{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,24]],"date-time":"2026-01-24T15:58:13Z","timestamp":1769270293851,"version":"3.49.0"},"reference-count":21,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,5,11]],"date-time":"2023-05-11T00:00:00Z","timestamp":1683763200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,5,11]],"date-time":"2023-05-11T00:00:00Z","timestamp":1683763200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,5,11]]},"DOI":"10.1109\/isdfs58141.2023.10131867","type":"proceedings-article","created":{"date-parts":[[2023,5,26]],"date-time":"2023-05-26T17:30:36Z","timestamp":1685122236000},"page":"1-6","source":"Crossref","is-referenced-by-count":6,"title":["Extending Threat Playbooks for Cyber Threat Intelligence: A Novel Approach for APT Attribution"],"prefix":"10.1109","author":[{"given":"Kelsie","family":"Edie","sequence":"first","affiliation":[{"name":"United States Military Academy,West Point,NY,USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Cole","family":"Mckee","sequence":"additional","affiliation":[{"name":"United States Military Academy,West Point,NY,USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Adam","family":"Duby","sequence":"additional","affiliation":[{"name":"United States Military Academy,West Point,NY,USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1145\/3538969.3544420"},{"key":"ref2","volume-title":"OASIS"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/EISIC.2017.20"},{"key":"ref4","article-title":"Intelligence-driven computer network defense informed by analysis of adversary campaigns and intrusion kill chains","author":"Hutchins","year":"2011","journal-title":"Leading Issues in Information Warfare & Security Research"},{"key":"ref5","article-title":"Mitre ATT&CK: Design and philosophy","volume-title":"Technical report.","author":"Strom","year":"2018"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/BigData.2017.8258514"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/IDSTA55301.2022.9923170"},{"key":"ref8","article-title":"The diamond model of intrusion analysis","volume-title":"Center For Cyber Intelligence Analysis and Threat Research Hanover MD, Tech. Rep.","author":"Caltagirone","year":"2013"},{"issue":"3","key":"ref9","first-page":"59","article-title":"Implementing intrusion kill chain strategies","volume":"5","author":"Howard","year":"2020","journal-title":"The Cyber Defense Review"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-52727-7_11"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/NCM.2008.188"},{"key":"ref12","first-page":"5","article-title":"Role and challenges for sufficient cyber-attack attribution","author":"Hunker","year":"2008","journal-title":"Institute for Information Infrastructure Protection"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1093\/jcsl\/krs019"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/DASC-PICom-CBDCom-CyberSciTech49142.2020.00022"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/ISDFS55398.2022.9800812"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1080\/23742917.2021.1895532"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/2994475.2994484"},{"key":"ref18","volume-title":"Emulating attacker activities and the pyramid of pain","author":"Chenette","year":"2019"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/CCWC57344.2023.10099277"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1111\/j.1469-8137.1912.tb05611.x"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ICDM.2010.80"}],"event":{"name":"2023 11th International Symposium on Digital Forensics and Security (ISDFS)","location":"Chattanooga, TN, USA","start":{"date-parts":[[2023,5,11]]},"end":{"date-parts":[[2023,5,12]]}},"container-title":["2023 11th International Symposium on Digital Forensics and Security (ISDFS)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10131120\/10131673\/10131867.pdf?arnumber=10131867","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,28]],"date-time":"2024-09-28T05:32:50Z","timestamp":1727501570000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10131867\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,5,11]]},"references-count":21,"URL":"https:\/\/doi.org\/10.1109\/isdfs58141.2023.10131867","relation":{},"subject":[],"published":{"date-parts":[[2023,5,11]]}}}