{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,20]],"date-time":"2025-11-20T12:44:33Z","timestamp":1763642673226,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":5,"publisher":"ACM","license":[{"start":{"date-parts":[[2019,4,1]],"date-time":"2019-04-01T00:00:00Z","timestamp":1554076800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2019,4]]},"DOI":"10.1145\/3314058.3317728","type":"proceedings-article","created":{"date-parts":[[2019,6,21]],"date-time":"2019-06-21T12:45:07Z","timestamp":1561121107000},"page":"1-2","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":17,"title":["Learning APT chains from cyber threat intelligence"],"prefix":"10.1145","author":[{"given":"Ghaith","family":"Husari","sequence":"first","affiliation":[{"name":"University of North Carolina at Charlotte"}]},{"given":"Ehab","family":"Al-Shaer","sequence":"additional","affiliation":[{"name":"University of North Carolina at Charlotte"}]},{"given":"Bill","family":"Chu","sequence":"additional","affiliation":[{"name":"University of North Carolina at Charlotte"}]},{"given":"Ruhani Faiheem","family":"Rahman","sequence":"additional","affiliation":[{"name":"University of North Carolina at Charlotte"}]}],"member":"320","published-online":{"date-parts":[[2019,4]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"MITRE ATT&CK. https:\/\/attack.mitre.org\/. (Last accessed","author":"MITRE Corp.","year":"1958","unstructured":"MITRE Corp. ( 1958 ). MITRE ATT&CK. https:\/\/attack.mitre.org\/. (Last accessed : November 12, 2018) MITRE Corp. (1958). MITRE ATT&CK. https:\/\/attack.mitre.org\/. (Last accessed: November 12, 2018)"},{"key":"e_1_3_2_1_2_1","unstructured":"STIX. The Structured Threat Information eXpression. https:\/\/stixproject.github.io\/  STIX. The Structured Threat Information eXpression. https:\/\/stixproject.github.io\/"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/3134600.3134646"},{"key":"e_1_3_2_1_4_1","unstructured":"Symantec Corp. Symantec Security Center. https:\/\/www.symantec.com\/securityresponse\/.  Symantec Corp. Symantec Security Center. https:\/\/www.symantec.com\/securityresponse\/."},{"key":"e_1_3_2_1_5_1","unstructured":"FireEye Inc. FireEye cyber threat intelligence. https:\/\/www.fireeye.com\/solutions\/cyber-threat-intelligence.html.  FireEye Inc. FireEye cyber threat intelligence. https:\/\/www.fireeye.com\/solutions\/cyber-threat-intelligence.html."}],"event":{"name":"HotSoS: Hot Topics in the Science of Security Symposium","sponsor":["National Security Agency National Security Agency"],"location":"Nashville Tennessee USA","acronym":"HotSoS"},"container-title":["Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3314058.3317728","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3314058.3317728","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T23:23:48Z","timestamp":1750202628000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3314058.3317728"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,4]]},"references-count":5,"alternative-id":["10.1145\/3314058.3317728","10.1145\/3314058"],"URL":"https:\/\/doi.org\/10.1145\/3314058.3317728","relation":{},"subject":[],"published":{"date-parts":[[2019,4]]},"assertion":[{"value":"2019-04-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}