{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,13]],"date-time":"2026-07-13T18:04:32Z","timestamp":1783965872954,"version":"3.55.0"},"reference-count":79,"publisher":"Elsevier BV","license":[{"start":{"date-parts":[[2026,11,1]],"date-time":"2026-11-01T00:00:00Z","timestamp":1793491200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"},{"start":{"date-parts":[[2026,11,1]],"date-time":"2026-11-01T00:00:00Z","timestamp":1793491200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/legal\/tdmrep-license"},{"start":{"date-parts":[[2026,5,30]],"date-time":"2026-05-30T00:00:00Z","timestamp":1780099200000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"content-domain":{"domain":["elsevier.com","sciencedirect.com"],"crossmark-restriction":true},"short-container-title":["Computers &amp; Security"],"published-print":{"date-parts":[[2026,11]]},"DOI":"10.1016\/j.cose.2026.105000","type":"journal-article","created":{"date-parts":[[2026,5,30]],"date-time":"2026-05-30T15:26:14Z","timestamp":1780154774000},"page":"105000","update-policy":"https:\/\/doi.org\/10.1016\/elsevier_cm_policy","source":"Crossref","is-referenced-by-count":0,"special_numbering":"C","title":["From Systematic Threat Search to pentesting: Industrial Control Systems threat models"],"prefix":"10.1016","volume":"170","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-6776-9485","authenticated-orcid":false,"given":"Daniele","family":"Granata","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0000-6511-3223","authenticated-orcid":false,"given":"Antonio","family":"Iannaccone","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4938-9216","authenticated-orcid":false,"given":"Roberto","family":"Nardone","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2571-8572","authenticated-orcid":false,"given":"Luigi","family":"Romano","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"78","reference":[{"key":"10.1016\/j.cose.2026.105000_b1","series-title":"Asreview lab: A tool for ai-assisted systematic reviews [software v.2.0.2]","author":"A. L. developers","year":"2023"},{"issue":"2","key":"10.1016\/j.cose.2026.105000_b2","doi-asserted-by":"crossref","first-page":"189","DOI":"10.1007\/s10207-019-00452-z","article-title":"Attacks on smart grid: Power supply interruption and malicious power generation","volume":"19","author":"Adepu","year":"2020","journal-title":"Int. J. Inf. Secur."},{"key":"10.1016\/j.cose.2026.105000_b3","doi-asserted-by":"crossref","DOI":"10.1016\/j.ijcip.2024.100729","article-title":"Beyond botnets: Autonomous firmware zombie attack in industrial control systems","volume":"48","author":"Alavi","year":"2025","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"10.1016\/j.cose.2026.105000_b4","first-page":"5","article-title":"Risk assessment methods for converged iot and scada systems: Review and recommendations","author":"Aldmour","year":"2019","journal-title":"Living Internet Things (IoT 2019)"},{"key":"10.1016\/j.cose.2026.105000_b5","series-title":"2023 IEEE 20th Consumer Communications & Networking Conference","first-page":"1","article-title":"A stealthy false command injection attack on modbus based scada systems","author":"Alsabbagh","year":"2023"},{"key":"10.1016\/j.cose.2026.105000_b6","series-title":"2023 IEEE 19th International Conference on Factory Communication Systems","first-page":"1","article-title":"You are what you attack: Breaking the cryptographically protected s7 protocol","author":"Alsabbagh","year":"2023"},{"key":"10.1016\/j.cose.2026.105000_b7","series-title":"2024 4th Interdisciplinary Conference on Electrics and Computer","first-page":"1","article-title":"Network-based ransomware-a new threat demonstrated on the example of industrial control systems","author":"Altschaffel","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b8","series-title":"Store: Security threat oriented requirements engineering methodology","author":"Ansari","year":"2019"},{"key":"10.1016\/j.cose.2026.105000_b9","series-title":"2024 IEEE International