{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,21]],"date-time":"2026-05-21T12:19:45Z","timestamp":1779365985491,"version":"3.53.0"},"reference-count":148,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2024,11,7]],"date-time":"2024-11-07T00:00:00Z","timestamp":1730937600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"CSIRO\u2019s Collaborative Intelligence (CINTEL) Future Science Platform"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Comput. Surv."],"published-print":{"date-parts":[[2025,2,28]]},"abstract":"<jats:p>Security Operations Centres (SOCs) are specialised facilities where security analysts leverage advanced technologies to monitor, detect and respond to cyber incidents. However, the increasing volume of security incidents has overwhelmed security analysts, leading to alert fatigue. Effective alert prioritisation (AP) becomes crucial to address this problem through the utilisation of proper criteria and methods. Human\u2013AI teaming (HAT) has the potential to significantly enhance AP by combining the complementary strengths of humans and AI. AI excels in processing large volumes of alert data, identifying anomalies, uncovering hidden patterns, and prioritising alerts at scale, all at machine speed. Human analysts can leverage their expertise to investigate prioritised alerts, re-prioritise them based on additional context and provide valuable feedback to the AI system, reducing false positives and ensuring critical alerts are prioritised. This work provides a comprehensive review of the criteria and methods for AP in SOC. We analyse the advantages and disadvantages of the different categories of AP criteria and methods based on HAT, specifically considering automation, augmentation and collaboration. We also identify several areas for future research. We anticipate that our findings will contribute to the advancement of AP techniques, fostering more effective security incident response in SOCs.<\/jats:p>","DOI":"10.1145\/3695462","type":"journal-article","created":{"date-parts":[[2024,9,14]],"date-time":"2024-09-14T07:23:24Z","timestamp":1726298604000},"page":"1-36","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":20,"title":["Alert Prioritisation in Security Operations Centres: A Systematic Survey on Criteria and Methods"],"prefix":"10.1145","volume":"57","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-1335-2139","authenticated-orcid":false,"given":"Fatemeh","family":"Jalalvand","sequence":"first","affiliation":[{"name":"CSIRO Data61, Melbourne, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6138-7742","authenticated-orcid":false,"given":"Mohan","family":"Baruwal Chhetri","sequence":"additional","affiliation":[{"name":"CSIRO Data61, Melbourne, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3289-6599","authenticated-orcid":false,"given":"Surya","family":"Nepal","sequence":"additional","affiliation":[{"name":"CSIRO Data61, Sydney, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3816-0176","authenticated-orcid":false,"given":"Cecile","family":"Paris","sequence":"additional","affiliation":[{"name":"CSIRO Data61, Sydney, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,11,7]]},"reference":[{"key":"e_1_3_1_2_2","unstructured":"Umut Acar Peter Buneman James Cheney Jan Van den Bussche Natalia Kwasnikowska and Stijn Vansummeren. 2010. A graph model of data and workflow provenance."},{"key":"e_1_3_1_3_2","doi-asserted-by":"crossref","unstructured":"Mohamed Amine Agalit Youness Idrissi Khamlichi and El Mostapha Chakir. 2020. A survey and taxonomy of techniques used for alerts of Intrusion Detection Systems. In Proceedings of the 4th International Conference on Big Data and Internet of Things (BDIoT) (2019). Association for Computing Machinery 1\u20136.","DOI":"10.1145\/3372938.3372990"},{"key":"e_1_3_1_4_2","doi-asserted-by":"crossref","first-page":"565","DOI":"10.1016\/j.cose.2018.05.009","article-title":"ISCP: In-depth model for selecting critical security controls","volume":"77","author":"Al-Safwani Nadher","year":"2018","unstructured":"Nadher Al-Safwani, Yousef Fazea, and Huda Ibrahim. 2018. ISCP: In-depth model for selecting critical security controls. Computers & Security 77 (2018), 565\u2013577.","journal-title":"Computers & Security"},{"key":"e_1_3_1_5_2","first-page":"2783","volume-title":"31st USENIX Security Symposium (USENIX Security) (2022)","author":"Alahmadi Bushra A.","year":"2022","unstructured":"Bushra A. Alahmadi, Louise Axon, and Ivan Martinovic. 2022. 99% false positives: A qualitative study of SOC analysts\u2019 perspectives on security alarms. In 31st USENIX Security Symposium (USENIX Security) (2022). 2783\u20132800."},{"key":"e_1_3_1_6_2","first-page":"49","volume-title":"Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security (AISec) (2019)","author":"Alperin Kenneth","year":"2019","unstructured":"Kenneth Alperin, Allan Wollaber, Dennis Ross, Pierre Trepagnier, and Leslie Leonard. 2019. Risk prioritization by leveraging latent vulnerability features in a contested environment. In Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security (AISec) (2019). 49\u201357."},{"issue":"4","key":"e_1_3_1_7_2","doi-asserted-by":"crossref","first-page":"263","DOI":"10.1002\/nem.804","article-title":"FuzMet: A fuzzy-logic based alert prioritization engine for intrusion detection systems","volume":"22","author":"Alsubhi Khalid","year":"2012","unstructured":"Khalid Alsubhi, Issam Aib, and Raouf Boutaba. 2012. FuzMet: A fuzzy-logic based alert prioritization engine for intrusion detection systems. International Journal of Network Management 22, 4 (2012), 263\u2013284.","journal-title":"International Journal of Network Management"},{"key":"e_1_3_1_8_2","doi-asserted-by":"crossref","first-page":"33","DOI":"10.1109\/NOMS.2008.4575114","volume-title":"2008 IEEE Network Operations and Management Symposium (NOMS) (2008)","author":"Alsubhi Khalid","year":"2008","unstructured":"Khalid Alsubhi, Ehab Al-Shaer, and Raouf Boutaba. 