{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,15]],"date-time":"2026-04-15T18:26:54Z","timestamp":1776277614764,"version":"3.50.1"},"reference-count":61,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,9,12]],"date-time":"2023-09-12T00:00:00Z","timestamp":1694476800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,9,12]],"date-time":"2023-09-12T00:00:00Z","timestamp":1694476800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,9,12]]},"DOI":"10.1109\/etfa54631.2023.10275637","type":"proceedings-article","created":{"date-parts":[[2023,10,12]],"date-time":"2023-10-12T13:38:14Z","timestamp":1697117894000},"page":"1-8","source":"Crossref","is-referenced-by-count":8,"title":["Qualitative Analysis for Validating IEC 62443-4-2 Requirements in DevSecOps"],"prefix":"10.1109","author":[{"given":"Christian","family":"G\u00f6ttel","sequence":"first","affiliation":[{"name":"ABB Schweiz AG,Corporate Research Center,Baden-D&#x00E4;ttwil,Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ma\u00eblle","family":"Kabir-Querrec","sequence":"additional","affiliation":[{"name":"ABB Schweiz AG,Corporate Research Center,Baden-D&#x00E4;ttwil,Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"David","family":"Kozhaya","sequence":"additional","affiliation":[{"name":"ABB Schweiz AG,Corporate Research Center,Baden-D&#x00E4;ttwil,Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Thanikesavan","family":"Sivanthi","sequence":"additional","affiliation":[{"name":"ABB Schweiz AG,Corporate Research Center,Baden-D&#x00E4;ttwil,Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ognjen","family":"Vukovi\u0107","sequence":"additional","affiliation":[{"name":"ABB Schweiz AG,Corporate Research Center,Baden-D&#x00E4;ttwil,Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref57","author":"sanfilippo","year":"2014","journal-title":"Hping - Active Network Security Tool"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/ETFA.2017.8247727"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-78800-3_24"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.5220\/0006755305700580"},{"key":"ref59","author":"khan","year":"2017","journal-title":"IHULK (Improved Http Unbearable Load King)"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3339252.3341481"},{"key":"ref58","author":"shteiman","year":"2012","journal-title":"Http Unbearable Load King"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/SIES.2018.8442081"},{"key":"ref53","year":"0","journal-title":"Selenium"},{"key":"ref52","year":"0","journal-title":"Home-TCPDUMP & LIBPCAP"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.21236\/ADA482657"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/ISSREW.2018.00-33"},{"key":"ref54","first-page":"181","article-title":"Symbolic execution with SymCC: Don&#x2019;t interpret, compile!","author":"poeplau","year":"0"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-28005-5_5"},{"key":"ref17","year":"2013","journal-title":"Security for industrial automation and control systems - Part 3-3 System security requirements and security levels"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/GIOTS.2019.8766363"},{"key":"ref19","year":"0","journal-title":"IEC 62443 Confromance Certification"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/ETFA.2019.8868978"},{"key":"ref51","year":"0","journal-title":"Scapy"},{"key":"ref50","year":"0","journal-title":"Open Vulnerability Assessment Scanner(OpenVAS)"},{"key":"ref46","year":"0","journal-title":"Download Burp Suite Community Edition"},{"key":"ref45","author":"shoshitaishvili","year":"0","journal-title":"GitHub - zardus\/preeny Some helpful preload libraries for pwning stuff"},{"key":"ref48","year":"0","journal-title":"Nmap Network Mapper"},{"key":"ref47","year":"0","journal-title":"Apache JMeter"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/ICST46399.2020.00062"},{"key":"ref41","author":"nichols","year":"2017","journal-title":"Faster fuzzing Reinitialization with deep neural models"},{"key":"ref44","first-page":"1099","article-title":"FIRM-AFL: High-Throughput Greybox Fuzzing of IoT Firmware via Augmented Process Emulation","author":"zheng","year":"0"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00081"},{"key":"ref49","year":"0","journal-title":"The programming language Lua"},{"key":"ref8","article-title":"Development and Evaluation of an Artefact Model to Support Security Compliance for DevSecOps","author":"bitra","year":"2021","journal-title":"Master