Symposium on Hardware Oriented Security and Trust","first-page":"182","article-title":"Charlie, charlie, charlie on industrial control systems: Plc control logic attacks by design, not by chance","author":"Ayub","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b10","series-title":"2021 IEEE Security and Privacy Workshops","first-page":"383","article-title":"Empirical study of plc authentication protocols in industrial control systems","author":"Ayub","year":"2021"},{"issue":"2","key":"10.1016\/j.cose.2026.105000_b11","first-page":"1","article-title":"Analysis of programmable logic controller firmware for threat assessment and forensic investigation","volume":"12","author":"Basnight","year":"2013","journal-title":"J. Inf. Warf."},{"key":"10.1016\/j.cose.2026.105000_b12","doi-asserted-by":"crossref","DOI":"10.1109\/ACCESS.2025.3575070","article-title":"A proactive and time-sensitive cyber risk assessment model integrating markov chains and bayesian networks","author":"Cheimonidis","year":"2025","journal-title":"IEEE Access"},{"key":"10.1016\/j.cose.2026.105000_b13","series-title":"International Conference on Applied Cryptography and Network Security","first-page":"245","article-title":"Earic: Exploiting adc registers in iot and control systems","author":"Chekole","year":"2023"},{"key":"10.1016\/j.cose.2026.105000_b14","series-title":"30th International Conference on Artificial Life and Robotics","first-page":"204","article-title":"Obstructing plc operations through modbus command manipulation","author":"Chen","year":"2025"},{"key":"10.1016\/j.cose.2026.105000_b15","series-title":"Communication networks and systems for power utility automation \u2013 part 8-1: Specific communication service mapping (scsm) \u2013 mappings to mms (iso 9506-1 and iso 9506-2) and to iso\/iec 8802-3","author":"Code","year":"2004"},{"key":"10.1016\/j.cose.2026.105000_b16","series-title":"2020 International Conference on Cyber Security and Protection of Digital Services","first-page":"1","article-title":"Introducing a forensics data type taxonomy of acquirable artefacts from programmable logic controllers","author":"Cook","year":"2020"},{"key":"10.1016\/j.cose.2026.105000_b17","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2025.104315","article-title":"Scass: Breaking into scada systems security","volume":"151","author":"d\u2019Ambrosio","year":"2025","journal-title":"Comput. Secur."},{"key":"10.1016\/j.cose.2026.105000_b18","series-title":"2024 Systems and Information Engineering Design Symposium","first-page":"301","article-title":"Cyber threat modeling for water and wastewater systems: Contextualizing stride and dread with the current cyber threat landscape","author":"Davis","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b19","author":"Devicenet: Can in automation (cia), cAN in Automation","year":"1994"},{"issue":"8","key":"10.1016\/j.cose.2026.105000_b20","first-page":"196","article-title":"The profibus protocol observation","volume":"45","author":"Draho\u0161","year":"2012","journal-title":"IFAC Proc. Vol."},{"key":"10.1016\/j.cose.2026.105000_b21","series-title":"Modbus Application Protocol","author":"Dube","year":"2003"},{"key":"10.1016\/j.cose.2026.105000_b22","series-title":"Security analysis of vendor implementations of the opc ua protocol for industrial control systems","author":"Erba","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b23","doi-asserted-by":"crossref","unstructured":"Gardiner, J., Eiffert, A., Garraghan, P., Race, N., Nagaraja, S., Rashid, A., 2021. Controller-in-the-middle: Attacks on software defined networks in industrial control systems. In: Proceedings of the 2th Workshop on CPS&IoT Security and Privacy. pp. 63\u201368.","DOI":"10.1145\/3462633.3483979"},{"issue":"4","key":"10.1016\/j.cose.2026.105000_b24","doi-asserted-by":"crossref","first-page":"2539","DOI":"10.1109\/TSMC.2023.3345254","article-title":"Andvi: Automated network device and vulnerability identification in scada\/ics by passive monitoring","volume":"54","author":"Ghazo","year":"2024","journal-title":"IEEE Trans. Syst. Man Cybern.: Syst."