{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T15:49:07Z","timestamp":1783439347188,"version":"3.54.6"},"publisher-location":"New York, NY, USA","reference-count":55,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,7,1]],"date-time":"2024-07-01T00:00:00Z","timestamp":1719792000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,7]]},"DOI":"10.1145\/3634737.3645000","type":"proceedings-article","created":{"date-parts":[[2024,6,28]],"date-time":"2024-06-28T11:51:38Z","timestamp":1719575498000},"page":"49-62","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":8,"title":["Semantic Ranking for Automated Adversarial Technique Annotation in Security Text"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-3836-7495","authenticated-orcid":false,"given":"Udesh","family":"Kumarasinghe","sequence":"first","affiliation":[{"name":"University of Colombo, Lafayatte, Indiana, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5783-8638","authenticated-orcid":false,"given":"Ahmed","family":"Lekssays","sequence":"additional","affiliation":[{"name":"Qatar Computing Research Institute, Doha, Qatar"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6910-6194","authenticated-orcid":false,"given":"Husrev Taha","family":"Sencar","sequence":"additional","affiliation":[{"name":"Qatar Computing Research Institute, Doha, Qatar"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2734-3356","authenticated-orcid":false,"given":"Sabri","family":"Boughorbel","sequence":"additional","affiliation":[{"name":"Qatar Computing Research Institute, Doha, Qatar"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5923-4341","authenticated-orcid":false,"given":"Charitha","family":"Elvitigala","sequence":"additional","affiliation":[{"name":"C2SI, n\/a, Sri Lanka"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3600-1510","authenticated-orcid":false,"given":"Preslav","family":"Nakov","sequence":"additional","affiliation":[{"name":"MBZUAI, Abu Dhabi, United Arab Emirates"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2023. https:\/\/mitre-engenuity.org\/cybersecurity\/center-for-threat-informed-defense\/our-work\/threat-report-attck-mapper-tram\/"},{"key":"e_1_3_2_1_2_1","volume-title":"IFIP Annual Conference on Data and Applications Security and Privacy. Springer, 243--260","author":"Abdeen Basel","year":"2023","unstructured":"Basel Abdeen, Ehab Al-Shaer, Anoop Singhal, Latifur Khan, and Kevin Hamlen. 2023. SMET: Semantic Mapping of CVE to ATT&CK and Its Application to Cybersecurity. In IFIP Annual Conference on Data and Applications Security and Privacy. Springer, 243--260."},{"key":"e_1_3_2_1_3_1","volume-title":"Looking Beyond IoCs: Automatically Extracting Attack Patterns from External CTI. arXiv preprint arXiv:2211.01753","author":"Alam Md Tanvirul","year":"2022","unstructured":"Md Tanvirul Alam, Dipkamal Bhusal, Youngja Park, and Nidhi Rastogi. 2022. Looking Beyond IoCs: Automatically Extracting Attack Patterns from External CTI. arXiv preprint arXiv:2211.01753 (2022)."},{"key":"e_1_3_2_1_4_1","unstructured":"Md Tanvirul Alam Dipkamal Bhusal Youngja Park and Nidhi Rastogi. 2023. Looking Beyond IoCs: Automatically Extracting Attack Patterns from External CTI. arXiv:2211.01753 [cs.CR]"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/2484028.2484132"},{"key":"e_1_3_2_1_6_1","volume-title":"https:\/\/symantec-enterprise-blogs.security.com\/blogs\/threat-intelligence Accessed","author":"Blogs Symantec Enterprise","year":"2023","unstructured":"Symantec Enterprise Blogs. 2023. Threat Intelligence. https:\/\/symantec-enterprise-blogs.security.com\/blogs\/threat-intelligence Accessed: May 27, 2023."},{"key":"e_1_3_2_1_7_1","volume-title":"Protection Bulletin. https:\/\/www.broadcom.com\/support\/security-center\/protection-bulletin Accessed","year":"2023","unstructured":"Broadcom. 