{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:28:28Z","timestamp":1750307308464,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":22,"publisher":"ACM","license":[{"start":{"date-parts":[[2011,7,20]],"date-time":"2011-07-20T00:00:00Z","timestamp":1311120000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2011,7,20]]},"DOI":"10.1145\/2016904.2016909","type":"proceedings-article","created":{"date-parts":[[2011,8,10]],"date-time":"2011-08-10T16:16:32Z","timestamp":1312992992000},"page":"1-6","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["Visual analysis of goal-directed network defense decisions"],"prefix":"10.1145","author":[{"given":"Chris","family":"Horn","sequence":"first","affiliation":[{"name":"Northport, NY"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Anita","family":"D'Amico","sequence":"additional","affiliation":[{"name":"Northport, NY"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2011,7,20]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"A Survey of Cognitive Engineering Methods and Uses: http:\/\/mentalmodels.mitre.org\/cog_eng\/ce_methods_I.htm. Accessed: 2011-04-04.  A Survey of Cognitive Engineering Methods and Uses: http:\/\/mentalmodels.mitre.org\/cog_eng\/ce_methods_I.htm. Accessed: 2011-04-04."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2005.8"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"crossref","unstructured":"Albert C. Dorofee A. J. Killcrece G. Ruefle R. and Zajicek M. 2004. . . . A                                                                Carnegie Mellon University (CMU) Software Engineering Institute (SEI).  Albert C. Dorofee A. J. Killcrece G. Ruefle R. and Zajicek M. 2004. Defining Incident Management Processes for CSIRTs: A Work in Progress . Technical Report #CMU\/SEI-2004-TR-015. Carnegie Mellon University (CMU) Software Engineering Institute (SEI).","DOI":"10.21236\/ADA453378"},{"key":"e_1_3_2_1_4_1","unstructured":"BaseHTTPServer --- Basic HTTP server: http:\/\/docs.python.org\/library\/basehttpserver.html. Accessed: 2011-04-04.  BaseHTTPServer --- Basic HTTP server: http:\/\/docs.python.org\/library\/basehttpserver.html. Accessed: 2011-04-04."},{"key":"e_1_3_2_1_5_1","unstructured":"Biros M. D. P. and Eppich C. T. 2001. . . . . . . . . . . . . . . . Signal.  Biros M. D. P. and Eppich C. T. 2001. Human Element Key to Intrusion Detection. Signal ."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/1850795.1850798"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"crossref","unstructured":"D'Amico A. and Whitley K. 2008. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Springer Berlin Heidelberg. 19--37.  D'Amico A. and Whitley K. 2008. The Real Work of Computer Network Defense Analysts. VizSEC 2007 . J. R. Goodall G. Conti and K.-L. Ma eds. Springer Berlin Heidelberg. 19--37.","DOI":"10.1007\/978-3-540-78243-8_2"},{"volume-title":"Human Factors and Ergonomics Society Annual Meeting Proceedings","year":"2005","author":"D'Amico A.","key":"e_1_3_2_1_8_1"},{"volume-title":"Procs 26th Annual ARCOM Conference","year":"2010","author":"Gheisari M.","key":"e_1_3_2_1_9_1"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/1031607.1031663"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCA.2007.904736"},{"key":"e_1_3_2_1_12_1","unstructured":"Jones D. G. and Endsley M. R. 2005. . . . Protocols for Cognitive Task Analysis.  Jones D. G. and Endsley M. R. 2005. Goal Directed Task Analysis. Protocols for Cognitive Task Analysis ."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"crossref","unstructured":"Killcrece G. Kossakowski K.-P. Ruefle R. and Zajicek M. 2003. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Carnegie Mellon University (CMU) Software Engineering Institute (SEI).  Killcrece G. Kossakowski K.-P. Ruefle R. and Zajicek M. 2003. State of the Practice of Computer Security Incident Response Teams (CSIRTs) . Technical Report #CMU\/SEI-2003-TR-001. Carnegie Mellon University (CMU) Software Engineering Institute (SEI).","DOI":"10.21236\/ADA421664"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1179576.1179597"},{"key":"e_1_3_2_1_15_1","unstructured":"Marty R. 2008. Applied Security Visualization. Addison-Wesley Professional.   Marty R. 2008. Applied Security Visualization . Addison-Wesley Professional."},{"key":"e_1_3_2_1_16_1","unstructured":"McCloskey M. J. Stanard T. W. and Armstrong A. A. 2001. . . . . . . . . . . . . . . . Klein Associates Inc.  McCloskey M. J. Stanard T. W. and Armstrong A. A. 2001. A cognitive analysis of the information security domain . Technical Report #ARFL-HE-WP-TR-2001-0041. Klein Associates Inc."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1029208.1029220"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-85933-8_6"},{"key":"e_1_3_2_1_19_1","unstructured":"py2exe.org: http:\/\/www.py2exe.org\/. Accessed: 2011-04-04.  py2exe.org: http:\/\/www.py2exe.org\/. Accessed: 2011-04-04."},{"key":"e_1_3_2_1_20_1","unstructured":"Python Programming Language: http:\/\/www.python.org\/. Accessed: 2011-04-04.  Python Programming Language: http:\/\/www.python.org\/. Accessed: 2011-04-04."},{"key":"e_1_3_2_1_21_1","unstructured":"SQLite Home Page: http:\/\/www.sqlite.org\/. Accessed: 2011-04-04.  SQLite Home Page: http:\/\/www.sqlite.org\/. Accessed: 2011-04-04."},{"key":"e_1_3_2_1_22_1","unstructured":"Visualizing a Security Attack on a VOIP Honeypot Server - information aesthetics: http:\/\/infosthetics.com\/archives\/2011\/03\/visualizing_a_voip_security_attack.html. Accessed: 2011-04-04.  Visualizing a Security Attack on a VOIP Honeypot Server - information aesthetics: http:\/\/infosthetics.com\/archives\/2011\/03\/visualizing_a_voip_security_attack.html. Accessed: 2011-04-04."}],"event":{"name":"VizSec '11: 2011 International Symposium on Visualization for Cyber Security","acronym":"VizSec '11","location":"Pittsburgh Pennsylvania USA"},"container-title":["Proceedings of the 8th International Symposium on Visualization for Cyber Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2016904.2016909","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2016904.2016909","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T11:00:03Z","timestamp":1750244403000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2016904.2016909"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,7,20]]},"references-count":22,"alternative-id":["10.1145\/2016904.2016909","10.1145\/2016904"],"URL":"https:\/\/doi.org\/10.1145\/2016904.2016909","relation":{},"subject":[],"published":{"date-parts":[[2011,7,20]]},"assertion":[{"value":"2011-07-20","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}