},{"key":"10.1016\/j.cose.2026.105000_b25","series-title":"International Workshop on the Security of Industrial Control Systems and Cyber-Physical Systems","first-page":"86","article-title":"Simulation-based evaluation of ddos against smart grid scadas","author":"Gogic","year":"2019"},{"key":"10.1016\/j.cose.2026.105000_b26","doi-asserted-by":"crossref","first-page":"129788","DOI":"10.1109\/ACCESS.2023.3333209","article-title":"Automated generation of 5 g fine-grained threat models: A systematic approach","volume":"11","author":"Granata","year":"2023","journal-title":"IEEE Access"},{"key":"10.1016\/j.cose.2026.105000_b27","series-title":"Cloud Computing and Services Science","first-page":"47","article-title":"Risk analysis automation process in it security for cloud applications","author":"Granata","year":"2022"},{"key":"10.1016\/j.cose.2026.105000_b28","series-title":"Italian Conference on Cybersecurity 2021, ITASEC 2021","first-page":"207","article-title":"Security in iot pairing & authentication protocols, a threat model, a case study analysis","volume":"vol. 2490","author":"Granata","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b29","series-title":"2024 IEEE 20th International Conference on Automation Science and Engineering","first-page":"3725","article-title":"Attacking automation systems via the plc backplane bus","author":"Ha","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b30","series-title":"2023 IEEE 21st International Conference on Industrial Informatics","first-page":"1","article-title":"Protocol-agnostic detection of stealth attacks on networked control systems","author":"Heseding","year":"2023"},{"key":"10.1016\/j.cose.2026.105000_b31","doi-asserted-by":"crossref","unstructured":"Hildebrandt, M., Lamsh\u00f6ft, K., Dittmann, J., Neubert, T., Vielhauer, C., 2020. Information hiding in industrial control systems: An opc ua based supply chain attack and its detection. In: Proceedings of the 2020 ACM Workshop on Information Hiding and Multimedia Security. pp. 115\u2013120.","DOI":"10.1145\/3369412.3395068"},{"key":"10.1016\/j.cose.2026.105000_b32","series-title":"2023 North American Power Symposium","first-page":"1","article-title":"Mitigating common cyber vulnerabilities in dnp3 with transport layer security","author":"Holguin","year":"2023"},{"key":"10.1016\/j.cose.2026.105000_b33","doi-asserted-by":"crossref","first-page":"156871","DOI":"10.1109\/ACCESS.2019.2949645","article-title":"An enhanced multi-stage semantic attack against industrial control systems","volume":"7","author":"Hu","year":"2019","journal-title":"IEEE Access"},{"key":"10.1016\/j.cose.2026.105000_b34","series-title":"Real-time power system simulation with hardware devices through dnp3 in cyber\u2013physical testbed","author":"Huang","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b35","doi-asserted-by":"crossref","DOI":"10.1016\/j.ijcip.2021.100470","article-title":"Vulnerability analysis of s7 plcs: Manipulating the security mechanism","volume":"35","author":"Hui","year":"2021","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"10.1016\/j.cose.2026.105000_b36","series-title":"Iec 62443: Industrial Communication Networks - Network and System Security","author":"IEC","year":"2019"},{"key":"10.1016\/j.cose.2026.105000_b37","series-title":"The industrial internet of things volume g1: Reference architecture","author":"I.I. Consortium","year":"2019"},{"key":"10.1016\/j.cose.2026.105000_b38","doi-asserted-by":"crossref","DOI":"10.1016\/j.compind.2022.103611","article-title":"Threat modelling for industrial cyber physical systems in the era of smart manufacturing","volume":"137","author":"Jbair","year":"2022","journal-title":"Comput. Ind."