{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,13]],"date-time":"2026-01-13T14:45:55Z","timestamp":1768315555862,"version":"3.49.0"},"reference-count":22,"publisher":"IEEE","license":[{"start":{"date-parts":[[2025,11,24]],"date-time":"2025-11-24T00:00:00Z","timestamp":1763942400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,11,24]],"date-time":"2025-11-24T00:00:00Z","timestamp":1763942400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/100006826","name":"EU","doi-asserted-by":"publisher","award":["101094323"],"award-info":[{"award-number":["101094323"]}],"id":[{"id":"10.13039\/100006826","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100024102","name":"SINTEF","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100024102","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025,11,24]]},"DOI":"10.1109\/dsa66321.2025.00018","type":"proceedings-article","created":{"date-parts":[[2026,1,12]],"date-time":"2026-01-12T18:20:20Z","timestamp":1768242020000},"page":"55-64","source":"Crossref","is-referenced-by-count":0,"title":["From Manual to Automated Cyber Risk Assessment: LLM- and RAG-Driven Multi-Agent Threat Modeling with CORAS in Healthcare Case Studies"],"prefix":"10.1109","author":[{"given":"Gencer","family":"Erdogan","sequence":"first","affiliation":[{"name":"Sustainable Communication Technologies, SINTEF Digital,Oslo,Norway"}]},{"given":"Morgan","family":"Gillette","sequence":"additional","affiliation":[{"name":"National Graduate School of Engineering and Research Center,Caen,France"}]},{"given":"Simeon","family":"Tverdal","sequence":"additional","affiliation":[{"name":"Sustainable Communication Technologies, SINTEF Digital,Oslo,Norway"}]},{"given":"Ragnhild","family":"Halvorsrud","sequence":"additional","affiliation":[{"name":"Sustainable Communication Technologies, SINTEF Digital,Oslo,Norway"}]}],"member":"263","reference":[{"key":"ref1","article-title":"ISO\/IEC 27005:2018 - Information technology Security techniques - Information security risk management","year":"2018","journal-title":"ISO, Standard"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/COMPSAC51774.2021.00107"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.3390\/electronics10091092"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.3390\/fi15100324"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.csa.2023.100031"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-12323-8"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3145905"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1201\/b16387-456"},{"key":"ref9","volume-title":"CORAS Threat Modeler","year":"2025"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-43839-8"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/IKT65497.2024.10892659"},{"key":"ref12","volume-title":"NEMECYS: NEw MEdical CYbersecurity assessment and design Solutions","year":"2025"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.5220\/0011609600003405"},{"key":"ref14","volume-title":"Large Language Models for Cyber Security: A Systematic Literature Review","author":"Xu","year":"2025"},{"key":"ref15","volume-title":"Time for aCTIon: Automated Analysis of Cyber Threat Intelligence in the Wild","author":"Siracusano","year":"2023"},{"key":"ref16","volume-title":"Automated CVE Analysis for Threat Prioritization and Impact Prediction","author":"Aghaei","year":"2023"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/ICPS65515.2025.11087903"},{"key":"ref18","volume-title":"Using Retriever Augmented Large Language Models for Attack Graph Generation","author":"Prapty","year":"2024"},{"key":"ref19","volume-title":"ThreatModeling-LLM: Automating Threat Modeling using Large Language Models for Banking System","author":"Wu","year":"2025"},{"key":"ref20","doi-asserted-by":"crossref","DOI":"10.1109\/ACCESS.2025.3603580","volume-title":"A Large Language Model-Supported Threat Modeling Framework for Transportation Cyber-Physical Systems","author":"Salek","year":"2025"},{"key":"ref21","volume-title":"ThreMoLIA: Threat Modeling of Large Language Model-Integrated Applications","author":"Jedrzejewski","year":"2025"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2025.3597850"}],"event":{"name":"2025 12th International Conference on Dependable Systems and Their Applications (DSA)","location":"Sharjah, United Arab Emirates","start":{"date-parts":[[2025,11,24]]},"end":{"date-parts":[[2025,11,26]]}},"container-title":["2025 12th International Conference on Dependable Systems and Their Applications (DSA)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11320275\/11320347\/11320376.pdf?arnumber=11320376","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,1,13]],"date-time":"2026-01-13T09:16:16Z","timestamp":1768295776000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11320376\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,24]]},"references-count":22,"URL":"https:\/\/doi.org\/10.1109\/dsa66321.2025.00018","relation":{},"subject":[],"published":{"date-parts":[[2025,11,24]]}}}