{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,9]],"date-time":"2026-06-09T15:38:57Z","timestamp":1781019537949,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":38,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,10,30]],"date-time":"2017-10-30T00:00:00Z","timestamp":1509321600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,10,30]]},"DOI":"10.1145\/3133956.3134022","type":"proceedings-article","created":{"date-parts":[[2017,10,27]],"date-time":"2017-10-27T12:48:18Z","timestamp":1509108498000},"page":"1299-1311","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":72,"title":["RiskTeller"],"prefix":"10.1145","author":[{"given":"Leyla","family":"Bilge","sequence":"first","affiliation":[{"name":"Symantec Research Labs, Sophia-Antipolis, France"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yufei","family":"Han","sequence":"additional","affiliation":[{"name":"Symantec Research Labs, Sophia-Antipolis, France"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Matteo","family":"Dell'Amico","sequence":"additional","affiliation":[{"name":"Symantec Research Labs, Sophia-Antipolis, France"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2017,10,30]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1073\/pnas.1322638111"},{"key":"e_1_3_2_2_2_1","unstructured":"Oleg Bogomolniy. 2017. Cyber Insurance Conundrum: Using CIS Critical Security Controls for Underwriting Cyber Risk. https:\/\/www.sans.org\/reading-room\/whitepapers\/legal\/cyber-insurance-conundrum-cis-critical-security-controls-underwriting-cyber-risk-37572. (2017)."},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.1023\/A:1010933404324"},{"key":"e_1_3_2_2_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2590296.2590347"},{"key":"e_1_3_2_2_5_1","volume-title":"Polonium: Tera-Scale Graph Mining and Inference for Malware Detection. In SIAM International Conference on Data Mining (SDM)","volume":"25","author":"Chau Duen Horng","year":"2011","unstructured":"Duen Horng Chau, Carey Nachenberg, Jeffrey Wilhelm, Adam Wright, and Christos Faloutsos. 2011. Polonium: Tera-Scale Graph Mining and Inference for Malware Detection. In SIAM International Conference on Data Mining (SDM) 2011, Vol. 25. 131--142."},{"key":"e_1_3_2_2_6_1","unstructured":"Lucian Constantin. 2011. MSE false positive detection forces Google to update Chrome. The Inquirer http:\/\/www.theinquirer.net\/inquirer\/news\/2113892\/mse-false-positive-detection-forces-google-update-chrome. (October 2011)."},{"key":"e_1_3_2_2_7_1","doi-asserted-by":"publisher","DOI":"10.2307\/253555"},{"key":"e_1_3_2_2_8_1","unstructured":"Experian. 2015. Data Breach Industry Forecast. https:\/\/www.experian. com\/assets\/data-breach\/white-papers\/2015-industry-forecast-experian.pdf. (2015)."},{"key":"e_1_3_2_2_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2851613.2851801"},{"key":"e_1_3_2_2_10_1","unstructured":"G. R. Hileman S. M. Mehmud and M. A. Rosenberg. 2016. Risk Scoring in Health Insurance. https:\/\/www.soa.org\/Files\/Research\/research-2016-risk-scoring-health-insurance.pdf. (2016)."},{"key":"e_1_3_2_2_11_1","volume-title":"Proceedings of the 3rd International Conference on Document Analysis and Recognition. 278--282","author":"Ho Tin Kam","year":"1995","unstructured":"Tin Kam Ho. 1995. Random Decision Forest. In Proceedings of the 3rd International Conference on Document Analysis and Recognition. 278--282."},{"key":"e_1_3_2_2_12_1","unstructured":"IARPA. 2015. Cyber-attack Automated Unconventional Sensor Environment (CAUSE). https:\/\/www.iarpa.gov\/index.php\/research-programs\/cause. (2015)."},{"key":"e_1_3_2_2_13_1","volume-title":"Control of Cyber-Physical Systems","author":"Jones Malachi","unstructured":"Malachi Jones, Georgios Kotsalis, and Jeff S Shamma. 2013. Cyber-attack forecast modeling and complexity reduction using a game-theoretic framework. In Control of Cyber-Physical Systems. Springer, 65--84."},{"key":"e_1_3_2_2_14_1","volume-title":"National Information System Security Conference.","author":"Korzyk Alexander D.","year":"1998","unstructured":"Alexander D. Korzyk, Sr. 1998. A forecasting model for internet security attacks. In National Information System Security Conference."},{"key":"e_1_3_2_2_15_1","volume-title":"The Untold Story of the Target Attack Step by Step. https:\/\/aroundcyber.files.wordpress.com\/2014\/09\/aorato-target-report.pdf. (September","author":"Labs Aorato","year":"2014","unstructured":"Aorato Labs. 2014. The Untold Story of the Target Attack Step by Step. https:\/\/aroundcyber.files.wordpress.com\/2014\/09\/aorato-target-report.pdf. (September 2014)."},{"key":"e_1_3_2_2_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516747"},{"key":"e_1_3_2_2_17_1","unstructured":"John Leyden. 2010. Horror AVG update ballsup bricks Windows 7. The Register http:\/\/www.theregister.co.uk\/2010\/12\/02\/avgautoimmuneupdate\/. (December 2010)."