},{"key":"10.1016\/j.cose.2026.105000_b39","series-title":"2024 IEEE 21st India Council International Conference","first-page":"1","article-title":"An investigative evaluation of open source intrusion detection systems for operational technology networks using mitre ics attack simulation on a thermal power plant test bed","author":"Joy","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b40","series-title":"2015 IEEE 20th Conference on Emerging Technologies & Factory Automation","first-page":"1","article-title":"Investigating cyber\u2013physical attacks against iec 61850 photovoltaic inverter installations","author":"Kang","year":"2015"},{"issue":"8","key":"10.1016\/j.cose.2026.105000_b41","doi-asserted-by":"crossref","first-page":"10467","DOI":"10.1007\/s10586-024-04529-w","article-title":"A novel approach detection for iiot attacks via artificial intelligence","volume":"27","author":"Karacay\u0131lmaz","year":"2024","journal-title":"Clust. Comput."},{"issue":"1","key":"10.1016\/j.cose.2026.105000_b42","doi-asserted-by":"crossref","first-page":"7","DOI":"10.1016\/j.infsof.2008.09.009","article-title":"Systematic literature reviews in software engineering \u2013 a systematic literature review","volume":"51","author":"Kitchenham","year":"2009","journal-title":"Inf. Softw. Technol."},{"key":"10.1016\/j.cose.2026.105000_b43","series-title":"2019 IEEE International Conference on Communications Control and Computing Technologies for Smart Grids","first-page":"1","article-title":"Rnn-based anomaly detection in dnp3 transport layer","author":"Kwon","year":"2019"},{"issue":"13","key":"10.1016\/j.cose.2026.105000_b44","doi-asserted-by":"crossref","DOI":"10.21105\/joss.00265","article-title":"Mosquitto: server and client implementation of the mqtt protocol","volume":"2","author":"Light","year":"2017","journal-title":"J. Open Source Softw."},{"key":"10.1016\/j.cose.2026.105000_b45","series-title":"Advanced Materials Research","first-page":"4710","article-title":"Study on a new industrial control protocol \u2013 ethernet\/ip and its implementation","volume":"vol. 433-440","author":"Liu","year":"2012"},{"key":"10.1016\/j.cose.2026.105000_b46","unstructured":"L\u00f3pez-Morales, E., Planta, U., Rubio-Medrano, C., Abbasi, A., Cardenas, A.A., 2024. {SoK}: Security of programmable logic controllers. In: 33rd USENIX Security Symposium. USENIX Security 24, pp. 7103\u20137122."},{"issue":"4","key":"10.1016\/j.cose.2026.105000_b47","doi-asserted-by":"crossref","first-page":"541","DOI":"10.70003\/160792642024072504005","article-title":"A survey of cyber security and safety in industrial control systems","volume":"25","author":"Ma","year":"2024","journal-title":"J. Internet Technol."},{"key":"10.1016\/j.cose.2026.105000_b48","doi-asserted-by":"crossref","first-page":"4","DOI":"10.1016\/j.ijcip.2017.10.001","article-title":"Comparative analysis of the security of configuration protocols for industrial control devices","volume":"19","author":"Mart\u00edn-Liras","year":"2017","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"10.1016\/j.cose.2026.105000_b49","series-title":"2021 International Conference on Computer blockchain and Financial Development","first-page":"117","article-title":"Research on information security technology based on hierarchical intelligent control system","author":"Meng","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b50","series-title":"2016 14th Annual Conference on Privacy Security and Trust","first-page":"96","article-title":"An internet-wide view of ics devices","author":"Mirian","year":"2016"},{"key":"10.1016\/j.cose.2026.105000_b51","series-title":"CAPEC: Common Attack Pattern Enumeration and Classification","author":"MITRE Corporation","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b52","article-title":"Correct by design, complete by iteration: A graph-based framework for automated security assessment","author":"Moretta","year":"2025","journal-title":"Internet Things"},{"key":"10.1016\/j.cose.2026.105000_b53","series-title":"Technology, Nist sp 800-82r3 Guide to Industrial Control Systems (Ics) Security","author":"N. I. of Standards","year":"2023"},{"key":"10.1016\/j.cose.2026.105000_b54","doi-asserted-by":"crossref","first-page":"16239","DOI":"10.1109\/ACCESS.2021.3053135","article-title":"A