2008. Alert prioritization in intrusion detection systems. In 2008 IEEE Network Operations and Management Symposium (NOMS) (2008). IEEE, 33\u201340."},{"key":"e_1_3_1_9_2","doi-asserted-by":"crossref","first-page":"217977","DOI":"10.1109\/ACCESS.2020.3041837","article-title":"Threat alert prioritization using isolation forest and stacked auto encoder with day-forward-chaining analysis","volume":"8","author":"Aminanto Muhamad Erza","year":"2020","unstructured":"Muhamad Erza Aminanto, Tao Ban, Ryoichi Isawa, Takeshi Takahashi, and Daisuke Inoue. 2020. Threat alert prioritization using isolation forest and stacked auto encoder with day-forward-chaining analysis. IEEE Access 8 (2020), 217977\u2013217986.","journal-title":"IEEE Access"},{"key":"e_1_3_1_10_2","doi-asserted-by":"crossref","first-page":"117144","DOI":"10.1016\/j.eswa.2022.117144","article-title":"ROULETTE: A neural attention multi-output model for explainable network intrusion detection","volume":"201","author":"Andresini Giuseppina","year":"2022","unstructured":"Giuseppina Andresini, Annalisa Appice, Francesco Paolo Caforio, Donato Malerba, and Gennaro Vessio. 2022. ROULETTE: A neural attention multi-output model for explainable network intrusion detection. Expert Systems with Applications 201 (2022), 117144.","journal-title":"Expert Systems with Applications"},{"key":"e_1_3_1_11_2","doi-asserted-by":"publisher","DOI":"10.1145\/2799979.2800022"},{"key":"e_1_3_1_12_2","doi-asserted-by":"crossref","first-page":"1684","DOI":"10.1145\/3477314.3507097","volume-title":"Proceedings of the 37th ACM\/SIGAPP Symposium on Applied Computing (SAC) (2022)","author":"Anjum Md. Monowar","year":"2022","unstructured":"Md. Monowar Anjum, Shahrear Iqbal, and Benoit Hamelin. 2022. ANUBIS: A provenance graph-based framework for advanced persistent threat detection. In Proceedings of the 37th ACM\/SIGAPP Symposium on Applied Computing (SAC) (2022). 1684\u20131693."},{"key":"e_1_3_1_13_2","volume-title":"Australian Information Security Management Conference (2011)","author":"Anuar Nor Badrul","year":"2011","unstructured":"Nor Badrul Anuar, Steven Furnell, Maria Papadaki, and Nathan Clarke. 2011. A risk index model for security incident prioritisation. In Australian Information Security Management Conference (2011). Security Research Centre, Edith Cowan University, Perth, Western Australia."},{"key":"e_1_3_1_14_2","doi-asserted-by":"crossref","unstructured":"Giovanni Apruzzese Pavel Laskov Edgardo Montes de Oca Wissam Mallouli Luis Brdalo Rapa Athanasios Vasileios Grammatopoulos and Fabio Di Franco. 2023. The role of machine learning in cybersecurity. Digital Threats: Research and Practice 4 1 (2023) 1\u201338.","DOI":"10.1145\/3545574"},{"issue":"2","key":"e_1_3_1_15_2","doi-asserted-by":"crossref","first-page":"404","DOI":"10.1109\/TETC.2017.2764885","article-title":"Detection and threat prioritization of pivoting attacks in large networks","volume":"8","author":"Apruzzese Giovanni","year":"2017","unstructured":"Giovanni Apruzzese, Fabio Pierazzi, Michele Colajanni, and Mirco Marchetti. 2017. Detection and threat prioritization of pivoting attacks in large networks. IEEE Transactions on Emerging Topics in Computing 8, 2 (2017), 404\u2013415.","journal-title":"IEEE Transactions on Emerging Topics in Computing"},{"issue":"1","key":"e_1_3_1_16_2","first-page":"31","article-title":"A survey on multi criteria decision making methods and its applications","volume":"1","author":"Aruldoss Martin","year":"2013","unstructured":"Martin Aruldoss, T. Miranda Lakshmi, and V. Prasanna Venkatesan. 2013. A survey on multi criteria decision making methods and its applications. American Journal of Information Systems 1, 1 (2013), 31\u201343.","journal-title":"American Journal of Information Systems"},{"key":"e_1_3_1_17_2","unstructured":"MITRE ATT&CK. 2024. ATT&CK. Retrieved July 14 2024 from https:\/\/attack.mitre.org\/"},{"key":"e_1_3_1_18_2","doi-asserted-by":"crossref","unstructured":"Tao Ban Ndichu Samuel Takeshi Takahashi and Daisuke Inoue. 2021. Combat security alert fatigue with AI-assisted techniques. In Cyber Security Experimentation and Test (CSET) (2021) Workshop. 9\u201316.","DOI":"10.1145\/3474718.3474723"},{"key":"e_1_3_1_19_2","doi-asserted-by":"crossref","first-page":"674","DOI":"10.1016\/j.future.2019.03.016","article-title":"Network entity characterization and attack prediction","volume":"97","author":"Bartos Vaclav","year":"2019","unstructured":"Vaclav Bartos, Martin Zadnik, Sheikh Mahbub Habib, and Emmanouil Vasilomanolakis. 2019. Network entity characterization and attack prediction. Future Generation Computer Systems 97 (2019), 674\u2013686.","journal-title":"Future Generation Computer Systems"},{"issue":"3","key":"e_1_3_1_20_2","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3670009","article-title":"Towards human-AI teaming to mitigate alert fatigue in security operations centres","volume":"24","author":"Chhetri Mohan Baruwal","year":"2024","unstructured":"Mohan Baruwal Chhetri, Shahroz Tariq, Ronal Singh, Fatemeh Jalalvand, Cecile Paris, and Surya Nepal. 2024. Towards human-AI teaming to mitigate alert fatigue in security operations centres. ACM Transactions on Internet Technology 24, 3 (2024), 1\u201322.","journal-title":"ACM Transactions on Internet Technology"},{"key":"e_1_3_1_21_2","first-page":"1","volume-title":"2016 IEEE Symposium on Technologies for Homeland Security (HST) (2016)","author":"Bierma Michael","year":"2016","unstructured":"Michael Bierma, J. D. Justin E. Doak, and Corey Hudson. 2016. Learning to rank for alert triage. In 2016 IEEE Symposium on Technologies for Homeland Security (HST) (2016). IEEE, 1\u20135."},{"key":"e_1_3_1_22_2","volume-title":"Pattern Recognition and Machine Learning","author":"Bishop Christopher M.","year":"2006","unstructured":"Christopher M. Bishop and Nasser M. Nasrabadi. 2006. Pattern Recognition and Machine Learning. Vol. 4. Springer."