2023. Protection Bulletin. https:\/\/www.broadcom.com\/support\/security-center\/protection-bulletin Accessed: May 27, 2023."},{"key":"e_1_3_2_1_8_1","unstructured":"Tom Brown Benjamin Mann Nick Ryder Melanie Subbiah Jared D Kaplan Prafulla Dhariwal Arvind Neelakantan Pranav Shyam Girish Sastry Amanda Askell et al. 2020. Language models are few-shot learners. Advances in neural information processing systems 33 (2020) 1877--1901."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10791-016-9279-1"},{"key":"e_1_3_2_1_10_1","volume-title":"https:\/\/attack.mitre.org\/versions\/v12\/matrices\/enterprise\/. Accessed","author":"MITRE Corporation","year":"2023","unstructured":"MITRE Corporation. 2022. MITRE ATT&CK Enterprise Matrix. https:\/\/attack.mitre.org\/versions\/v12\/matrices\/enterprise\/. Accessed: June 5, 2023."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/299917.299920"},{"key":"e_1_3_2_1_12_1","volume-title":"Proceedings of the 2019 Conference of the North American Chapter of the Association for Computational Linguistics: Human Language Technologies (NAACL-HLT)","volume":"1","author":"Devlin Jacob","year":"2018","unstructured":"Jacob Devlin, Ming-Wei Chang, Kenton Lee, and Kristina Toutanova. 2018. BERT: Pre-training of Deep Bidirectional Transformers for Language Understanding. In Proceedings of the 2019 Conference of the North American Chapter of the Association for Computational Linguistics: Human Language Technologies (NAACL-HLT), Vol. 1. 4171--4186."},{"key":"e_1_3_2_1_13_1","volume-title":"Proceedings of the 2021 International Conference on Management of Data. 2716--2720","author":"Gao Peng","year":"2021","unstructured":"Peng Gao, Xiaoyuan Liu, Edward Choi, Bhavna Soman, Chinmaya Mishra, Kate Farris, and Dawn Song. 2021. A system for automated open-source threat intelligence gathering and management. In Proceedings of the 2021 International Conference on Management of Data. 2716--2720."},{"key":"e_1_3_2_1_14_1","volume-title":"2021 IEEE 37th International Conference on Data Engineering (ICDE). IEEE, 193--204","author":"Gao Peng","year":"2021","unstructured":"Peng Gao, Fei Shao, Xiaoyuan Liu, Xusheng Xiao, Zheng Qin, Fengyuan Xu, Prateek Mittal, Sanjeev R Kulkarni, and Dawn Song. 2021. Enabling efficient cyber threat hunting with cyber threat intelligence. In 2021 IEEE 37th International Conference on Data Engineering (ICDE). IEEE, 193--204."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/3394486.3403305"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/3134600.3134646"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/3134600.3134646"},{"key":"e_1_3_2_1_18_1","volume-title":"2022 IEEE 38th International Conference on Data Engineering (ICDE). IEEE, 3158--3161","author":"Ji Zhengjie","year":"2022","unstructured":"Zhengjie Ji, Edward Choi, and Peng Gao. 2022. A Knowledge Base Question Answering System for Cyber Threat Knowledge Acquisition. In 2022 IEEE 38th International Conference on Data Engineering (ICDE). IEEE, 3158--3161."},{"key":"e_1_3_2_1_19_1","volume-title":"Latent retrieval for weakly supervised open domain question answering. arXiv preprint arXiv:1906.00300","author":"Lee Kenton","year":"2019","unstructured":"Kenton Lee, Ming-Wei Chang, and Kristina Toutanova. 2019. Latent retrieval for weakly supervised open domain question answering. arXiv preprint arXiv:1906.00300 (2019)."},{"key":"e_1_3_2_1_20_1","volume-title":"Automated retrieval of att&ck tactics and techniques for cyber threat reports. arXiv preprint arXiv:2004.14322","author":"Legoy Valentine","year":"2020","unstructured":"Valentine Legoy, Marco Caselli, Christin Seifert, and Andreas Peter. 