cyber-security methodology for a cyber\u2013physical industrial control system testbed","volume":"9","author":"Noorizadeh","year":"2021","journal-title":"IEEE Access"},{"key":"10.1016\/j.cose.2026.105000_b55","series-title":"Ettercap: Comprehensive suite for man in the middle attacks","author":"Ornaghi","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b56","series-title":"Details of the reference architectural model industrie 4.0 (rami 4.0)","author":"P. I. 4.0","year":"2015"},{"key":"10.1016\/j.cose.2026.105000_b57","doi-asserted-by":"crossref","unstructured":"Paul, J., Ponce, L., Zhang, M., Garcia, L., 2023. Towards cross-physical-domain threat inference for industrial control system defense adaptation. In: Proceedings of the 2024 Workshop on Re-Design Industrial Control Systems with Security. pp. 57\u201364.","DOI":"10.1145\/3689930.3695210"},{"key":"10.1016\/j.cose.2026.105000_b58","series-title":"Simulating command injection attacks on iec 60870-5-104 protocol in scada system","first-page":"153","author":"Qassim","year":"2018"},{"key":"10.1016\/j.cose.2026.105000_b59","article-title":"A review: Towards practical attack taxonomy for industrial control systems","volume":"7","author":"Qassim","year":"2018","journal-title":"Int. J. Eng. Technol."},{"issue":"2.14 Special Issue 14","key":"10.1016\/j.cose.2026.105000_b60","first-page":"145","article-title":"A review: Towards practical attack taxonomy for industrial control systems","volume":"7","author":"Qassim","year":"2018","journal-title":"Int. J. Eng. Technol. (UAE)"},{"key":"10.1016\/j.cose.2026.105000_b61","doi-asserted-by":"crossref","DOI":"10.1016\/j.ijcip.2022.100568","article-title":"Launch of denial of service attacks on the modbus\/tcp protocol and development of its protection mechanisms","volume":"39","author":"Rahman","year":"2022","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"10.1016\/j.cose.2026.105000_b62","series-title":"Proceedings of the 14th ACM Conference on Computer and Communications Security","first-page":"168","article-title":"Security considerations for the wireless hart protocol","author":"Raza","year":"2009"},{"key":"10.1016\/j.cose.2026.105000_b63","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2023.103373","article-title":"Mosto: A toolkit to facilitate security auditing of ics devices using modbus\/tcp","volume":"132","author":"Rodr\u00edguez","year":"2023","journal-title":"Comput. Secur."},{"key":"10.1016\/j.cose.2026.105000_b64","doi-asserted-by":"crossref","first-page":"42156","DOI":"10.1109\/ACCESS.2019.2906926","article-title":"A comprehensive security analysis of a scada protocol: From osint to mitigation","volume":"7","author":"Rosa","year":"2019","journal-title":"IEEE Access"},{"key":"10.1016\/j.cose.2026.105000_b65","doi-asserted-by":"crossref","unstructured":"Salzillo, G., Rak, M., Moretta, F., 2020. Threat modeling based penetration testing: The open energy monitor case study. In: 13th International Conference on Security of Information and Networks. pp. 1\u20138.","DOI":"10.1145\/3433174.3433181"},{"key":"10.1016\/j.cose.2026.105000_b66","article-title":"Detection and blocking of replay, false command, and false access injection commands in scada systems with modbus protocol","author":"Satyanarayana","year":"2021","journal-title":"Secur. Commun. Netw."},{"key":"10.1016\/j.cose.2026.105000_b67","doi-asserted-by":"crossref","DOI":"10.1016\/j.comnet.2020.107677","article-title":"A cyber\u2013physical model for scada system and its intrusion detection","volume":"185","author":"Sheng","year":"2021","journal-title":"Comput. Netw."