},{"key":"e_1_3_1_23_2","doi-asserted-by":"crossref","first-page":"103805","DOI":"10.1016\/j.cose.2024.103805","article-title":"LogPr\u00e9cis: Unleashing language models for automated malicious log analysis: Pr\u00e9cis: A concise summary of essential points, statements, or facts","volume":"141","author":"Boffa Matteo","year":"2024","unstructured":"Matteo Boffa, Idilio Drago, Marco Mellia, Luca Vassio, Danilo Giordano, Rodolfo Valentim, and Zied Ben Houidi. 2024. LogPr\u00e9cis: Unleashing language models for automated malicious log analysis: Pr\u00e9cis: A concise summary of essential points, statements, or facts. Computers & Security 141 (2024), 103805.","journal-title":"Computers & Security"},{"key":"e_1_3_1_24_2","first-page":"1","volume-title":"2017 International Conference on Wireless Technologies, Embedded and Intelligent Systems (WITS) (2017)","author":"Chakir El Mostapha","year":"2017","unstructured":"El Mostapha Chakir, Mohamed Moughit, and Youness Idrissi Khamlichi. 2017. An efficient method for evaluating alerts of Intrusion Detection Systems. In 2017 International Conference on Wireless Technologies, Embedded and Intelligent Systems (WITS) (2017). IEEE, 1\u20136."},{"issue":"1","key":"e_1_3_1_25_2","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1080\/07366981.2021.1977026","article-title":"The human factor capabilities in security operation center (SOC)","volume":"66","author":"Chamkar Samir Achraf","year":"2022","unstructured":"Samir Achraf Chamkar, Yassine Maleh, and Noreddine Gherabi. 2022. The human factor capabilities in security operation center (SOC). EDPACS 66, 1 (2022), 1\u201314.","journal-title":"EDPACS"},{"key":"e_1_3_1_26_2","first-page":"1","volume-title":"2022 IEEE Congress on Evolutionary Computation (CEC) (2022)","author":"Chavali Lalitha","year":"2022","unstructured":"Lalitha Chavali, Tanay Gupta, and Paresh Saxena. 2022. SAC-AP: Soft actor critic based deep reinforcement learning for alert prioritization. In 2022 IEEE Congress on Evolutionary Computation (CEC) (2022). IEEE, 1\u20138."},{"key":"e_1_3_1_27_2","doi-asserted-by":"crossref","first-page":"454","DOI":"10.1109\/ICMLA.2017.0-119","volume-title":"2017 16th IEEE International Conference on Machine Learning and Applications (ICMLA) (2017)","author":"Chen Qian","year":"2017","unstructured":"Qian Chen and Robert A. Bridges. 2017. Automated behavioral analysis of malware: A case study of wannacry ransomware. In 2017 16th IEEE International Conference on Machine Learning and Applications (ICMLA) (2017). IEEE, 454\u2013460."},{"key":"e_1_3_1_28_2","article-title":"Integration of knowledge and data in machine learning","author":"Chen Yuntian","year":"2022","unstructured":"Yuntian Chen and Dongxiao Zhang. 2022. Integration of knowledge and data in machine learning. arXiv preprint arXiv:2202.10337 (2022).","journal-title":"arXiv preprint arXiv:2202.10337"},{"issue":"61","key":"e_1_3_1_29_2","first-page":"1","article-title":"Computer security incident handling guide","volume":"800","author":"Cichonski Paul","year":"2012","unstructured":"Paul Cichonski, Tom Millar, Tim Grance, Karen Scarfone, et\u00a0al. 2012. Computer security incident handling guide. NIST Special Publication 800, 61 (2012), 1\u2013147.","journal-title":"NIST Special Publication"},{"key":"e_1_3_1_30_2","article-title":"Extending MAPE-K to support human-machine teaming","author":"Cleland-Huang Jane","year":"2022","unstructured":"Jane Cleland-Huang, Ankit Agrawal, Michael Vierhauser, Michael Murphy, and Mike Prieto. 2022. Extending MAPE-K to support human-machine teaming. arXiv preprint arXiv:2203.13036 (2022).","journal-title":"arXiv preprint arXiv:2203.13036"},{"key":"e_1_3_1_31_2","first-page":"1","volume-title":"2019 IEEE Colombian Conference on Communications and Computing (COLCOM) (2019)","author":"Cort\u00e9s Francisco Mu\u00f1oz","year":"2019","unstructured":"Francisco Mu\u00f1oz Cort\u00e9s and Natalia Gaviria G\u00f3mez. 2019. A hybrid alarm management strategy in signature-based intrusion detection systems. In 2019 IEEE Colombian Conference on Communications and Computing (COLCOM) (2019). IEEE, 1\u20136."},{"key":"e_1_3_1_32_2","doi-asserted-by":"crossref","first-page":"59125","DOI":"10.1109\/ACCESS.2022.3179692","article-title":"Predicting CVSS metric via description interpretation","volume":"10","author":"Costa Joana Cabral","year":"2022","unstructured":"Joana Cabral Costa, Tiago Roxo, Jo\u00e3o B. F. Sequeiros, Hugo Proenca, and Pedro R. M. Inacio. 2022. Predicting CVSS metric via description interpretation. IEEE Access 10 (2022), 59125\u201359134.","journal-title":"IEEE Access"},{"key":"e_1_3_1_33_2","unstructured":"CriticalStart. 2019. The Impact of Security Alert Overload. https:\/\/www.criticalstart.com\/wp-content\/uploads\/2021\/02\/CS_Report-The-Impact-of-Security-Alert-Overload.pdf"},{"key":"e_1_3_1_34_2","article-title":"SANS 2023 SOC Survey","author":"Crowley Chris","year":"2023","unstructured":"Chris Crowley, Barbara Filkins, and John Pescatore. 2023. SANS 2023 SOC Survey. White paper. Escal Institute of Advanced Technologies (SANS Institute). https:\/\/www.sans.org\/white-papers\/2023-sans-soc-survey\/","journal-title":"White paper. Escal Institute of Advanced Technologies (SANS Institute)"},{"key":"e_1_3_1_35_2","unstructured":"CyberGeek. 2014. Federal Information Security Modernization Act (FISMA). Retrieved July 8 2024 from https:\/\/security.cms.gov\/learn\/federal-information-security-modernization-act-fisma"},{"key":"e_1_3_1_36_2","article-title":"Boolean decision rules via column generation","volume":"31","author":"Dash Sanjeeb","year":"2018","unstructured":"Sanjeeb Dash, Oktay Gunluk, and Dennis Wei. 2018. Boolean decision rules via column generation. Advances in Neural Information Processing Systems (NeurIPS) (2018) 31.","journal-title":"Advances in Neural Information Processing Systems (NeurIPS) (2018)"},{"issue":"3","key":"e_1_3_1_37_2","doi-asserted-by":"crossref","first-page":"1095","DOI":"10.1109\/59.32604","article-title":"Integrating expert systems with dynamic programming in generation expansion planning","volume":"4","author":"David A. K.","year":"1989","unstructured":"A. K. David and R.