2020. Automated retrieval of att&ck tactics and techniques for cyber threat reports. arXiv preprint arXiv:2004.14322 (2020)."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-17140-6_29"},{"key":"e_1_3_2_1_22_1","volume-title":"Computer Security-ESORICS 2022: 27th European Symposium on Research in Computer Security","author":"Li Zhenyuan","year":"2022","unstructured":"Zhenyuan Li, Jun Zeng, Yan Chen, and Zhenkai Liang. 2022. AttacKG: Constructing technique knowledge graph from cyber threat intelligence reports. In Computer Security-ESORICS 2022: 27th European Symposium on Research in Computer Security, Copenhagen, Denmark, September 26--30, 2022, Proceedings, Part I. Springer, 589--609."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978315"},{"key":"e_1_3_2_1_24_1","volume-title":"Pretrained transformers for text ranking: Bert and beyond","author":"Lin Jimmy","unstructured":"Jimmy Lin, Rodrigo Nogueira, and Andrew Yates. 2022. Pretrained transformers for text ranking: Bert and beyond. Springer Nature."},{"key":"e_1_3_2_1_25_1","volume-title":"Roberta: A robustly optimized bert pretraining approach. arXiv preprint arXiv:1907.11692","author":"Liu Yinhan","year":"2019","unstructured":"Yinhan Liu, Myle Ott, Naman Goyal, Jingfei Du, Mandar Joshi, Danqi Chen, Omer Levy, Mike Lewis, Luke Zettlemoyer, and Veselin Stoyanov. 2019. Roberta: A robustly optimized bert pretraining approach. arXiv preprint arXiv:1907.11692 (2019)."},{"key":"e_1_3_2_1_26_1","volume-title":"Proceedings of the Eleventh ACM International Conference on Web Search and Data Mining. 396--404","author":"Mackenzie Joel","year":"2018","unstructured":"Joel Mackenzie, J Shane Culpepper, Roi Blanco, Matt Crane, Charles LA Clarke, and Jimmy Lin. 2018. Query driven algorithm selection in early stage retrieval. In Proceedings of the Eleventh ACM International Conference on Web Search and Data Mining. 396--404."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1148170.1148246"},{"key":"e_1_3_2_1_28_1","volume-title":"27th USENIX Security Symposium (USENIX Security 18)","author":"Mu Dongliang","year":"2018","unstructured":"Dongliang Mu, Alejandro Cuevas, Limin Yang, Hang Hu, Xinyu Xing, Bing Mao, and Gang Wang. 2018. Understanding the reproducibility of crowd-reported security vulnerabilities. In 27th USENIX Security Symposium (USENIX Security 18). 919--936."},{"key":"e_1_3_2_1_29_1","unstructured":"Tri Nguyen Mir Rosenberg Xia Song Jianfeng Gao Saurabh Tiwary Rangan Majumder and Li Deng. 2016. Ms marco: A human-generated machine reading comprehension dataset. (2016)."},{"key":"e_1_3_2_1_30_1","volume-title":"Document ranking with a pretrained sequence-to-sequence model. arXiv preprint arXiv:2003.06713","author":"Nogueira Rodrigo","year":"2020","unstructured":"Rodrigo Nogueira, Zhiying Jiang, and Jimmy Lin. 2020. Document ranking with a pretrained sequence-to-sequence model. arXiv preprint arXiv:2003.06713 (2020)."},{"key":"e_1_3_2_1_31_1","volume-title":"Scientific claim verification with VerT5erini. arXiv preprint arXiv:2010.11930","author":"Pradeep Ronak","year":"2020","unstructured":"Ronak Pradeep, Xueguang Ma, Rodrigo Nogueira, and Jimmy Lin. 2020. Scientific claim verification with VerT5erini. arXiv preprint arXiv:2010.11930 (2020)."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.5555\/3455716.3455856"},{"key":"e_1_3_2_1_33_1","volume-title":"2021 IEEE International Conference on Big Data (Big Data). IEEE, 3334--3342","author":"Ranade Priyanka","year":"2021","unstructured":"Priyanka Ranade, Aritran Piplai, Anupam Joshi, and Tim Finin. 2021. Cybert: Contextualized embeddings for the cybersecurity domain. In 2021 IEEE International Conference on Big Data (Big Data). IEEE, 3334--3342."