{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,19]],"date-time":"2026-01-19T08:57:13Z","timestamp":1768813033117,"version":"3.49.0"},"reference-count":70,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"2","license":[{"start":{"date-parts":[[2018,6,1]],"date-time":"2018-06-01T00:00:00Z","timestamp":1527811200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"}],"funder":[{"name":"European Union (EU) Seventh Framework Programme (FP7) FACIES","award":["HOME\/2011\/CIPS\/AG\/4000002115"],"award-info":[{"award-number":["HOME\/2011\/CIPS\/AG\/4000002115"]}]},{"name":"Spanish Ministry of Economy and Competitiveness through the project PERSIST","award":["TIN2013-41739-R"],"award-info":[{"award-number":["TIN2013-41739-R"]}]},{"name":"Andalusian government through the project PISCIS","award":["P10-TIC-06334"],"award-info":[{"award-number":["P10-TIC-06334"]}]},{"name":"Formaci\u00f3n de Personal Investigador"},{"name":"Junta de Andaluc\u00eda through the project FISICCO","award":["P11-TIC-07223"],"award-info":[{"award-number":["P11-TIC-07223"]}]},{"name":"Marie Curie Cofunding of Regional, National, and International (COFUND) Programme \u201cU-Mobility\u201d"},{"name":"Universidad de Malaga"},{"name":"European Commission's FP7","award":["246550"],"award-info":[{"award-number":["246550"]}]},{"name":"Spanish Ministry of Economy and Competitiveness","award":["COFUND2013-40259"],"award-info":[{"award-number":["COFUND2013-40259"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Systems Journal"],"published-print":{"date-parts":[[2018,6]]},"DOI":"10.1109\/jsyst.2015.2487684","type":"journal-article","created":{"date-parts":[[2016,3,31]],"date-time":"2016-03-31T18:10:05Z","timestamp":1459447805000},"page":"1778-1792","source":"Crossref","is-referenced-by-count":56,"title":["Cyber Stealth Attacks in Critical Information Infrastructures"],"prefix":"10.1109","volume":"12","author":[{"given":"Lorena","family":"Cazorla","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Cristina","family":"Alcaraz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Javier","family":"Lopez","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref70","year":"2010","journal-title":"Guidelines for Smart Grid Cyber Security vol 1–3"},{"key":"ref39","article-title":"Scan Detection","author":"maimon","year":"2005"},{"key":"ref38","year":"2013","journal-title":"IBM X-force trend and risk report"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/WOCN.2013.6616180"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/HPCA.2009.4798277"},{"key":"ref31","first-page":"49","article-title":"Side channel attack-survey","volume":"1","author":"joy persial","year":"2011","journal-title":"Int J Adva Sci Res Rev"},{"key":"ref30","first-page":"23","article-title":"A short survey of intrusion detection systems","volume":"58","author":"marinova-boncheva","year":"2007","journal-title":"Problems of Engineering Cybernetics and Robotics"},{"key":"ref37","first-page":"1107","article-title":"Honeypot and scan detection in intrusion detection system","volume":"2","author":"yin","year":"0","journal-title":"Proc Can Conf Elect Comput Eng"},{"key":"ref36","author":"lyon","year":"2009","journal-title":"Nmap Network Scanning The Official Nmap Project Guide to Network Discovery and Security Scanning"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/VETECF.2004.1400216"},{"key":"ref34","article-title":"Covert channels in TCP and IP Headers","author":"hintz","year":"2002","journal-title":"DEF CON Security Conf"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1109\/SECURECOMM.2005.16"},{"key":"ref62","author":"blum","year":"2000","journal-title":"The CAPTCHA Project (Completely Automatic Public Turing Test to tell Computers and Humans Apart)"},{"key":"ref61","first-page":"229","article-title":"Snort—Lightweight intrusion detection for networks","author":"roesch","year":"0","journal-title":"Proc 13th USENIX Conf Syst Admin"},{"key":"ref63","first-page":"169","article-title":"NOZZLE: A defense against heap-spraying code injection attacks","author":"ratanaworabhan","year":"0","journal-title":"Proc Usenix Security Symp"},{"key":"ref28","first-page":"1","author":"tsao","year":"2012","journal-title":"Routing over low power and lossy networks"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1109\/IWCIP.2005.19"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/COMPSACW.2012.34"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-41476-3_19"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1007\/11962977_18"},{"key":"ref29","first-page":"1","volume":"1","author":"rescorla","year":"2003","journal-title":"Guidelines for Writing RFC Text on Security Considerations"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.1109\/TAC.2013.2266831"},{"key":"ref68","year":"2011","journal-title":"ENCOM(2011) 163—Achievements and next steps Towards global cyber-security"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-94"},{"key":"ref2","first-page":"75","article-title":"114\/EC of 08 December 2008 on the identification and designation of European CIs and the assessment of the need to improve their protection","volume":"345","author":"directive","year":"2008","journal-title":"Official J Eur