-D. Zhao. 1989. Integrating expert systems with dynamic programming in generation expansion planning. IEEE Transactions on Power Systems 4, 3 (1989), 1095\u20131101.","journal-title":"IEEE Transactions on Power Systems"},{"issue":"11","key":"e_1_3_1_38_2","doi-asserted-by":"crossref","first-page":"101656","DOI":"10.1016\/j.isci.2020.101656","article-title":"Integrating machine learning with human knowledge","volume":"23","author":"Deng Changyu","year":"2020","unstructured":"Changyu Deng, Xunbi Ji, Colton Rainey, Jianyu Zhang, and Wei Lu. 2020. Integrating machine learning with human knowledge. Iscience 23, 11 (2020), 101656.","journal-title":"Iscience"},{"key":"e_1_3_1_39_2","first-page":"164","volume-title":"15th International Conference on Risks and Security of Internet and Systems (CRiSIS) (2021), Revised Selected Papers 15","author":"Dey Alexandre","year":"2021","unstructured":"Alexandre Dey, Eric Totel, and Sylvain Navers. 2021. Heterogeneous security events prioritization using auto-encoders. In 15th International Conference on Risks and Security of Internet and Systems (CRiSIS) (2021), Revised Selected Papers 15. Springer, 164\u2013180."},{"key":"e_1_3_1_40_2","first-page":"34","volume-title":"2013 12th ICMLA (2013)","author":"Doak Justin E.","year":"2013","unstructured":"Justin E. Doak, Joe Ingram, Jeffery Shelburg, Joshua Johnson, and Brandon R. Rohrer. 2013. Active learning for alert triage. In 2013 12th ICMLA (2013), Vol. 2. IEEE, 34\u201339."},{"key":"e_1_3_1_41_2","doi-asserted-by":"crossref","first-page":"63","DOI":"10.1016\/j.ijinfomgt.2019.01.021","article-title":"Artificial intelligence for decision making in the era of Big Data\u2014Evolution, challenges and research agenda","volume":"48","author":"Duan Yanqing","year":"2019","unstructured":"Yanqing Duan, John S. Edwards, and Yogesh K. Dwivedi. 2019. Artificial intelligence for decision making in the era of Big Data\u2014Evolution, challenges and research agenda. International Journal of Information Management 48 (2019), 63\u201371.","journal-title":"International Journal of Information Management"},{"key":"e_1_3_1_42_2","volume-title":"11th USENIX Workshop on (CSET) (2018)","author":"Dykstra Josiah","year":"2018","unstructured":"Josiah Dykstra and Celeste Lyn Paul. 2018. Cyber Operations Stress Survey (COSS): Studying fatigue, frustration, and cognitive workload in cybersecurity operations. In 11th USENIX Workshop on (CSET) (2018)."},{"key":"e_1_3_1_43_2","unstructured":"Peter F. Edemekong Pavan Annamaraju and Micelle J. Haydel. 2024. Health Insurance Portability and Accountability Act. Retrieved July 8 2024 fromhttps:\/\/www.ncbi.nlm.nih.gov\/books\/NBK500019\/"},{"key":"e_1_3_1_44_2","doi-asserted-by":"crossref","first-page":"36","DOI":"10.1016\/j.artint.2014.12.006","article-title":"Wanted: Collaborative intelligence","volume":"221","author":"Epstein Susan L.","year":"2015","unstructured":"Susan L. Epstein. 2015. Wanted: Collaborative intelligence. Artificial Intelligence 221 (2015), 36\u201345.","journal-title":"Artificial Intelligence"},{"issue":"11","key":"e_1_3_1_45_2","first-page":"8019","article-title":"Information security risk assessment: Bayesian prioritization for AHP group decision making","volume":"8","author":"Eren-Dogu Zeynep Filiz","year":"2012","unstructured":"Zeynep Filiz Eren-Dogu and Can Cengiz Celikoglu. 2012. Information security risk assessment: Bayesian prioritization for AHP group decision making. International Journal of Innovative Computing, Information and Control 8, 11 (2012), 8019\u20138032.","journal-title":"International Journal of Innovative Computing, Information and Control"},{"issue":"4","key":"e_1_3_1_46_2","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3196884","article-title":"VULCON: A system for vulnerability prioritization, mitigation, and management","volume":"21","author":"Farris Katheryn A.","year":"2018","unstructured":"Katheryn A. Farris, Ankit Shah, George Cybenko, Rajesh Ganesan, and Sushil Jajodia. 2018. VULCON: A system for vulnerability prioritization, mitigation, and management. ACM Transactions on Privacy and Security (TOPS) 21, 4 (2018), 1\u201328.","journal-title":"ACM Transactions on Privacy and Security (TOPS)"},{"key":"e_1_3_1_47_2","doi-asserted-by":"crossref","unstructured":"Juan Ram\u00f3n Feijoo-Mart\u00ednez Alicia Guerrero-Curieses Francisco Gimeno-Blanes Mario Castro-Fern\u00e1ndez and Jos\u00e9 Luis Rojo-\u00c1lvarez. 2023. Cybersecurity alert prioritization in a critical high power grid with latent spaces. IEEE Access 11 (2023) 23754\u201323770.","DOI":"10.1109\/ACCESS.2023.3255101"},{"key":"e_1_3_1_48_2","doi-asserted-by":"crossref","first-page":"102838","DOI":"10.1016\/j.cose.2022.102838","article-title":"A time-interval-based active learning framework for enhanced PE malware acquisition and detection","volume":"121","author":"Finder Ido","year":"2022","unstructured":"Ido Finder, Eitam Sheetrit, and Nir Nissim. 2022. A time-interval-based active learning framework for enhanced PE malware acquisition and detection. Computers & Security 121 (2022), 102838.","journal-title":"Computers & Security"},{"key":"e_1_3_1_49_2","unstructured":"FireEye. 2015. The Numbers Game: How Many Alerts Is Too Many to Handle?https:\/\/thehackernews.tradepub.com\/free-offer\/the-numbers-game-how-many-alerts-is-too-many-to-handle\/w_aaaa5119?sr=hicat&_t=hicat:749"},{"issue":"4","key":"e_1_3_1_50_2","doi-asserted-by":"crossref","first-page":"523","DOI":"10.1108\/13673271211246112","article-title":"Knowledge elicitation techniques in a knowledge management context","volume":"16","author":"Gavrilova Tatiana","year":"2012","unstructured":"Tatiana Gavrilova and Tatiana Andreeva. 