},{"key":"e_1_3_2_1_34_1","volume-title":"Sentence-bert: Sentence embeddings using siamese bert-networks. arXiv preprint arXiv:1908.10084","author":"Reimers Nils","year":"2019","unstructured":"Nils Reimers and Iryna Gurevych. 2019. Sentence-bert: Sentence embeddings using siamese bert-networks. arXiv preprint arXiv:1908.10084 (2019)."},{"key":"e_1_3_2_1_35_1","volume-title":"Sentence-BERT: Sentence Embeddings using Siamese BERT-Networks. CoRR abs\/1908.10084","author":"Reimers Nils","year":"2019","unstructured":"Nils Reimers and Iryna Gurevych. 2019. Sentence-BERT: Sentence Embeddings using Siamese BERT-Networks. CoRR abs\/1908.10084 (2019). arXiv:1908.10084 http:\/\/arxiv.org\/abs\/1908.10084"},{"key":"e_1_3_2_1_36_1","volume-title":"CSKG4APT: A Cybersecurity Knowledge Graph for Advanced Persistent Threat Organization Attribution","author":"Ren Yitong","year":"2022","unstructured":"Yitong Ren, Yanjun Xiao, Yinghai Zhou, Zhiyong Zhang, and Zhihong Tian. 2022. CSKG4APT: A Cybersecurity Knowledge Graph for Advanced Persistent Threat Organization Attribution. IEEE Transactions on Knowledge and Data Engineering (2022)."},{"key":"e_1_3_2_1_37_1","first-page":"109","article-title":"Okapi at TREC-3","volume":"109","author":"Robertson Stephen E","year":"1995","unstructured":"Stephen E Robertson, Steve Walker, Susan Jones, Micheline M Hancock-Beaulieu, Mike Gatford, et al. 1995. Okapi at TREC-3. Nist Special Publication Sp 109 (1995), 109.","journal-title":"Nist Special Publication Sp"},{"key":"e_1_3_2_1_38_1","volume-title":"2021 IEEE European Symposium on Security and Privacy (EuroS&P). IEEE, 598--615","author":"Satvat Kiavash","year":"2021","unstructured":"Kiavash Satvat, Rigel Gjomemo, and VN Venkatakrishnan. 2021. Extractor: Extracting attack behavior from threat reports. In 2021 IEEE European Symposium on Security and Privacy (EuroS&P). IEEE, 598--615."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP51992.2021.00046"},{"key":"e_1_3_2_1_40_1","volume-title":"APT Reports Archives. https:\/\/securelist.com\/category\/apt-reports\/ Accessed","year":"2023","unstructured":"Securelist. 2023. APT Reports Archives. https:\/\/securelist.com\/category\/apt-reports\/ Accessed: May 27, 2023."},{"key":"e_1_3_2_1_41_1","volume-title":"Ernie: Enhanced representation through knowledge integration. arXiv preprint arXiv:1904.09223","author":"Sun Yu","year":"2019","unstructured":"Yu Sun, Shuohuan Wang, Yukun Li, Shikun Feng, Xuyi Chen, Han Zhang, Xin Tian, Danxiang Zhu, Hao Tian, and Hua Wu. 2019. Ernie: Enhanced representation through knowledge integration. arXiv preprint arXiv:1904.09223 (2019)."},{"key":"e_1_3_2_1_42_1","volume-title":"Distilling task-specific knowledge from bert into simple neural networks. arXiv preprint arXiv:1903.12136","author":"Tang Raphael","year":"2019","unstructured":"Raphael Tang, Yao Lu, Linqing Liu, Lili Mou, Olga Vechtomova, and Jimmy Lin. 2019. Distilling task-specific knowledge from bert into simple neural networks. arXiv preprint arXiv:1903.12136 (2019)."},{"key":"e_1_3_2_1_43_1","volume-title":"Llama: Open and efficient foundation language models. arXiv preprint arXiv:2302.13971","author":"Touvron Hugo","year":"2023","unstructured":"Hugo Touvron, Thibaut Lavril, Gautier Izacard, Xavier Martinet, Marie-Anne Lachaux, Timoth\u00e9e Lacroix, Baptiste Rozi\u00e8re, Naman Goyal, Eric Hambro, Faisal Azhar, et al. 2023. Llama: Open and efficient foundation language models. arXiv preprint arXiv:2302.13971 (2023)."},{"key":"e_1_3_2_1_44_1","volume-title":"2020 IEEE International Conference on Big Data (Big Data). IEEE","author":"Tsai Chia-En","year":"2020","unstructured":"Chia-En Tsai, Cheng-Lin Yang, and Chong-Kuan Chen. 2020. CTI ANT: Hunting for Chinese threat intelligence. In 2020 IEEE International Conference on Big Data (Big Data). IEEE, 1847--1852."