{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,9]],"date-time":"2026-02-09T23:19:59Z","timestamp":1770679199651,"version":"3.49.0"},"reference-count":46,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2022]]},"DOI":"10.1109\/access.2022.3219063","type":"journal-article","created":{"date-parts":[[2022,11,4]],"date-time":"2022-11-04T01:58:49Z","timestamp":1667527129000},"page":"116514-116526","source":"Crossref","is-referenced-by-count":16,"title":["ThreMA: Ontology-Based Automated Threat Modeling for ICT Infrastructures"],"prefix":"10.1109","volume":"10","author":[{"given":"Fabio","family":"De Rosa","sequence":"first","affiliation":[{"name":"National Interuniversity Consortium for Informatics, Rome, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4331-1066","authenticated-orcid":false,"given":"Nicolo","family":"Maunero","sequence":"additional","affiliation":[{"name":"National Interuniversity Consortium for Informatics, Rome, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2400-8245","authenticated-orcid":false,"given":"Paolo","family":"Prinetto","sequence":"additional","affiliation":[{"name":"National Interuniversity Consortium for Informatics, Rome, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Federico","family":"Talentino","sequence":"additional","affiliation":[{"name":"National Interuniversity Consortium for Informatics, Rome, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0472-9280","authenticated-orcid":false,"given":"Martina","family":"Trussoni","sequence":"additional","affiliation":[{"name":"National Interuniversity Consortium for Informatics, Rome, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","author":"group","year":"2022","journal-title":"OWL 2 Web Ontology Language Document Overview (Second Edition)"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2015.72"},{"key":"ref33","first-page":"1","article-title":"Nemesis: Automated architecture for threat modeling and risk assessment for cloud computing","author":"kamongi","year":"2014","journal-title":"Proc 6th ASE Int Conf Privacy Secur Risk Trust (PASSAT)"},{"key":"ref32","first-page":"36","article-title":"Threat modeling of cloud systems with ontological security pattern catalog","volume":"9","author":"andrei","year":"2021","journal-title":"Int J Open Inf Technol"},{"key":"ref31","article-title":"Towards automation of threat modeling based on a semantic model of attack patterns and weaknesses","author":"brazhuk","year":"2021","journal-title":"arXiv 2112 04231"},{"key":"ref30","first-page":"14","article-title":"Framework for ontology-driven threat modelling of modern computer systems","volume":"8","author":"andrei","year":"2020","journal-title":"Int J Open Inf Technol"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/3011141.3011157"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/185403.185412"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.5120\/20464-2832"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/SERE.2013.31"},{"key":"ref10","author":"ulsch","year":"2014","journal-title":"Cyber Threat! How to Manage Growing Risk Cyber Attacks"},{"key":"ref40","author":"boley","year":"2022","journal-title":"SWRL A Semantic Web Rule Language Combining OWL and RuleML"},{"key":"ref11","first-page":"12","article-title":"The growing cyber threat","volume":"40","author":"bergmann","year":"2014","journal-title":"Asia–Pacific Defence Reporter"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1155\/2014\/805856"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.03.010"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.iot.2019.100056"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3058403"},{"key":"ref16","first-page":"61","article-title":"Threat modeling the cloud: An ontology based approach","author":"manzoor","year":"2018","journal-title":"Proc Int Workshop Inf Oper Technol Secur Syst"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.3390\/fi11030063"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1007\/11961635_17"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1186\/s42400-020-00060-8"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/CSR51186.2021.9527937"},{"key":"ref4","year":"2017","journal-title":"Information Security Management Systems—Guidelines for Information Security Risk Management"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1002\/9781118988374"},{"key":"ref3","year":"2018","journal-title":"Risk Management Framework for Information Systems and Organizations A System Life Cycle Approach for Security and Privacy"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-77492-3_1"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSA52016.2021.9478258"},{"key":"ref5","year":"2022","journal-title":"Interoperable Eu Risk Management Framework"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2008.25"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1002\/sec.863"},{"key":"ref2","year":"2016","journal-title":"Information Technology—Security Techniques—Information Security Risk Management"},{"key":"ref9","first-page":"141","article-title":"A survival analysis of application life spans based on enterprise architecture models","volume":"lni p 152","author":"aier","year":"2009","journal-title":"Proc Enterprise Modelling Inf Syst Archit"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-23570-7_5"},{"key":"ref46","first-page":"1960","article-title":"The ‘human factor’ in cybersecurity: Exploring the accidental insider","author":"hadlington","year":"2021","journal-title":"Research Anthology on Artificial Intelligence Applications in Security"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1002\/spe.2111"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/TCAD.2020.3047976"},{"key":"ref22","author":"shevchenko","year":"2018","journal-title":"Threat modeling a summary of available methods"},{"key":"ref21","year":"2022","journal-title":"Top 8"},{"key":"ref42","author":"jonathan","year":"2022","journal-title":"Capec-Stride Mapping"},{"key":"ref24","year":"2022","journal-title":"Microsoft Threat Modeling Tool—Threats"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom50675.2020.00073"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-89556-5_4"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1007\/s10270-021-00898-7"},{"key":"ref26","first-page":"21","article-title":"Attack trees","volume":"24","author":"schneier","year":"1999","journal-title":"Dr Dobb’s J"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1016\/j.websem.2007.03.004"},{"key":"ref25","year":"2022","journal-title":"Getting Started With the Threat Modeling Tool"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/9668973\/09936611.pdf?arnumber=9936611","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,12,12]],"date-time":"2022-12-12T19:55:07Z","timestamp":1670874907000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9936611\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"references-count":46,"URL":"https:\/\/doi.org\/10.1109\/access.2022.3219063","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022]]}}}