection of malicious insiders; 2005."},{"key":"21_CR20","unstructured":"Rosenquist, Matthew: Whitepaper: Prioritizing Information Security Risks with Threat Agent Risk Assessment. Available at: http:\/\/communities.intel.com\/docs\/DOC-4693"},{"key":"21_CR21","doi-asserted-by":"crossref","unstructured":"Thuraisingham, B. 2009. Data Mining for Malicious Code Detection and Security Applications. In Proceedings of the 2009 IEEE\/WIC\/ACM international Joint Conference on Web intelligence and intelligent Agent Technology - Volume 02 (September 15 - 18, 2009). Web Intelligence & Intelligent Agent. IEEE Computer Society, Washington, DC, 6\u20137.","DOI":"10.1109\/WI-IAT.2009.379"},{"issue":"1","key":"21_CR22","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1731060.1731063","volume":"28","author":"M. Walfish","year":"2010","unstructured":"Walfish, M., Vutukuru, M., Balakrishnan, H., Karger, D., and Shenker, S. 2010. DDoS defense by offense. ACM Trans. Comput. Syst. 28, 1 (Mar. 2010), 1\u201354.","journal-title":"ACM Trans. Comput. Syst"},{"issue":"4","key":"21_CR23","doi-asserted-by":"publisher","first-page":"225","DOI":"10.1016\/j.istr.2008.10.013","volume":"13","author":"T. Walker","year":"2008","unstructured":"Walker, T. 2008. Practical management of malicious insider threat - An enterprise CSIRT perspective. Inf. Secur. Tech. Rep. 13, 4 (Nov. 2008), 225\u2013234.","journal-title":"Inf. Secur. Tech. Rep."}],"container-title":["ISSE 2010 Securing Electronic Business Processes"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-8348-9788-6_21.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,11,23]],"date-time":"2020-11-23T12:14:27Z","timestamp":1606133667000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-8348-9788-6_21"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011]]},"ISBN":["9783834814388","9783834897886"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-8348-9788-6_21","relation":{},"subject":[],"published":{"date-parts":[[2011]]}}}