},{"key":"e_1_3_2_2_18_1","volume-title":"Classification and regression by random-Forest. R news 2, 3","author":"Liaw Andy","year":"2002","unstructured":"Andy Liaw and Matthew Wiener. 2002. Classification and regression by random-Forest. R news 2, 3 (2002), 18--22."},{"key":"e_1_3_2_2_19_1","volume-title":"24th USENIX Security Symposium (USENIX Security. 1009--1024","author":"Liu Yang","year":"2015","unstructured":"Yang Liu, Armin Sarabi, Jing Zhang, Parinaz Naghizadeh, Manish Karir, Michael Bailey, and Mingyan Liu. 2015. Cloudy with a chance of breach: Forecasting cyber security incidents. In 24th USENIX Security Symposium (USENIX Security. 1009--1024."},{"key":"e_1_3_2_2_20_1","unstructured":"Declan McCullogh. 2010. Buggy McAfee update whacks Windows XP PCs. CNET http:\/\/www.cnet.com\/news\/buggy-mcafee-update-whacks-windows-xp-pcs\/. (April 2010)."},{"key":"e_1_3_2_2_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICC.2014.6883388"},{"key":"e_1_3_2_2_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.48"},{"key":"e_1_3_2_2_23_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-11379-1_21"},{"key":"e_1_3_2_2_24_1","unstructured":"M. Ovelgonne T. Dumitras A. Prakash V.S. Subrahmanian and B. Wang. 2016. Understanding the Relationship between Human Behavior and Susceptibility to CyberAttacks: A DataDriven Approach. In ACM Transactions on Intelligent Systems and Technology."},{"key":"e_1_3_2_2_25_1","volume-title":"Gayler","author":"Phua Clifton","year":"2010","unstructured":"Clifton Phua, Vincent C. S. Lee, Kate Smith-Miles, and Ross W. Gayler. 2010. A Comprehensive Survey of Data Mining-based Fraud Detection Research. Computing Research Repository abs\/1009.6119 (2010)."},{"key":"e_1_3_2_2_26_1","volume-title":"http:\/\/arstechnica.com\/information-technology\/2008\/11\/avg-incorrectly-flags-user32-dll-in-windows-xp-sp2sp3\/. (November","author":"Protalinski Emil","year":"2008","unstructured":"Emil Protalinski. 2008.AVG incorrectly flags user32.dll in Windows XP SP2\/SP3. Ars Technica, http:\/\/arstechnica.com\/information-technology\/2008\/11\/avg-incorrectly-flags-user32-dll-in-windows-xp-sp2sp3\/. (November 2008)."},{"key":"e_1_3_2_2_27_1","unstructured":"PWC. 2016. Insurance 2020 and beyond: Reaping the dividends of cyber resilience. http:\/\/www.pwc.com\/gx\/en\/insurance\/publications\/assets\/reaping-dividends-cyber-resilience.pdf. (2016)."},{"key":"e_1_3_2_2_28_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jfs.2007.02.001"},{"key":"e_1_3_2_2_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-19934-9_53"},{"key":"e_1_3_2_2_30_1","volume-title":"23rd USENIX Security Symposium (USENIX Security 14)","author":"Soska Kyle","year":"2014","unstructured":"Kyle Soska and Nicolas Christin. 2014. Automatically detecting vulnerable websites before they turn malicious. In 23rd USENIX Security Symposium (USENIX Security 14). 625--640."},{"key":"e_1_3_2_2_31_1","doi-asserted-by":"publisher","DOI":"10.5555\/1953048.2078212"},{"key":"e_1_3_2_2_32_1","volume-title":"Internet Security Threat Report","year":"2016","unstructured":"Symantec. 2016. Internet Security Threat Report Vol. 21. https:\/\/www.symantec.com\/security-center\/threat-report. (April 2016)."},{"key":"e_1_3_2_2_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2381896.2381905"},{"key":"e_1_3_2_2_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/2623330.2623342"},{"key":"e_1_3_2_2_35_1","unstructured":"Aaron Tan. 2007. Flawed Symantec update cripples Chinese PCs. CNET http:\/\/www.cnet.com\/news\/flawed-symantec-update-cripples-chinese-pcs\/. (May2007)."},{"key":"e_1_3_2_2_36_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-47854-7_2"},{"key":"e_1_3_2_2_37_1","volume-title":"Proceedings of the 2nd IEEE International Conference on Big Data Security.","author":"Veeramachanent Kalyan","year":"2016","unstructured":"Kalyan Veeramachanent, Ignaclo Arnaldo, Alfredo Cuesta-Infante, Korrapati Vamsl, Costa Basslas, and Li Ke. 2016. AI2: Training a big data machine to defend. In Proceedings of the 2nd IEEE International Conference on Big Data Security."},{"key":"e_1_3_2_2_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660330"}],"event":{"name":"CCS '17: 2017 ACM SIGSAC Conference on Computer and Communications Security","location":"Dallas Texas USA","acronym":"CCS '17","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3134022","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3133956.3134022","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:11:02Z","timestamp":1750212662000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3134022"}},"subtitle":["Predicting the Risk of Cyber Incidents"],"short-title":[],"issued":{"date-parts":[[2017,10,30]]},"references-count":38,"alternative-id":["10.1145\/3133956.3134022","10.1145\/3133956"],"URL":"https:\/\/doi.org\/10.1145\/3133956.3134022","relation":{},"subject":[],"published":{"date-parts":[[2017,10,30]]},"assertion":[{"value":"2017-10-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}