thesis - Blekinge Institute of Technology"},{"key":"ref7","article-title":"How to integrate security compliance requirements with agile software engineering at scale?","volume":"abs 2105 13404","author":"moy\u00f3n","year":"2021","journal-title":"CoRR"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.23919\/DATE51398.2021.9474185"},{"key":"ref4","year":"0","journal-title":"GLOSSARY"},{"key":"ref3","year":"2018","journal-title":"Security for industrial automation and control systems - Part 4-1 Secure product development lifecycle requirements"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-64148-1_27"},{"key":"ref5","article-title":"Large Scale Agile Software Development compliant to IEC 62443-4-1 Artefact Design and Tool support","author":"soares","year":"2019","journal-title":"Master's Thesis ISCTE-University Institute of Lisbon"},{"key":"ref40","article-title":"AFL++ : Combining Incremental Steps of Fuzzing Research","author":"fioraldi","year":"0"},{"key":"ref35","year":"0","journal-title":"Defensics Fuzz Testing Tool & Services ISASecure Testing Solution"},{"key":"ref34","year":"0","journal-title":"Defensics Fuzz Testing Tool & Services"},{"key":"ref37","year":"0","journal-title":"Download Nessus Vulnerability Assessment (2021 Nov ) Tenable Makes the Power of Nessus v10 0 Portable with Raspberry Pi"},{"key":"ref36","year":"0","journal-title":"Download Nessus Vulnerability Assessment"},{"key":"ref31","year":"2018","journal-title":"Acheron???????????"},{"key":"ref30","year":"0","journal-title":"News & Events"},{"key":"ref33","year":"0"},{"key":"ref32","year":"2017","journal-title":"Achilles Test Platform from GE Digital"},{"key":"ref2","year":"2019","journal-title":"Security for industrial automation and control systems - Part 4-2 Technical security requirements for IACS components"},{"key":"ref1","year":"2009","journal-title":"Industrial communication networks - Network and system security - Part 1-1 Terminology concepts and models"},{"key":"ref39","year":"0","journal-title":"????????- ?????- ????- ???"},{"key":"ref38","year":"0","journal-title":"IoT ???????????? Raven for Fuzzing"},{"key":"ref24","year":"2022","journal-title":"CSA-311 Component Security Assurance - Functional security assessment for components"},{"key":"ref23","year":"2019","journal-title":"CSA-312 Embedded Device Security Assurance - Security development artifacts for components"},{"key":"ref26","year":"2015","journal-title":"EDSA-312 Embedded Device Security Assurance - Security development artifacts for embedded devices"},{"key":"ref25","year":"2022","journal-title":"SSA-420 System Security Assurance - Vulnerability Identification Testing Specification"},{"key":"ref20","year":"2020","journal-title":"SDLA-100 Security Development Lifecycle Assurance - ISASecure certification scheme"},{"key":"ref22","year":"2014","journal-title":"EDSA-100 Embedded Device Security Assurance - ISASecure certification scheme"},{"key":"ref21","year":"2019","journal-title":"CSA-100 Component Security Assurance - ISASecure certification scheme"},{"key":"ref28","article-title":"National Vulnerability Database","author":"byers","year":"2022","journal-title":"National Institute of Standards and Technology"},{"key":"ref27","year":"2015","journal-title":"EDSA-310 Embedded Device Security Assurance - Requirements for embedded device robustness testing"},{"key":"ref29","year":"2023","journal-title":"Common Weakness Enumeration"},{"key":"ref60","year":"2023","journal-title":"Defining Hping Packet Generator as a Security Tool)"},{"key":"ref61","year":"2023","journal-title":"hping3 &#x2013; Active Network Smashing Tool)"}],"event":{"name":"2023 IEEE 28th International Conference on Emerging Technologies and Factory Automation (ETFA)","location":"Sinaia, Romania","start":{"date-parts":[[2023,9,12]]},"end":{"date-parts":[[2023,9,15]]}},"container-title":["2023 IEEE 28th International Conference on Emerging Technologies and Factory Automation (ETFA)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10275065\/10275329\/10275637.pdf?arnumber=10275637","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,10,30]],"date-time":"2023-10-30T14:45:06Z","timestamp":1698677106000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10275637\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,9,12]]},"references-count":61,"URL":"https:\/\/doi.org\/10.1109\/etfa54631.2023.10275637","relation":{},"subject":[],"published":{"date-parts":[[2023,9,12]]}}}