{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,28]],"date-time":"2025-09-28T15:08:40Z","timestamp":1759072120982,"version":"3.28.0"},"reference-count":30,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015,7]]},"DOI":"10.1109\/indin.2015.7281734","type":"proceedings-article","created":{"date-parts":[[2015,10,1]],"date-time":"2015-10-01T17:59:09Z","timestamp":1443722349000},"page":"197-203","source":"Crossref","is-referenced-by-count":18,"title":["Structured system threat modeling and mitigation analysis for industrial automation systems"],"prefix":"10.1109","author":[{"given":"Roman","family":"Schlegel","sequence":"first","affiliation":[]},{"given":"Sebastian","family":"Obermeier","sequence":"additional","affiliation":[]},{"given":"Johannes","family":"Schneider","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"year":"2007","key":"ref30","article-title":"RAT ISo 1779 Risk Analysis ToolKit"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/TPWRS.2008.2002298"},{"year":"0","key":"ref11"},{"journal-title":"Microsoft","article-title":"Elevation of Privilege Card Game","year":"0","key":"ref12"},{"key":"ref13","article-title":"The australian and new zealand standard on risk management, as\/nzs 4360: 2004","author":"cooper","year":"2004","journal-title":"Tutorial Notes Broadleaf Capital International Pty Ltd"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.jhazmat.2009.08.076"},{"key":"ref15","first-page":"1","article-title":"Fault tree analysis","author":"ericson","year":"1999","journal-title":"System Safety Conference"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1023\/A:1011954702780"},{"year":"2007","key":"ref17","article-title":"CORAS Risk Assessment Platform"},{"journal-title":"Microsoft","article-title":"SDL Threat Modeling Tool","year":"2008","key":"ref18"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1016\/S1353-4858(09)70008-X"},{"journal-title":"MyAppSecurity","article-title":"ThreatModeler","year":"0","key":"ref28"},{"key":"ref4","first-page":"21","article-title":"Attack trees","volume":"24","author":"schneier","year":"1999","journal-title":"Dr Dobb's Journal"},{"article-title":"Trike","year":"2005","author":"saitta","key":"ref27"},{"journal-title":"International Electrotechnical Commission IEC","article-title":"IEC 61850","year":"0","key":"ref3"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-93177-744-5.ch017"},{"journal-title":"SensePost","article-title":"Corporate Threat Modeller","year":"0","key":"ref29"},{"journal-title":"Writing Secure Code","year":"2002","author":"leblanc","key":"ref5"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2007.601"},{"key":"ref7","article-title":"Agile security requirements engineering","author":"peeters","year":"2005","journal-title":"Symposium on Requirements Engineering for Information Security"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/CYBER.2014.6917472"},{"key":"ref9","first-page":"53","article-title":"Threat modeling using fuzzy logic paradigm","volume":"4","author":"sodiya","year":"2007","journal-title":"Informing Science International Journal of an Emerging Transdiscipline"},{"key":"ref1","first-page":"297","article-title":"Tool support for achieving qualitative security assessments of critical infrastructures - the ESSAF framework for structured qualitative analysis","author":"nguyen","year":"2009","journal-title":"SECRYPT 2009 Proceedings of the International Conference on Security and Cryptography"},{"key":"ref20","article-title":"Experiences threat modeling at microsoft","author":"shostack","year":"2008","journal-title":"Modeling Security Workshop Dept of Computing"},{"journal-title":"Microsoft","article-title":"Threat and Analysis Modeling Process","year":"0","key":"ref22"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2008.25"},{"key":"ref24","article-title":"Cvss: A common vulnerability scoring system","author":"schiffman","year":"2004","journal-title":"National Infrastructure Advisory Council (NIAC)"},{"key":"ref23","article-title":"Seamonster: Providing tool support for security modeling","author":"meland","year":"2008","journal-title":"Norsk Informasjonssikkerhetskonferanse-NISK"},{"article-title":"Trike v. 1 methodology document [draft]","year":"2005","author":"saitta","key":"ref26"},{"journal-title":"NIST","article-title":"Common Vulnerability Scoring System Version 2 Calculator","year":"2007","key":"ref25"}],"event":{"name":"2015 IEEE 13th International Conference on Industrial Informatics (INDIN)","start":{"date-parts":[[2015,7,22]]},"location":"Cambridge, United Kingdom","end":{"date-parts":[[2015,7,24]]}},"container-title":["2015 IEEE 13th International Conference on Industrial Informatics (INDIN)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/7270516\/7281697\/07281734.pdf?arnumber=7281734","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,3,24]],"date-time":"2017-03-24T17:02:52Z","timestamp":1490374972000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7281734\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,7]]},"references-count":30,"URL":"https:\/\/doi.org\/10.1109\/indin.2015.7281734","relation":{},"subject":[],"published":{"date-parts":[[2015,7]]}}}