2012. Knowledge elicitation techniques in a knowledge management context. Journal of Knowledge Management 16, 4 (2012), 523\u2013537.","journal-title":"Journal of Knowledge Management"},{"key":"e_1_3_1_51_2","doi-asserted-by":"crossref","first-page":"31","DOI":"10.1145\/1456362.1456370","volume-title":"Proceedings of the 4th ACM Workshop on Quality of Protection (QoP) (2008)","author":"Gegick Michael","year":"2008","unstructured":"Michael Gegick, Laurie Williams, Jason Osborne, and Mladen Vouk. 2008. Prioritizing software security fortification through code-level metrics. In Proceedings of the 4th ACM Workshop on Quality of Protection (QoP) (2008). 31\u201338."},{"key":"e_1_3_1_52_2","article-title":"That escalated quickly: An ML framework for alert prioritization","author":"Gelman Ben","year":"2023","unstructured":"Ben Gelman, Salma Taoufiq, Tam\u00e1s V\u00f6r\u00f6s, and Konstantin Berlin. 2023. That escalated quickly: An ML framework for alert prioritization. arXiv preprint arXiv:2302.06648 (2023).","journal-title":"arXiv preprint arXiv:2302.06648"},{"key":"e_1_3_1_53_2","volume-title":"Proceedings of the 25th ACM International Conference on Information and Knowledge Management (CIKM) (2016)","author":"Grushka-Cohen Hagit","year":"2016","unstructured":"Hagit Grushka-Cohen, Oded Sofer, Ofer Biller, Bracha Shapira, and Lior Rokach. 2016. CyberRank: Knowledge elicitation for risk assessment of database security. In Proceedings of the 25th ACM International Conference on Information and Knowledge Management (CIKM) (2016)."},{"key":"e_1_3_1_54_2","first-page":"5864","volume-title":"IEEE International Conference on Big Data (IEEE Big Data) (2019)","author":"Gupta Nitika","year":"2019","unstructured":"Nitika Gupta, Issa Traore, and Paulo Magella Faria de Quinan. 2019. Automated event prioritization for security operation center using deep learning. In IEEE International Conference on Big Data (IEEE Big Data) (2019). IEEE, 5864\u20135872."},{"key":"e_1_3_1_55_2","article-title":"A comprehensive survey on vector database: Storage and retrieval technique, challenge","author":"Han Yikun","year":"2023","unstructured":"Yikun Han, Chunjiang Liu, and Pengfei Wang. 2023. A comprehensive survey on vector database: Storage and retrieval technique, challenge. arXiv preprint arXiv:2310.11703 (2023).","journal-title":"arXiv preprint arXiv:2310.11703"},{"key":"e_1_3_1_56_2","doi-asserted-by":"crossref","first-page":"1172","DOI":"10.1109\/SP40000.2020.00096","volume-title":"2020 IEEE Symposium on Security and Privacy (SP) (2020)","author":"Hassan Wajih Ul","year":"2020","unstructured":"Wajih Ul Hassan, Adam Bates, and Daniel Marino. 2020. Tactical provenance analysis for endpoint detection and response systems. In 2020 IEEE Symposium on Security and Privacy (SP) (2020). IEEE, 1172\u20131189."},{"key":"e_1_3_1_57_2","volume-title":"Network and Distributed Systems Security Symposium (NDSS) (2019)","author":"Hassan Wajih Ul","year":"2019","unstructured":"Wajih Ul Hassan, Shengjian Guo, Ding Li, Zhengzhang Chen, Kangkook Jee, Zhichun Li, and Adam Bates. 2019. NODOZE: Combating threat alert fatigue with automated provenance triage. In Network and Distributed Systems Security Symposium (NDSS) (2019)."},{"key":"e_1_3_1_58_2","doi-asserted-by":"crossref","first-page":"189","DOI":"10.1007\/978-3-030-26834-3_11","volume-title":"Advances in Information and Computer Security: Proceedings of the 14th International Workshop on Security (IWSEC) (2019)","author":"Hiruta Shohei","year":"2019","unstructured":"Shohei Hiruta, Satoshi Ikeda, Shigeyoshi Shima, and Hiroki Takakura. 2019. IDS alert priority determination based on traffic behavior. In Advances in Information and Computer Security: Proceedings of the 14th International Workshop on Security (IWSEC) (2019). Springer, 189\u2013206."},{"issue":"2","key":"e_1_3_1_59_2","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3303771","article-title":"Insight into insiders and it: A survey of insider threat taxonomies, analysis, modeling, and countermeasures","volume":"52","author":"Homoliak Ivan","year":"2019","unstructured":"Ivan Homoliak, Flavio Toffalini, Juan Guarnizo, Yuval Elovici, and Mart\u00edn Ochoa. 2019. Insight into insiders and it: A survey of insider threat taxonomies, analysis, modeling, and countermeasures. ACM Computing Surveys (CSUR) 52, 2 (2019), 1\u201340.","journal-title":"ACM Computing Surveys (CSUR)"},{"key":"e_1_3_1_60_2","article-title":"Towards optimal triage and mitigation of context-sensitive cyber vulnerabilities","author":"Hore Soumyadeep","year":"2023","unstructured":"Soumyadeep Hore, Fariha Moomtaheen, Ankit Shah, and Xinming Ou. 2023. Towards optimal triage and mitigation of context-sensitive cyber vulnerabilities. IEEE Transactions on Dependable and Secure Computing 20, 2 (2023), 1270\u20131285.","journal-title":"IEEE Transactions on Dependable and Secure Computing"},{"key":"e_1_3_1_61_2","doi-asserted-by":"crossref","first-page":"119734","DOI":"10.1016\/j.eswa.2023.119734","article-title":"Deep VULMAN: A deep reinforcement learning-enabled cyber vulnerability management framework","author":"Hore Soumyadeep","year":"2023","unstructured":"Soumyadeep Hore, Ankit Shah, and Nathaniel D. Bastian. 2023. Deep VULMAN: A deep reinforcement learning-enabled cyber vulnerability management framework. Expert Systems with Applications 221 (2023), 119734.","journal-title":"Expert Systems with Applications"},{"key":"e_1_3_1_62_2","first-page":"1139","volume-title":"2020 SP (2020)","author":"Hossain Md. Nahid","year":"2020","unstructured":"Md. Nahid Hossain, Sanaz Sheikhi, and R. Sekar. 2020. Combating dependence explosion in forensic analysis using alternative tag propagation semantics. In 2020 SP (2020). IEEE, 1139\u20131155."