{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,4]],"date-time":"2026-02-04T16:47:43Z","timestamp":1770223663442,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":19,"publisher":"ACM","license":[{"start":{"date-parts":[[2018,3,13]],"date-time":"2018-03-13T00:00:00Z","timestamp":1520899200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2018,3,13]]},"DOI":"10.1145\/3176258.3176339","type":"proceedings-article","created":{"date-parts":[[2018,3,15]],"date-time":"2018-03-15T13:22:14Z","timestamp":1521120134000},"page":"135-142","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":37,"title":["Automated Generation of Attack Graphs Using NVD"],"prefix":"10.1145","author":[{"given":"M. Ugur","family":"Aksu","sequence":"first","affiliation":[{"name":"STM Defence Technologies Engineering and Trade Inc. & TOBB University of Economics and Technology Ankara, Ankara, Turkey"}]},{"given":"Kemal","family":"Bicakci","sequence":"additional","affiliation":[{"name":"TOBB University of Economics and Technology, Ankara, Turkey"}]},{"given":"M. Hadi","family":"Dilek","sequence":"additional","affiliation":[{"name":"STM Defence Technologies Engineering and Trade Inc., Ankara, Turkey"}]},{"given":"A. Murat","family":"Ozbayoglu","sequence":"additional","affiliation":[{"name":"TOBB University of Economics and Technology, Ankara, Turkey"}]},{"given":"E. \u0131slam","family":"Tatli","sequence":"additional","affiliation":[{"name":"STM Defence Technologies Engineering and Trade Inc., Ankara, Turkey"}]}],"member":"320","published-online":{"date-parts":[[2018,3,13]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-24230-9_9"},{"key":"e_1_3_2_1_2_1","volume-title":"Aykir. A Quantitative CVSS-Based Cyber Security Risk Assessment Methodology For IT Systems. In The 51st Int. Carnahan Conference on Security Technology","author":"Aksu MU","year":"2017","unstructured":"MU Aksu , MH Dilek , E.I. Tath , K Bicakci , H.I. Dirik , M.U Demirezen , and T Aykir. A Quantitative CVSS-Based Cyber Security Risk Assessment Methodology For IT Systems. In The 51st Int. Carnahan Conference on Security Technology , 2017 . MU Aksu, MH Dilek, E.I. Tath, K Bicakci, H.I. Dirik, M.U Demirezen, and T Aykir. A Quantitative CVSS-Based Cyber Security Risk Assessment Methodology For IT Systems. In The 51st Int. Carnahan Conference on Security Technology, 2017."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"crossref","DOI":"10.6028\/NIST.IR.7788","volume-title":"Security Risk Analysis of Enterprise Networks Using Probabilistic Attack Graphs. Computer, page 24","author":"Singhal Anoop","year":"2011","unstructured":"Anoop Singhal and Ximming Ou . Security Risk Analysis of Enterprise Networks Using Probabilistic Attack Graphs. Computer, page 24 , 2011 . Anoop Singhal and Ximming Ou. Security Risk Analysis of Enterprise Networks Using Probabilistic Attack Graphs. Computer, page 24, 2011."},{"key":"e_1_3_2_1_4_1","volume-title":"National Vulnerability Database (NVD): Summary","author":"National Institute of Standards and Technology (NIST).","year":"2016","unstructured":"National Institute of Standards and Technology (NIST). National Vulnerability Database (NVD): Summary , 2016 . National Institute of Standards and Technology (NIST). National Vulnerability Database (NVD): Summary, 2016."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2006.39"},{"key":"e_1_3_2_1_6_1","volume-title":"Proceedings - IEEE Military Communications Conference MILCOM","author":"Lippmann Richard","year":"2007","unstructured":"Richard Lippmann , Kyle Ingols , Chris Scott , Keith Piwowarski , Kendra Kratkiewicz , Mike Artz , and Robert Cunningham . Validating and restoring defense in depth using attack graphs . Proceedings - IEEE Military Communications Conference MILCOM , 2007 . Richard Lippmann, Kyle Ingols, Chris Scott, Keith Piwowarski, Kendra Kratkiewicz, Mike Artz, and Robert Cunningham. Validating and restoring defense in depth using attack graphs. Proceedings - IEEE Military Communications Conference MILCOM, 2007."},{"key":"e_1_3_2_1_7_1","volume-title":"Evaluating and Strengthening Enterprise Network Security Using Attack Graphs. Technical report","author":"Ingols K","year":"2005","unstructured":"K Ingols , C Scott , K Piwowarski , and K Kratkiewicz . Evaluating and Strengthening Enterprise Network Security Using Attack Graphs. Technical report , MIT Lincoln Laboratory, Lexington, MA , ESC-TR- 2005 -064, 2005. K Ingols, C Scott, K Piwowarski, and K Kratkiewicz. Evaluating and Strengthening Enterprise Network Security Using Attack Graphs. Technical report, MIT Lincoln Laboratory, Lexington, MA, ESC-TR-2005-064, 2005."