{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,10]],"date-time":"2026-03-10T14:59:25Z","timestamp":1773154765919,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":12,"publisher":"ACM","license":[{"start":{"date-parts":[[2018,12,4]],"date-time":"2018-12-04T00:00:00Z","timestamp":1543881600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100011030","name":"U.S. Department of Energy","doi-asserted-by":"publisher","award":["DE-OE0000830"],"award-info":[{"award-number":["DE-OE0000830"]}],"id":[{"id":"10.13039\/100011030","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2018,12,4]]},"DOI":"10.1145\/3295453.3295458","type":"proceedings-article","created":{"date-parts":[[2019,1,4]],"date-time":"2019-01-04T13:33:56Z","timestamp":1546608836000},"page":"33-39","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["Securing Your ICS Software with the AttackSurface Host Analyzer (AHA)"],"prefix":"10.1145","author":[{"given":"Adam","family":"Hahn","sequence":"first","affiliation":[{"name":"Washington State University, School of Electrical Engineering & Computer Science, Pullman, WA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ali","family":"Tamimi","sequence":"additional","affiliation":[{"name":"Washington State University, School of Electrical Engineering & Computer Science, Pullman, WA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dave","family":"Anderson","sequence":"additional","affiliation":[{"name":"Washington State University, School of Electrical Engineering & Computer Science, Pullman, WA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,12,4]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Github. Attacksurface host analyzer (aha). {Online}. Available: https:\/\/aha-project.github.io  Github. Attacksurface host analyzer (aha). {Online}. Available: https:\/\/aha-project.github.io"},{"key":"e_1_3_2_1_2_1","unstructured":"D. of Homeland Security. Cyber security evaluation tool (cset). {Online}. Available: https:\/\/cset.inl.gov\/SitePages\/Home.aspx  D. of Homeland Security. Cyber security evaluation tool (cset). {Online}. Available: https:\/\/cset.inl.gov\/SitePages\/Home.aspx"},{"key":"e_1_3_2_1_3_1","volume-title":"Attack surface analyzer. {Online}. Available: https:\/\/www.microsoft.com\/en-us\/download\/confirmation.aspx?id=24487","year":"2012","unstructured":"Microsoft. ( 2012 ) Attack surface analyzer. {Online}. Available: https:\/\/www.microsoft.com\/en-us\/download\/confirmation.aspx?id=24487 Microsoft. (2012) Attack surface analyzer. {Online}. Available: https:\/\/www.microsoft.com\/en-us\/download\/confirmation.aspx?id=24487"},{"key":"e_1_3_2_1_4_1","unstructured":"D. of Homeland Security\/Morgridge Institute for Research. Software assurance marketplace (swamp). {Online}. Available: https:\/\/www.mir-swamp.org\/  D. of Homeland Security\/Morgridge Institute for Research. Software assurance marketplace (swamp). {Online}. Available: https:\/\/www.mir-swamp.org\/"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2010.60"},{"key":"e_1_3_2_1_6_1","volume-title":"December","author":"Howard M.","year":"2003","unstructured":"M. Howard , J. Pincus , and J. M. Wing , \" Measuring relative attack surfaces,\" Proceedings of Workshop on Advanced Developments in Software and Systems Security , December 2003 . M. Howard, J. Pincus, and J. M. Wing, \"Measuring relative attack surfaces,\" Proceedings of Workshop on Advanced Developments in Software and Systems Security, December 2003."},{"key":"e_1_3_2_1_7_1","volume-title":"Attack surface metrics and automated compile-time os kernel tailoring,\" in Proceedings of the Network and Distributed System Security Symposium (NDSS)","author":"Kurmus A.","year":"2013","unstructured":"A. Kurmus , R. Tartler , D. Dorneanu , B. Heinloth , V. Rothberg , A. Ruprecht , and D. Lohmann , \" Attack surface metrics and automated compile-time os kernel tailoring,\" in Proceedings of the Network and Distributed System Security Symposium (NDSS) , 2013 . A. Kurmus, R. Tartler, D. Dorneanu, B. Heinloth, V. Rothberg, A. Ruprecht, and D. Lohmann, \"Attack surface metrics and automated compile-time os kernel tailoring,\" in Proceedings of the Network and Distributed System Security Symposium (NDSS), 2013."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICNP.2014.101"},{"key":"e_1_3_2_1_9_1","unstructured":"S. Zatko T. Carstens P. Stach P. Thompson and Mudge. (2018 January) How risk is the sotware you use. {Online}. Available: htps:\/\/shmoo18.cyber-itl.org\/  S. Zatko T. Carstens P. Stach P. Thompson and Mudge. (2018 January) How risk is the sotware you use. {Online}. Available: htps:\/\/shmoo18.cyber-itl.org\/"},{"key":"e_1_3_2_1_10_1","unstructured":"Microsoft. What is the security development lifecycle? {Online}. Available: htps:\/\/www.microsot.com\/en-us\/sdl\/   Microsoft. What is the security development lifecycle? {Online}. Available: htps:\/\/www.microsot.com\/en-us\/sdl\/"},{"key":"e_1_3_2_1_11_1","unstructured":"NirSoft. Currports. {Online}. Available: https:\/\/www.nirsoft.net\/utils\/cports.html  NirSoft. Currports. {Online}. Available: https:\/\/www.nirsoft.net\/utils\/cports.html"},{"key":"e_1_3_2_1_12_1","unstructured":"NetSPI. Pesecurity. {Online}. Available: htps:\/\/github.com\/NetSPI\/PESecurity\/  NetSPI. Pesecurity. {Online}. Available: htps:\/\/github.com\/NetSPI\/PESecurity\/"}],"event":{"name":"ICSS '18: 4th Annual Industrial Control System Security Workshop","location":"San Juan PR USA","acronym":"ICSS '18","sponsor":["ACSA Applied Computing Security Assoc"]},"container-title":["Proceedings of the 4th Annual Industrial Control System Security Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3295453.3295458","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3295453.3295458","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3295453.3295458","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T01:02:13Z","timestamp":1750208533000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3295453.3295458"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,12,4]]},"references-count":12,"alternative-id":["10.1145\/3295453.3295458","10.1145\/3295453"],"URL":"https:\/\/doi.org\/10.1145\/3295453.3295458","relation":{},"subject":[],"published":{"date-parts":[[2018,12,4]]},"assertion":[{"value":"2018-12-04","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}