},{"key":"e_1_3_1_63_2","doi-asserted-by":"crossref","first-page":"102844","DOI":"10.1016\/j.cose.2022.102844","article-title":"RADAMS: Resilient and adaptive alert and attention management strategy against informational denial-of-service (IDoS) attacks","volume":"121","author":"Huang Linan","year":"2022","unstructured":"Linan Huang and Quanyan Zhu. 2022. RADAMS: Resilient and adaptive alert and attention management strategy against informational denial-of-service (IDoS) attacks. Computers & Security 121 (2022), 102844.","journal-title":"Computers & Security"},{"key":"e_1_3_1_64_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.comcom.2014.04.012"},{"key":"e_1_3_1_65_2","first-page":"483","volume-title":"2023 19th International Conference on Distributed Computing in Smart Systems and the Internet of Things (DCOSS-IoT) (2023)","author":"Iacovazzi Alfonso","year":"2023","unstructured":"Alfonso Iacovazzi, Han Wang, Ismail Butun, and Shahid Raza. 2023. Towards cyber threat intelligence for the IoT. In 2023 19th International Conference on Distributed Computing in Smart Systems and the Internet of Things (DCOSS-IoT) (2023). IEEE, 483\u2013490."},{"key":"e_1_3_1_66_2","unstructured":"Intersoft Consulting. 2016. General Data Protection Regulation GDPR. Retrieved July 8 2024 from https:\/\/gdpr-info.eu\/"},{"key":"e_1_3_1_67_2","doi-asserted-by":"crossref","first-page":"e900","DOI":"10.7717\/peerj-cs.900","article-title":"A novel hybrid-based approach of snort automatic rule generator and security event correlation (SARG-SEC)","volume":"8","author":"Jaw Ebrima","year":"2022","unstructured":"Ebrima Jaw and Xueming Wang. 2022. A novel hybrid-based approach of snort automatic rule generator and security event correlation (SARG-SEC). PeerJ Computer Science 8 (2022), e900.","journal-title":"PeerJ Computer Science"},{"key":"e_1_3_1_68_2","first-page":"257","volume-title":"2022 Joint International Conference on Digital Arts, Media and Technology with ECTI Northern Section Conference on Electrical, Electronics, Computer and Telecommunications Engineering (ECTI DAMT & NCON) (2022)","author":"Jeamaon Aomduan","year":"2022","unstructured":"Aomduan Jeamaon and Chaiyaporn Khemapatapan. 2022. Cybersecurity risk assessment for insurance in Thailand using Bayesian network model. In 2022 Joint International Conference on Digital Arts, Media and Technology with ECTI Northern Section Conference on Electrical, Electronics, Computer and Telecommunications Engineering (ECTI DAMT & NCON) (2022). IEEE, 257\u2013260."},{"key":"e_1_3_1_69_2","article-title":"When large language models meet vector databases: A survey","author":"Jing Zhi","year":"2024","unstructured":"Zhi Jing, Yongye Su, Yikun Han, Bo Yuan, Chunjiang Liu, Haiyun Xu, and Kehai Chen. 2024. When large language models meet vector databases: A survey. arXiv preprint arXiv:2402.01763 (2024).","journal-title":"arXiv preprint arXiv:2402.01763"},{"key":"e_1_3_1_70_2","doi-asserted-by":"publisher","DOI":"10.1145\/3491209"},{"key":"e_1_3_1_71_2","volume-title":"A Framework for Event Prioritization in Cyber Network Defense","author":"Kim Anya","year":"2014","unstructured":"Anya Kim, Myong H. Kang, Jim Z. Luo, and Alex Velasquez. 2014. A Framework for Event Prioritization in Cyber Network Defense. Technical Report. Naval Research Lab, Center for High Assurance Computing Systems, Washington, DC."},{"key":"e_1_3_1_72_2","first-page":"154","volume-title":"2022 IEEE Conference on Communications and Network Security (CNS) (2022)","author":"Kim Yeongwoo","year":"2022","unstructured":"Yeongwoo Kim and Gy\u00f6rgy D\u00e1n. 2022. An active learning approach to dynamic alert prioritization for real-time situational awareness. In 2022 IEEE Conference on Communications and Network Security (CNS) (2022). IEEE, 154\u2013162."},{"key":"e_1_3_1_73_2","volume-title":"11 Strategies of a World-class Cybersecurity Operations Center","author":"Knerler Kathryn","year":"2022","unstructured":"Kathryn Knerler, Ingrid Parker, and Carson Zimmerman. 2022. 11 Strategies of a World-class Cybersecurity Operations Center. MITRE."},{"key":"e_1_3_1_74_2","doi-asserted-by":"crossref","first-page":"556","DOI":"10.1145\/3427228.3427271","volume-title":"Annual Computer Security Applications Conference (ACSAC) (2020)","author":"Kuppa Aditya","year":"2020","unstructured":"Aditya Kuppa, Lamine Aouad, and Nhien-An Le-Khac. 2020. Effect of security controls on patching window: A causal inference based approach. In Annual Computer Security Applications Conference (ACSAC) (2020). 556\u2013566."},{"key":"e_1_3_1_75_2","unstructured":"Aron Laszka Yevgeniy Vorobeychik Daniel Fabbri Chao Yan and Bradley A. Malin. 2017. A game-theoretic approach for alert prioritization. In Workshops at the 31th AAAI Conference on Artificial Intelligence (2017)."},{"key":"e_1_3_1_76_2","article-title":"Human-AI collaboration in decision-making: Beyond learning to defer","author":"Leit\u00e3o Diogo","year":"2022","unstructured":"Diogo Leit\u00e3o, Pedro Saleiro, M\u00e1rio A. T. Figueiredo, and Pedro Bizarro. 2022. Human-AI collaboration in decision-making: Beyond learning to defer. arXiv preprint arXiv:2206.13202 (2022).","journal-title":"arXiv preprint arXiv:2206.13202"},{"key":"e_1_3_1_77_2","doi-asserted-by":"crossref","first-page":"102282","DOI":"10.1016\/j.cose.2021.102282","article-title":"Threat detection and investigation with system-level provenance graphs: A survey","volume":"106","author":"Li Zhenyuan","year":"2021","unstructured":"Zhenyuan Li, Qi Alfred Chen, Runqing Yang, Yan Chen, and Wei Ruan. 2021. Threat detection and investigation with system-level provenance graphs: A survey. Computers & Security 106 (2021), 102282.","journal-title":"Computers & Security"},{"key":"e_1_3_1_78_2","article-title":"Reinforcement learning with human feedback: Learning dynamic choices via pessimism","author":"Li Zihao","year":"2023","unstructured":"Zihao Li, Zhuoran Yang, and Mengdi Wang. 2023. Reinforcement learning with human feedback: Learning dynamic choices via pessimism. arXiv preprint arXiv:2305.18438 (2023).","journal-title":"arXiv preprint arXiv:2305.18438"},{"key":"e_1_3_1_79_2","first-page":"4295","volume-title":"IEEE BigData (2022)","author":"Lin Derek","year":"2022","unstructured":"Derek Lin. 2022. MATE: Summarizing alerts to interpretable outcomes with MITRE ATT&CK. In IEEE BigData (2022). IEEE, 4295\u20134302."