{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,26]],"date-time":"2026-03-26T14:06:34Z","timestamp":1774533994079,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":18,"publisher":"ACM","license":[{"start":{"date-parts":[[2015,9,8]],"date-time":"2015-09-08T00:00:00Z","timestamp":1441670400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100003407","name":"Ministero dell'Istruzione, dell'Universit\u00e0 e della Ricerca","doi-asserted-by":"publisher","award":["20103P34XC"],"award-info":[{"award-number":["20103P34XC"]}],"id":[{"id":"10.13039\/501100003407","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2015,9,8]]},"DOI":"10.1145\/2799979.2800007","type":"proceedings-article","created":{"date-parts":[[2015,9,22]],"date-time":"2015-09-22T19:31:27Z","timestamp":1442950287000},"page":"46-53","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["An analytical processing approach to supporting cyber security compliance assessment"],"prefix":"10.1145","author":[{"given":"Francesco","family":"Buccafurri","sequence":"first","affiliation":[{"name":"University of Reggio Calabria, Calabria, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lidia","family":"Fotia","sequence":"additional","affiliation":[{"name":"University of Reggio Calabria, Calabria, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Angelo","family":"Furfaro","sequence":"additional","affiliation":[{"name":"University of Calabria, Rende, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alfredo","family":"Garro","sequence":"additional","affiliation":[{"name":"University of Calabria, Rende, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Matteo","family":"Giacalone","sequence":"additional","affiliation":[{"name":"Information Security, Roma, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andrea","family":"Tundis","sequence":"additional","affiliation":[{"name":"University of Calabria, Rende, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2015,9,8]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"SecaaS - Defined Categories Of Services. https:\/\/cloudsecurityalliance.org\/wp-content\/uploads\/2011\/09\/SecaaS_V1_0.pdf","author":"Alliance Cloud Security","year":"2011","unstructured":"Cloud Security Alliance . SecaaS - Defined Categories Of Services. https:\/\/cloudsecurityalliance.org\/wp-content\/uploads\/2011\/09\/SecaaS_V1_0.pdf , 2011 . Cloud Security Alliance. SecaaS - Defined Categories Of Services. https:\/\/cloudsecurityalliance.org\/wp-content\/uploads\/2011\/09\/SecaaS_V1_0.pdf, 2011."},{"key":"e_1_3_2_1_2_1","volume-title":"Security guidance for critical areas of focus in cloud computing v3.0. https:\/\/cloudsecurityalliance.org\/guidance\/csaguide.v3.0.pdf","author":"Alliance Cloud Security","year":"2011","unstructured":"Cloud Security Alliance . Security guidance for critical areas of focus in cloud computing v3.0. https:\/\/cloudsecurityalliance.org\/guidance\/csaguide.v3.0.pdf , 2011 . Cloud Security Alliance. Security guidance for critical areas of focus in cloud computing v3.0. https:\/\/cloudsecurityalliance.org\/guidance\/csaguide.v3.0.pdf, 2011."},{"key":"e_1_3_2_1_3_1","volume-title":"EMV integrated circuit card specifications for payment systems. https:\/\/www.emvco.com\/specifications.aspx?id=223","author":"EMVCo.","year":"2011","unstructured":"EMVCo. EMV integrated circuit card specifications for payment systems. https:\/\/www.emvco.com\/specifications.aspx?id=223 , 2011 . EMVCo. EMV integrated circuit card specifications for payment systems. https:\/\/www.emvco.com\/specifications.aspx?id=223, 2011."},{"key":"e_1_3_2_1_4_1","unstructured":"European Banking Authority. Guidelines on Internet payments security. http:\/\/www.eba.europa.eu\/regulation-and-policy\/consumer-protection-and-financial-innovation\/guidelines-on-the-security-of-internet-payments 2014.  European Banking Authority. Guidelines on Internet payments security. http:\/\/www.eba.europa.eu\/regulation-and-policy\/consumer-protection-and-financial-innovation\/guidelines-on-the-security-of-internet-payments 2014."},{"key":"e_1_3_2_1_5_1","volume-title":"January","author":"Bank European Central","year":"2013","unstructured":"European Central Bank . Recommendations for the security of Internet payments. https:\/\/www.ecb.europa.eu\/pub\/pdf\/other\/recommendationssecurityinternetpaymentsoutcomeofpcfinalversionafterpc201301en.pdf , January 2013 . European Central Bank. Recommendations for the security of Internet payments. https:\/\/www.ecb.europa.eu\/pub\/pdf\/other\/recommendationssecurityinternetpaymentsoutcomeofpcfinalversionafterpc201301en.pdf, January 2013."