Union"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-28920-0_7"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/VETECF.2003.1285396"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/2380790.2380805"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2013.72"},{"key":"ref24","first-page":"1","volume":"7","author":"myers","year":"2009","journal-title":"Taxonomies of Cyber Adversaries and Attacks A Survey of Incidents and Approaches"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/iThings\/CPSCom.2011.34"},{"key":"ref26","year":"2013","journal-title":"Existing Taxonomies"},{"key":"ref25","author":"lipson","year":"2002","journal-title":"Tracking and Tracing Cyber-attacks Technical Challenges and Global Policy Issues"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455782"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242654"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1109\/PRDC.2011.30"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2012.02.002"},{"key":"ref57","author":"quisquater","year":"2002","journal-title":"Side channel attacks State of the art"},{"key":"ref56","year":"2011"},{"key":"ref55","year":"2013","journal-title":"ICSA-13-077-01A Schneider Electric PLCs Vulnerabilities"},{"key":"ref54","year":"2013","journal-title":"Vulnerability summary for CVE-2013-0663"},{"key":"ref53","year":"2014","journal-title":"TCP MODBUS—Unauthorized Read Request"},{"key":"ref52","year":"2010","journal-title":"The Ten Most Critical Web Application Security Risks"},{"key":"ref10","year":"2013","journal-title":"ICS-Monitor Brute Force Attacks on Internet-Facing Control Systems"},{"key":"ref11","year":"2009","journal-title":"Directive 2009\/140\/EC of the European Parliament and of the Council"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1145\/2398776.2398778"},{"key":"ref12","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1016\/j.ijcip.2015.04.001","article-title":"A system dynamics approach for assessing the impact of cyber attacks on critical infrastructures","volume":"10","author":"genge","year":"2015","journal-title":"International Journal of Critical Infrastrucutre Protection"},{"key":"ref13","author":"thompson","year":"2009","journal-title":"Mariposa Botnet Analysis"},{"key":"ref14","author":"matrosov","year":"2010","journal-title":"Stuxnet Under the Microscope"},{"key":"ref15","year":"2011","journal-title":"Global Energy Cyberattacks Night Dragon"},{"key":"ref16","author":"chien","year":"2011","journal-title":"The Nitro attacks Stealing secrets from the chemical industry"},{"key":"ref17","year":"2011","journal-title":"Duqu Steal Everything"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(12)70102-1"},{"key":"ref19","year":"2014","journal-title":"ICS-Monitor Incident Response Activity"},{"key":"ref4","year":"2013","journal-title":"Black Hat Event Highlights Vulnerability of U S Critical Infrastructure"},{"key":"ref3","year":"2001","journal-title":"Public Law 107 - 56 - Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism (USA Patriot Act) Act of 2001"},{"key":"ref6","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-642-28920-0","volume":"7130","author":"lopez","year":"2012","journal-title":"Critical Infrastructure Protection Advances in Critical Infrastructure Protection Information Infrastructure Models Analysis and Defenses"},{"key":"ref5","year":"2013","journal-title":"Chinese Hacking Team Caught Taking over Decoy Water Plant"},{"key":"ref8","year":"2011","journal-title":"Incident Response Summary Report"},{"key":"ref7","first-page":"1","volume":"13","year":"2013","journal-title":"Analysis of annual incident reports 2012"},{"key":"ref49","first-page":"1","article-title":"Noncespaces: Using randomization to enforce information flow tracking and thwart cross-site scripting attacks","author":"van gundy","year":"0","journal-title":"Proc NDSS"},{"key":"ref9","year":"2012","journal-title":"ICS-Monitor Malware Infections in the Control Environment"},{"key":"ref46","author":"grasso","year":"2006","journal-title":"Definition of terms used by the auto-ID labs in the anti-counterfeiting white paper series"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1016\/j.istr.2008.02.002"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2011.261"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1145\/1111320.1111070"},{"key":"ref42","first-page":"1","article-title":"Suburban ad-hoc networks in information warfare","author":"islam","year":"0","journal-title":"Proc 6th Aust InfoWar Conf"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/HST.2010.5513110"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1145\/1278480.1278606"},{"key":"ref43","year":"2006","journal-title":"ModBus Application Protocol Specification"}],"container-title":["IEEE Systems Journal"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/4267003\/8350419\/07445136.pdf?arnumber=7445136","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,10,11]],"date-time":"2021-10-11T02:35:12Z","timestamp":1633919712000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/7445136\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,6]]},"references-count":70,"journal-issue":{"issue":"2"},"URL":"https:\/\/doi.org\/10.1109\/jsyst.2015.2487684","relation":{},"ISSN":["1932-8184","1937-9234","2373-7816"],"issn-type":[{"value":"1932-8184","type":"print"},{"value":"1937-9234","type":"electronic"},{"value":"2373-7816","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018,6]]}}}