},{"key":"e_1_3_1_80_2","first-page":"1987","volume-title":"Proceedings of the 27th ACM International CIKM (2018)","author":"Lin Ying","year":"2018","unstructured":"Ying Lin, Zhengzhang Chen, Cheng Cao, Lu-An Tang, Kai Zhang, Wei Cheng, and Zhichun Li. 2018. Collaborative alert ranking for anomaly detection. In Proceedings of the 27th ACM International CIKM (2018). 1987\u20131995."},{"issue":"1","key":"e_1_3_1_81_2","doi-asserted-by":"crossref","first-page":"18","DOI":"10.3390\/e23010018","article-title":"Explainable AI: A review of machine learning interpretability methods","volume":"23","author":"Linardatos Pantelis","year":"2021","unstructured":"Pantelis Linardatos, Vasilis Papastefanopoulos, and Sotiris Kotsiantis. 2021. Explainable AI: A review of machine learning interpretability methods. Entropy 23, 1 (2021), 18.","journal-title":"Entropy"},{"key":"e_1_3_1_82_2","article-title":"Log-based anomaly detection based on EVT theory with feedback","author":"Liu Jinyang","year":"2023","unstructured":"Jinyang Liu, Junjie Huang, Yintong Huo, Zhihan Jiang, Jiazhen Gu, Zhuangbin Chen, Cong Feng, Minzhi Yan, and Michael R. Lyu. 2023. Log-based anomaly detection based on EVT theory with feedback. arXiv preprint arXiv:2306.05032 (2023).","journal-title":"arXiv preprint arXiv:2306.05032"},{"key":"e_1_3_1_83_2","doi-asserted-by":"crossref","first-page":"106856","DOI":"10.1016\/j.infsof.2022.106856","article-title":"Context2Vector: Accelerating security event triage via context representation learning","volume":"146","author":"Liu Jia","year":"2022","unstructured":"Jia Liu, Runzi Zhang, Wenmao Liu, Yinghua Zhang, Dujuan Gu, Mingkai Tong, Xingkai Wang, Jianxin Xue, and Huanran Wang. 2022. Context2Vector: Accelerating security event triage via context representation learning. Information and Software Technology 146 (2022), 106856.","journal-title":"Information and Software Technology"},{"issue":"8","key":"e_1_3_1_84_2","doi-asserted-by":"crossref","first-page":"1699","DOI":"10.1016\/j.jss.2012.03.057","article-title":"Improving VRSS-based vulnerability prioritization using analytic hierarchy process","volume":"85","author":"Liu Qixu","year":"2012","unstructured":"Qixu Liu, Yuqing Zhang, Ying Kong, and Qianru Wu. 2012. Improving VRSS-based vulnerability prioritization using analytic hierarchy process. Journal of Systems and Software 85, 8 (2012), 1699\u20131708.","journal-title":"Journal of Systems and Software"},{"key":"e_1_3_1_85_2","first-page":"827","volume-title":"Proceedings of the 38th ACSAC (2022)","author":"Liu Yushan","year":"2022","unstructured":"Yushan Liu, Xiaokui Shu, Yixin Sun, Jiyong Jang, and Prateek Mittal. 2022. RAPID: Real-time alert investigation with context-aware prioritization for efficient threat discovery. In Proceedings of the 38th ACSAC (2022). 827\u2013840."},{"key":"e_1_3_1_86_2","volume-title":"NDSS","author":"Liu Yushan","year":"2018","unstructured":"Yushan Liu, Mu Zhang, Ding Li, Kangkook Jee, Zhichun Li, Zhenyu Wu, Junghwan Rhee, and Prateek Mittal. 2018. Towards a timely causality analysis for enterprise security. In NDSS."},{"issue":"1","key":"e_1_3_1_87_2","doi-asserted-by":"crossref","first-page":"247","DOI":"10.1016\/j.eswa.2011.07.015","article-title":"A hybrid information security risk assessment procedure considering interdependences between controls","volume":"39","author":"Lo Chi-Chun","year":"2012","unstructured":"Chi-Chun Lo and Wan-Jia Chen. 2012. A hybrid information security risk assessment procedure considering interdependences between controls. Expert Systems with Applications 39, 1 (2012), 247\u2013257.","journal-title":"Expert Systems with Applications"},{"key":"e_1_3_1_88_2","article-title":"A unified approach to interpreting model predictions","volume":"30","author":"Lundberg Scott M.","year":"2017","unstructured":"Scott M. Lundberg and Su-In Lee. 2017. A unified approach to interpreting model predictions. Advances in NeurIPS (2017) 30 (2017), 1\u201310.","journal-title":"Advances in NeurIPS (2017)"},{"key":"e_1_3_1_89_2","doi-asserted-by":"crossref","first-page":"35","DOI":"10.1007\/978-981-4560-73-3_2","article-title":"Multi criteria decision making","author":"Majumder Mrinmoy","year":"2015","unstructured":"Mrinmoy Majumder. 2015. Multi criteria decision making. In Impact of Urbanization on Water Shortage in Face of Climatic Aberrations. Springer, 35\u201347.","journal-title":"Impact of Urbanization on Water Shortage in Face of Climatic Aberrations"},{"key":"e_1_3_1_90_2","doi-asserted-by":"publisher","DOI":"10.1109\/MILCOM.2017.8170757"},{"issue":"2","key":"e_1_3_1_91_2","doi-asserted-by":"crossref","first-page":"379","DOI":"10.3390\/jcp2020020","article-title":"Improved detection and response via optimized alerts: Usability study","volume":"2","author":"McRee Griffith Russell","year":"2022","unstructured":"Griffith Russell McRee. 2022. Improved detection and response via optimized alerts: Usability study. Journal of Cybersecurity and Privacy 2, 2 (2022), 379\u2013401.","journal-title":"Journal of Cybersecurity and Privacy"},{"key":"e_1_3_1_92_2","doi-asserted-by":"crossref","first-page":"321","DOI":"10.23919\/CYCON.2018.8405024","volume-title":"2018 10th International Conference on Cyber Conflict (CyCon) (2018)","author":"Meier Roland","year":"2018","unstructured":"Roland Meier, Cornelia Scherrer, David Gugelmann, Vincent Lenders, and Laurent Vanbever. 2018. FeedRank: A tamper-resistant method for the ranking of cyber threat intelligence feeds. In 2018 10th International Conference on Cyber Conflict (CyCon) (2018). IEEE, 321\u2013344."