},{"key":"e_1_3_2_1_6_1","volume-title":"February","author":"Bank European Central","year":"2014","unstructured":"European Central Bank . Assessment guide for security of Internet payments. https:\/\/www.ecb.europa.eu\/pub\/pdf\/other\/assessmentguidesecurityinternetpayments201402en.pdf , February 2014 . European Central Bank. Assessment guide for security of Internet payments. https:\/\/www.ecb.europa.eu\/pub\/pdf\/other\/assessmentguidesecurityinternetpayments201402en.pdf, February 2014."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/CCST.2014.6986995"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/RELAW.2008.2"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2007.70754"},{"key":"e_1_3_2_1_10_1","first-page":"35","article-title":"Nist cloud computing standards roadmap","author":"Hogan M.","year":"2011","unstructured":"M. Hogan , F. Liu , A. Sokol , and J. Tong . Nist cloud computing standards roadmap . NIST Special Publication , 35 , 2011 . M. Hogan, F. Liu, A. Sokol, and J. Tong. Nist cloud computing standards roadmap. NIST Special Publication, 35, 2011.","journal-title":"NIST Special Publication"},{"key":"e_1_3_2_1_11_1","volume-title":"http:\/\/www.iso.org\/iso\/catalogue_detail?csnumber=54533","author":"International Organization for Standardization. ISO\/IEC 27002:2013 Information technology -- Security techniques -- Code of practice for information security controls.","year":"2013","unstructured":"International Organization for Standardization. ISO\/IEC 27002:2013 Information technology -- Security techniques -- Code of practice for information security controls. http:\/\/www.iso.org\/iso\/catalogue_detail?csnumber=54533 , 2013 . International Organization for Standardization. ISO\/IEC 27002:2013 Information technology -- Security techniques -- Code of practice for information security controls. http:\/\/www.iso.org\/iso\/catalogue_detail?csnumber=54533, 2013."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/RELAW.2009.3"},{"key":"e_1_3_2_1_13_1","volume-title":"Associates in Process Improvement","author":"Moen R.","year":"2011","unstructured":"R. Moen and C. Norman . Evolution of the PDCA cycle . Associates in Process Improvement , 2011 . R. Moen and C. Norman. Evolution of the PDCA cycle. Associates in Process Improvement, 2011."},{"key":"e_1_3_2_1_14_1","unstructured":"OASIS. Conformance requirements for the oasis security assertion markup language (SAML) v2.0. http:\/\/docs.oasis-open.org\/security\/saml\/v2.0\/saml-conformance-2.0-os.pdf 2005.  OASIS. Conformance requirements for the oasis security assertion markup language (SAML) v2.0. http:\/\/docs.oasis-open.org\/security\/saml\/v2.0\/saml-conformance-2.0-os.pdf 2005."},{"key":"e_1_3_2_1_15_1","volume-title":"Security assertion markup language (SAML) v2.0","author":"OASIS.","year":"2005","unstructured":"OASIS. Security assertion markup language (SAML) v2.0 , 2005 . OASIS. Security assertion markup language (SAML) v2.0, 2005."},{"key":"e_1_3_2_1_16_1","volume-title":"http:\/\/docs.oasis-open.org\/xacml\/3.0\/ec-us\/v1.0\/os\/xacml-3.0-ec-us-v1.0-os.pdf","author":"Export OASIS. XACML","year":"2015","unstructured":"OASIS. XACML 3.0 Export Compliance- US (EC-US) profile version 1.0. http:\/\/docs.oasis-open.org\/xacml\/3.0\/ec-us\/v1.0\/os\/xacml-3.0-ec-us-v1.0-os.pdf , 2015 . OASIS. XACML 3.0 Export Compliance-US (EC-US) profile version 1.0. http:\/\/docs.oasis-open.org\/xacml\/3.0\/ec-us\/v1.0\/os\/xacml-3.0-ec-us-v1.0-os.pdf, 2015."},{"key":"e_1_3_2_1_17_1","volume-title":"Data Security Standard (PCI DSS) -- Requirements and security assessment procedures. https:\/\/www.pcisecuritystandards.org\/documents\/PCI_DSS_v3.pdf","author":"PCI Security Standards Council","year":"2013","unstructured":"PCI Security Standards Council . Data Security Standard (PCI DSS) -- Requirements and security assessment procedures. https:\/\/www.pcisecuritystandards.org\/documents\/PCI_DSS_v3.pdf , 2013 . PCI Security Standards Council. Data Security Standard (PCI DSS) -- Requirements and security assessment procedures. https:\/\/www.pcisecuritystandards.org\/documents\/PCI_DSS_v3.pdf, 2013."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.5555\/1206288"}],"event":{"name":"SIN '15: The 8th International Conference on Security of Information and Networks","location":"Sochi Russia","acronym":"SIN '15"},"container-title":["Proceedings of the 8th International Conference on Security of Information and Networks"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2799979.2800007","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2799979.2800007","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T05:42:43Z","timestamp":1750225363000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2799979.2800007"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,9,8]]},"references-count":18,"alternative-id":["10.1145\/2799979.2800007","10.1145\/2799979"],"URL":"https:\/\/doi.org\/10.1145\/2799979.2800007","relation":{},"subject":[],"published":{"date-parts":[[2015,9,8]]},"assertion":[{"value":"2015-09-08","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}