},{"key":"e_1_3_2_1_8_1","volume-title":"TR-CTIT-08-08","author":"Franqueira V.N.L.","year":"2008","unstructured":"V.N.L. Franqueira and M van Keulen . Analysis of the nist database towards the composition of vulnerabilities in attack scenarios. Technical report , TR-CTIT-08-08 , University of Twente , Enschede , 2008 . V.N.L. Franqueira and M van Keulen. Analysis of the nist database towards the composition of vulnerabilities in attack scenarios. Technical report, TR-CTIT-08-08,University of Twente, Enschede, 2008."},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the 14th conference on USENIX Security Symposium -","volume":"14","author":"Ou Xinming","year":"2005","unstructured":"Xinming Ou , Sudhakar Govindavajhala , and Andrew W. Appel . MulVAL: a logicbased network security analyzer . Proceedings of the 14th conference on USENIX Security Symposium - Volume 14 , 2005 . Xinming Ou, Sudhakar Govindavajhala, and Andrew W. Appel. MulVAL: a logicbased network security analyzer. Proceedings of the 14th conference on USENIX Security Symposium - Volume 14, 2005."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/1180405.1180446"},{"key":"e_1_3_2_1_11_1","first-page":"317","volume-title":"An ontology for network security attacks. Lecture notes in computer science","author":"Simmonds Andrew","year":"2004","unstructured":"Andrew Simmonds , Peter Sandilands , and L. van Ekert . An ontology for network security attacks. Lecture notes in computer science , pages 317 -- 323 , 2004 . Andrew Simmonds, Peter Sandilands, and L. van Ekert. An ontology for network security attacks. Lecture notes in computer science, pages 317--323, 2004."},{"key":"e_1_3_2_1_12_1","volume-title":"Predicting Network Attacks Using Ontology-Driven Inference. arXiv preprint arXiv:1304.0913","author":"Salahi Ahmad","year":"2013","unstructured":"Ahmad Salahi and Morteza Ansarinia . Predicting Network Attacks Using Ontology-Driven Inference. arXiv preprint arXiv:1304.0913 , 2013 . Ahmad Salahi and Morteza Ansarinia. Predicting Network Attacks Using Ontology-Driven Inference. arXiv preprint arXiv:1304.0913, 2013."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-17040-4_24"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-04474-8_18"},{"key":"e_1_3_2_1_15_1","first-page":"1","volume-title":"Forum of Incident Response and Security Teams (FIRST)","author":"FIRST.","year":"2015","unstructured":"FIRST. Common Vulnerability Scoring System v3.0: Specification Document . Forum of Incident Response and Security Teams (FIRST) , pages 1 -- 21 , 2015 . FIRST. Common Vulnerability Scoring System v3.0: Specification Document. Forum of Incident Response and Security Teams (FIRST), pages 1--21, 2015."},{"key":"e_1_3_2_1_16_1","first-page":"1","volume-title":"FIRST Forum of Incident Response and Security Teams","author":"Mell Peter","year":"2007","unstructured":"Peter Mell , Karen Scarfone , and Sasha Romanosky . A Complete Guide to the Common Vulnerability Scoring System Version 2.0 . FIRST Forum of Incident Response and Security Teams , pages 1 -- 23 , 2007 . Peter Mell, Karen Scarfone, and Sasha Romanosky. A Complete Guide to the Common Vulnerability Scoring System Version 2.0. FIRST Forum of Incident Response and Security Teams, pages 1--23, 2007."},{"key":"e_1_3_2_1_17_1","volume-title":"Common Platform Enumeration (CPE): Specifications. MITRE, page 21","author":"Buttner Andrew","year":"2007","unstructured":"Andrew Buttner . Common Platform Enumeration (CPE): Specifications. MITRE, page 21 , 2007 . Andrew Buttner. Common Platform Enumeration (CPE): Specifications. MITRE, page 21, 2007."},{"key":"e_1_3_2_1_18_1","volume-title":"Neural Networks and Learning Machines","author":"Haykin S.","year":"2008","unstructured":"S. Haykin . Neural Networks and Learning Machines . Prentice Hall , New Jersey, USA , 3 rd edition, 2008 . S. Haykin. Neural Networks and Learning Machines. Prentice Hall, New Jersey, USA, 3rd edition, 2008.","edition":"3"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1162\/106365602320169811"}],"event":{"name":"CODASPY '18: Eighth ACM Conference on Data and Application Security and Privacy","location":"Tempe AZ USA","acronym":"CODASPY '18","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the Eighth ACM Conference on Data and Application Security and Privacy"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3176258.3176339","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3176258.3176339","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:26:40Z","timestamp":1750213600000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3176258.3176339"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,3,13]]},"references-count":19,"alternative-id":["10.1145\/3176258.3176339","10.1145\/3176258"],"URL":"https:\/\/doi.org\/10.1145\/3176258.3176339","relation":{},"subject":[],"published":{"date-parts":[[2018,3,13]]},"assertion":[{"value":"2018-03-13","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}