},{"key":"10.1016\/j.cose.2026.105000_b68","series-title":"2015 IEEE Bombay Section Symposium","first-page":"1","article-title":"Security assessment framework for cyber physical systems: A case-study of dnp3 protocol","author":"Siddavatam","year":"2015"},{"key":"10.1016\/j.cose.2026.105000_b69","series-title":"2021 IEEE European Symposium on Security and Privacy","first-page":"385","article-title":"Sok: Attacks on industrial control logic and formal verification-based defenses","author":"Sun","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b70","series-title":"Mitre ATT&CK\u00ae for industrial control systems","author":"The MITRE Corporation","year":"2024"},{"key":"10.1016\/j.cose.2026.105000_b71","series-title":"2021 9th International Conference on Reliability Infocom Technologies and Optimization (Trends and Future Directions)","first-page":"1","article-title":"Attack vectors and susceptibilities of the modbus in tcp\/ip model","author":"Thomas","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b72","series-title":"2021 9th International Symposium on Digital Forensics and Security","first-page":"1","article-title":"Mitre ics attack simulation and detection on ethercat based drinking water system","author":"Toker","year":"2021"},{"key":"10.1016\/j.cose.2026.105000_b73","series-title":"Communication with the vision\u2122 PLC, document version: 20\/9\/04","author":"Unitronics","year":"2004"},{"key":"10.1016\/j.cose.2026.105000_b74","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2025.104449","article-title":"Covert penetrations: Analyzing and defending scada systems from stealth and hijacking attacks","author":"Wali","year":"2025","journal-title":"Comput. Secur."},{"key":"10.1016\/j.cose.2026.105000_b75","series-title":"2016 World Congress on Industrial Control Systems Security","first-page":"1","article-title":"Plc access control: a security analysis","author":"Wardak","year":"2016"},{"issue":"2\u20133","key":"10.1016\/j.cose.2026.105000_b76","doi-asserted-by":"crossref","first-page":"141","DOI":"10.1016\/0166-3615(94)90017-5","article-title":"The purdue enterprise reference architecture","volume":"24","author":"Williams","year":"1994","journal-title":"Comput. Ind."},{"key":"10.1016\/j.cose.2026.105000_b77","series-title":"2017 IEEE Conference on Energy Internet and Energy System Integration","first-page":"1","article-title":"Review on cyber vulnerabilities of communication protocols in industrial control systems","author":"Xu","year":"2017"},{"key":"10.1016\/j.cose.2026.105000_b78","series-title":"2017 IEEE Conference on Energy Internet and Energy System Integration","first-page":"1","article-title":"Review on cyber vulnerabilities of communication protocols in industrial control systems","author":"Xu","year":"2017"},{"key":"10.1016\/j.cose.2026.105000_b79","series-title":"2014 International Conference on ComputerCommunications and Control Technology","first-page":"199","article-title":"Analysis of profinet io communication protocol","author":"Yang","year":"2014"}],"container-title":["Computers &amp; Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S0167404826001768?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S0167404826001768?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2026,7,13]],"date-time":"2026-07-13T17:16:28Z","timestamp":1783962988000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/S0167404826001768"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,11]]},"references-count":79,"alternative-id":["S0167404826001768"],"URL":"https:\/\/doi.org\/10.1016\/j.cose.2026.105000","relation":{},"ISSN":["0167-4048"],"issn-type":[{"value":"0167-4048","type":"print"}],"subject":[],"published":{"date-parts":[[2026,11]]},"assertion":[{"value":"Elsevier","name":"publisher","label":"This article is maintained by"},{"value":"From Systematic Threat Search to pentesting: Industrial Control Systems threat models","name":"articletitle","label":"Article Title"},{"value":"Computers & Security","name":"journaltitle","label":"Journal Title"},{"value":"https:\/\/doi.org\/10.1016\/j.cose.2026.105000","name":"articlelink","label":"CrossRef DOI link to publisher maintained version"},{"value":"article","name":"content_type","label":"Content Type"},{"value":"\u00a9 2026 The Authors. Published by Elsevier Ltd.","name":"copyright","label":"Copyright"}],"article-number":"105000"}}