{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,4]],"date-time":"2026-03-04T17:05:18Z","timestamp":1772643918876,"version":"3.50.1"},"reference-count":74,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100003093","name":"Ministry of Higher Education, Government of Malaysia, and the Research Management Centre, Universiti Teknologi Malaysia, through the Fundamental Research Grant Scheme (FRGS) Grant","doi-asserted-by":"publisher","award":["FRGS\/1\/2018\/ICT04\/UTM\/02\/8"],"award-info":[{"award-number":["FRGS\/1\/2018\/ICT04\/UTM\/02\/8"]}],"id":[{"id":"10.13039\/501100003093","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2023]]},"DOI":"10.1109\/access.2023.3272053","type":"journal-article","created":{"date-parts":[[2023,5,1]],"date-time":"2023-05-01T18:42:16Z","timestamp":1682966536000},"page":"44350-44376","source":"Crossref","is-referenced-by-count":33,"title":["A Review on Attack Graph Analysis for IoT Vulnerability Assessment: Challenges, Open Issues, and Future Directions"],"prefix":"10.1109","volume":"11","author":[{"given":"Omar Saif Musabbeh Bin Hamed","family":"Almazrouei","sequence":"first","affiliation":[{"name":"Advanced Informatics Department, Razak Faculty of Technology and Informatics, Universiti Teknologi Malaysia, Kuala Lumpur, Malaysia"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5266-4744","authenticated-orcid":false,"given":"Pritheega","family":"Magalingam","sequence":"additional","affiliation":[{"name":"Advanced Informatics Department, Razak Faculty of Technology and Informatics, Universiti Teknologi Malaysia, Kuala Lumpur, Malaysia"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5511-0205","authenticated-orcid":false,"given":"Mohammad Kamrul","family":"Hasan","sequence":"additional","affiliation":[{"name":"Center for Cyber Security, Faculty of Information Science and Technology, Universiti Kebangsaan Malaysia, Bangi, Malaysia"}]},{"given":"Mohana","family":"Shanmugam","sequence":"additional","affiliation":[{"name":"College of Computing and Informatics, Universiti Tenaga Nasional, Kajang, Malaysia"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/3317549.3323411"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1145\/3430372"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1016\/j.cosrev.2019.100219"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1145\/3444370.3444577"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2863244"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1109\/IMCEC51613.2021.9482124"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1007\/s12652-020-02206-5"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2021.3056118"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1145\/3466721"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1145\/3457682.3457691"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2017.2770124"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1145\/3450569.3463560"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2008.09.009"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1145\/3382159"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/Trustcom\/BigDataSE\/ICESS.2017.350"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/CNS.2017.8228667"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/ICIRCA.2018.8597192"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/ANTS.2017.8384121"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1016\/j.comcom.2020.10.008"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1007\/s10009-020-00594-9"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/ICRITO48877.2020.9197763"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/WorldS450073.2020.9210410"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/BigDataSecurity-HPSC-IDS49724.2020.00033"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/NOMS47738.2020.9110439"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/INISTA49547.2020.9194689"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/3341105.3373930"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/ICIRCA48905.2020.9183177"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2020.3041999"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/ITNEC48623.2020.9085039"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2014.07.010"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/WF-IoT.2018.8355171"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1016\/j.compeleceng.2019.02.022"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2020.113303"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.3390\/sym12101674"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.2197\/ipsjjip.28.633"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1088\/1757-899X\/768\/5\/052103"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSecurity49315.2020.9138852"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ISDFS49300.2020.9116392"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1155\/2019\/2031063"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/TSMC.2019.2915940"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101648"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSPW.2019.00011"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCI.2019.8822179"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-69155-8_5"},{"key":"ref33","doi-asserted-by":"crossref","first-page":"23","DOI":"10.1016\/j.adhoc.2018.10.024","article-title":"Cost-aware securing of IoT systems using attack graphs","volume":"86","author":"yi?it","year":"2019","journal-title":"Ad Hoc Netw"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/ICIOT.2019.00038"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1016\/j.knosys.2017.02.023"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2022.3164066"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.3390\/bios10020014"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1109\/MSN50589.2020.00086"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1155\/2014\/818957"},{"key":"ref70","first-page":"98","article-title":"Generating threat models and attack graphs based on the IEC 61850 system configuration description language","author":"ling","year":"2021","journal-title":"Proc ACM Workshop Secure Trustworthy Cyber-Phys Syst"},{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.1109\/TR.2018.2864536"},{"key":"ref72","doi-asserted-by":"crossref","first-page":"117","DOI":"10.1016\/bs.host.2016.07.001","article-title":"CyGraph: Graph-based analytics and visualization for cybersecurity","volume":"35","author":"noel","year":"2016","journal-title":"Handbook of Statistics"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/UEMCON47517.2019.8993076"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1155\/2021\/9921731"},{"key":"ref23","first-page":"1","article-title":"Penetration testing of intrusion detection and prevention system in low-performance embedded IoT device","author":"zitta","year":"2018","journal-title":"Proc 18th Int Conf Mechatronics Mechatronika (ME)"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.3390\/app11010285"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/SIPROCESS.2019.8868357"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1186\/s40537-019-0227-y"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3094183"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/HPCC\/SmartCity\/DSS.2018.00244"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1109\/CCNC49032.2021.9369533"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1109\/SysCon48628.2021.9447145"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2805690"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1109\/TETC.2021.3082525"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ICDIS.2018.00050"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1109\/EI250167.2020.9346835"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/3297280.3297401"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/NetSys.2019.8854493"},{"key":"ref29","article-title":"Challenges for security assessment of enterprises in the IoT era","author":"mathov","year":"2019","journal-title":"arXiv 1906 10922"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102316"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1109\/TASE.2021.3093082"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1109\/EnCyCriS52570.2021.00010"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/10005208\/10113644.pdf?arnumber=10113644","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,6,19]],"date-time":"2023-06-19T18:12:34Z","timestamp":1687198354000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10113644\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"references-count":74,"URL":"https:\/\/doi.org\/10.1109\/access.2023.3272053","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023]]}}}