},{"key":"e_1_3_2_1_45_1","volume-title":"Zephyr: Direct distillation of lm alignment. arXiv preprint arXiv:2310.16944","author":"Tunstall Lewis","year":"2023","unstructured":"Lewis Tunstall, Edward Beeching, Nathan Lambert, Nazneen Rajani, Kashif Rasul, Younes Belkada, Shengyi Huang, Leandro von Werra, Cl\u00e9mentine Fourrier, Nathan Habib, et al. 2023. Zephyr: Direct distillation of lm alignment. arXiv preprint arXiv:2310.16944 (2023)."},{"key":"e_1_3_2_1_46_1","volume-title":"https:\/\/labs.withsecure.com\/publications Accessed","year":"2023","unstructured":"WithSecure. 2023. Publications. https:\/\/labs.withsecure.com\/publications Accessed: May 27, 2023."},{"key":"e_1_3_2_1_47_1","volume-title":"Wizardlm: Empowering large language models to follow complex instructions. arXiv preprint arXiv:2304.12244","author":"Xu Can","year":"2023","unstructured":"Can Xu, Qingfeng Sun, Kai Zheng, Xiubo Geng, Pu Zhao, Jiazhan Feng, Chongyang Tao, and Daxin Jiang. 2023. Wizardlm: Empowering large language models to follow complex instructions. arXiv preprint arXiv:2304.12244 (2023)."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v35i5.16584"},{"key":"e_1_3_2_1_49_1","volume-title":"Proceedings of the 28th International Conference on Computational Linguistics. 3449--3453","author":"Yang Jheng-Hong","year":"2020","unstructured":"Jheng-Hong Yang, Sheng-Chieh Lin, Rodrigo Nogueira, Ming-Feng Tsai, Chuan-Ju Wang, and Jimmy Lin. 2020. Designing templates for eliciting commonsense knowledge from pretrained sequence-to-sequence models. In Proceedings of the 28th International Conference on Computational Linguistics. 3449--3453."},{"key":"e_1_3_2_1_50_1","volume-title":"React: Synergizing reasoning and acting in language models. arXiv preprint arXiv:2210.03629","author":"Yao Shunyu","year":"2022","unstructured":"Shunyu Yao, Jeffrey Zhao, Dian Yu, Nan Du, Izhak Shafran, Karthik Narasimhan, and Yuan Cao. 2022. React: Synergizing reasoning and acting in language models. arXiv preprint arXiv:2210.03629 (2022)."},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/3437963.3441667"},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1186\/s42400-021-00106-5","article-title":"TIM: threat context-enhanced TTP intelligence mining on unstructured threat data","volume":"5","author":"You Yizhe","year":"2022","unstructured":"Yizhe You, Jun Jiang, Zhengwei Jiang, Peian Yang, Baoxu Liu, Huamin Feng, Xuren Wang, and Ning Li. 2022. TIM: threat context-enhanced TTP intelligence mining on unstructured threat data. Cybersecurity 5, 1 (2022), 3.","journal-title":"Cybersecurity"},{"key":"e_1_3_2_1_53_1","unstructured":"Lianmin Zheng Wei-Lin Chiang Ying Sheng Siyuan Zhuang Zhanghao Wu Yonghao Zhuang Zi Lin Zhuohan Li Dacheng Li Eric Xing et al. 2023. Judging LLM-as-a-judge with MT-Bench and Chatbot Arena. arXiv preprint arXiv:2306.05685 (2023)."},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2018.00039"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/3447548.3467147"}],"event":{"name":"ASIA CCS '24: 19th ACM Asia Conference on Computer and Communications Security","location":"Singapore Singapore","acronym":"ASIA CCS '24","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 19th ACM Asia Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3634737.3645000","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T23:44:06Z","timestamp":1750290246000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3634737.3645000"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,7]]},"references-count":55,"alternative-id":["10.1145\/3634737.3645000","10.1145\/3634737"],"URL":"https:\/\/doi.org\/10.1145\/3634737.3645000","relation":{},"subject":[],"published":{"date-parts":[[2024,7]]},"assertion":[{"value":"2024-07-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}