{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,29]],"date-time":"2024-10-29T14:21:52Z","timestamp":1730211712816,"version":"3.28.0"},"reference-count":30,"publisher":"IEEE","license":[{"start":{"date-parts":[[2024,9,2]],"date-time":"2024-09-02T00:00:00Z","timestamp":1725235200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2024,9,2]],"date-time":"2024-09-02T00:00:00Z","timestamp":1725235200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024,9,2]]},"DOI":"10.1109\/csr61664.2024.10679457","type":"proceedings-article","created":{"date-parts":[[2024,9,24]],"date-time":"2024-09-24T17:21:51Z","timestamp":1727198511000},"page":"452-457","source":"Crossref","is-referenced-by-count":0,"title":["Zero to Trust? Bringing Application-Level Intelligence at Scale to Detection Engineering"],"prefix":"10.1109","author":[{"given":"Fatih","family":"Gey","sequence":"first","affiliation":[{"name":"Cybersecurity and Compliance, HD&A, SAP SE,Germany"}]},{"given":"C\u00e9dric","family":"Hebert","sequence":"additional","affiliation":[{"name":"Security Research, T&I, SAP Labs France,France"}]},{"given":"Holger","family":"Mack","sequence":"additional","affiliation":[{"name":"Cybersecurity and Compliance, HD&A, SAP SE,Germany"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-94"},{"volume-title":"A survey on application level intrusion detection. Tekninen raportti, Helsingin yliopisto","year":"2005","author":"Viljanen","key":"ref2"},{"journal-title":"Application intrusion detection","year":"1999","author":"Sielken","key":"ref3"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1007\/s11235-018-0475-8"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2007.02.001"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2023.3299519"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/ICDE51399.2021.00024"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.3390\/app9204396"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/BigData50022.2020.9378213"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.14722\/madweb.2020.23005"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3214305"},{"volume-title":"Crowdstrike Presentation on Detection and Prevention of Lateral Movement","year":"2024","key":"ref12"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2018.12.004"},{"volume-title":"Blog article by Michael Cobb: Definition of Threat Modelling","year":"2024","key":"ref14"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.03.010"},{"issue":"1","key":"ref17","first-page":"80","article-title":"Intelligence-driven computer network defense informed by analysis of adversary campaigns and intrusion kill chains","volume":"1","author":"Hutchins","year":"2011","journal-title":"Leading Issues in Information Warfare & Security Research"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/W-FiCloud.2016.30"},{"volume-title":"Signature Modelling Language","year":"2024","author":"Threat","key":"ref20"},{"volume":"2","journal-title":"NIST Special Publication 800\u2013160","year":"26","key":"ref21"},{"volume-title":"NIST Special Publication 800\u2013171r2","year":"2024","key":"ref22"},{"volume":"3","journal-title":"Allianz Cyber Risk Report 2024","year":"2024","key":"ref23"},{"volume-title":"World Economy Forum Global Risk Report","year":"2024","key":"ref24"},{"volume-title":"EU Directive on measures for a high common level of cybersecurity across the Union (NIS2)","year":"2024","key":"ref25"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/IEMENTech53263.2021.9614848"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/icstw.2010.54"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2016.04.007"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/ICONICS56716.2022.10100596"},{"volume-title":"Using internal sensors for computer intrusion detection","year":"2001","author":"Zamboni","key":"ref30"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-67383-7_2"},{"volume-title":"Sigma - SIEM Detection Format","year":"2024","key":"ref32"}],"event":{"name":"2024 IEEE International Conference on Cyber Security and Resilience (CSR)","start":{"date-parts":[[2024,9,2]]},"location":"London, United Kingdom","end":{"date-parts":[[2024,9,4]]}},"container-title":["2024 IEEE International Conference on Cyber Security and Resilience (CSR)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/10679369\/10679342\/10679457.pdf?arnumber=10679457","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,25]],"date-time":"2024-09-25T05:23:28Z","timestamp":1727241808000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10679457\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,9,2]]},"references-count":30,"URL":"https:\/\/doi.org\/10.1109\/csr61664.2024.10679457","relation":{},"subject":[],"published":{"date-parts":[[2024,9,2]]}}}