},{"key":"e_1_3_1_93_2","doi-asserted-by":"publisher","DOI":"10.1145\/2808234"},{"issue":"4","key":"e_1_3_1_94_2","doi-asserted-by":"crossref","first-page":"314","DOI":"10.1109\/THMS.2019.2919702","article-title":"Designing wearable systems for sports: A review of trends and opportunities in human\u2013computer interaction","volume":"49","author":"Mencarini Eleonora","year":"2019","unstructured":"Eleonora Mencarini, Amon Rapp, Lia Tirabeni, and Massimo Zancanaro. 2019. Designing wearable systems for sports: A review of trends and opportunities in human\u2013computer interaction. IEEE Transactions on Human-machine Systems 49, 4 (2019), 314\u2013325.","journal-title":"IEEE Transactions on Human-machine Systems"},{"key":"e_1_3_1_95_2","first-page":"1","volume-title":"2018 IEEE Symposium on Computers and Communications (ISCC) (2018)","author":"Meng Yongwei","year":"2018","unstructured":"Yongwei Meng, Tao Qin, Yukun Liu, and Chao He. 2018. High threat alarms mining for effective security management: Modeling, experiment and application. In 2018 IEEE Symposium on Computers and Communications (ISCC) (2018). IEEE, 1\u20136."},{"key":"e_1_3_1_96_2","unstructured":"Trend Micro. 2021. A Global Study Security Operations on the Backfoot: How poor tooling is taking its toll on security analysts. https:\/\/resources.trendmicro.com\/rs\/945-CXD-062\/images\/TMSecOpsReportPhase1May2021.pdf"},{"key":"e_1_3_1_97_2","first-page":"1137","volume-title":"2019 SP (2019)","author":"Milajerdi Sadegh M.","year":"2019","unstructured":"Sadegh M. Milajerdi, Rigel Gjomemo, Birhanu Eshete, Ramachandran Sekar, and V. N. Venkatakrishnan. 2019. HOLMES: Real-time apt detection through correlation of suspicious information flows. In 2019 SP (2019). IEEE, 1137\u20131152."},{"key":"e_1_3_1_98_2","doi-asserted-by":"crossref","first-page":"879","DOI":"10.1109\/ISTEL.2014.7000827","volume-title":"7th International Symposium on Telecommunications (IST) (2014)","author":"Mohyeddin Mahsa Agha","year":"2014","unstructured":"Mahsa Agha Mohyeddin and Hossein Gharaee. 2014. FAHP-TOPSIS risks ranking models in ISMS. In 7th International Symposium on Telecommunications (IST) (2014). IEEE, 879\u2013882."},{"key":"e_1_3_1_99_2","article-title":"Prompted contextual vectors for spear-phishing detection","author":"Nahmias Daniel","year":"2024","unstructured":"Daniel Nahmias, Gal Engelberg, Dan Klein, and Asaf Shabtai. 2024. Prompted contextual vectors for spear-phishing detection. arXiv preprint arXiv:2402.08309 (2024).","journal-title":"arXiv preprint arXiv:2402.08309"},{"key":"e_1_3_1_100_2","doi-asserted-by":"crossref","first-page":"73","DOI":"10.1109\/ISI.2016.7745446","volume-title":"2016 IEEE Conference on Intelligence and Security Informatics (ISI) (2016)","author":"Newcomb E. Allison","year":"2016","unstructured":"E. Allison Newcomb, Robert J. Hammell, and Steve Hutchinson. 2016. Effective prioritization of network intrusion alerts to enhance situational awareness. In 2016 IEEE Conference on Intelligence and Security Informatics (ISI) (2016). IEEE, 73\u201378."},{"key":"e_1_3_1_101_2","first-page":"1","volume-title":"2020 4th Cyber Security in Networking Conference (CSNet) (2020)","author":"Nguyen Thi Quynh","year":"2020","unstructured":"Thi Quynh Nguyen, Romain Laborde, Abdelmalek Benzekri, and Bruno Qu\u2019hen. 2020. Detecting abnormal DNS traffic using unsupervised machine learning. In 2020 4th Cyber Security in Networking Conference (CSNet) (2020). IEEE, 1\u20138."},{"issue":"1","key":"e_1_3_1_102_2","doi-asserted-by":"crossref","first-page":"49","DOI":"10.2478\/hjbpa-2022-0003","article-title":"Stress, burnout, and security fatigue in cybersecurity: A human factors problem","volume":"13","author":"Nobles Calvin","year":"2022","unstructured":"Calvin Nobles. 2022. Stress, burnout, and security fatigue in cybersecurity: A human factors problem. HOLISTICA\u2013Journal of Business and Public Administration 13, 1 (2022), 49\u201372.","journal-title":"HOLISTICA\u2013Journal of Business and Public Administration"},{"key":"e_1_3_1_103_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10922-008-9109-x"},{"key":"e_1_3_1_104_2","doi-asserted-by":"crossref","first-page":"100976","DOI":"10.1016\/j.elerap.2020.100976","article-title":"Customer-oriented ranking of cyber threat intelligence service providers","volume":"41","author":"Noor Umara","year":"2020","unstructured":"Umara Noor, Zahid Anwar, J\u00f6rn Altmann, and Zahid Rashid. 2020. Customer-oriented ranking of cyber threat intelligence service providers. Electronic Commerce Research and Applications 41 (2020), 100976.","journal-title":"Electronic Commerce Research and Applications"},{"key":"e_1_3_1_105_2","first-page":"2320","volume-title":"SP (2022)","author":"Obada-Obieh Borke","year":"2022","unstructured":"Borke Obada-Obieh, Yue Huang, Lucrezia Spagnolo, and Konstantin Beznosov. 2022. SoK: The dual nature of technology in sexual abuse. In SP (2022). IEEE, 2320\u20132343."},{"key":"e_1_3_1_106_2","first-page":"182","volume-title":"CNS (2021)","author":"Ongun Talha","year":"2021","unstructured":"Talha Ongun, Oliver Spohngellert, Benjamin Miller, Simona Boboila, Alina Oprea, Tina Eliassi-Rad, Jason Hiser, Alastair Nottingham, Jack Davidson, and Malathi Veeraraghavan. 2021. PORTFILER: Port-level network profiling for self-propagating malware detection. In CNS (2021). IEEE, 182\u2013190."},{"key":"e_1_3_1_107_2","doi-asserted-by":"crossref","first-page":"126314","DOI":"10.1016\/j.neucom.2023.126314","article-title":"A deep actor critic reinforcement learning framework for learning to rank","volume":"547","author":"Padhye Vaibhav","year":"2023","unstructured":"Vaibhav Padhye and Kailasam Lakshmanan. 2023. A deep actor critic reinforcement learning framework for learning to rank. Neurocomputing 547 (2023), 126314.","journal-title":"Neurocomputing"},{"key":"e_1_3_1_108_2","unstructured":"Cecile Paris and Andrew Reeson. 2021. What\u2019s the Secret to Making Sure AI Doesn\u2019t Steal Your Job? Work with It Not against It. https:\/\/theconversation.com\/whats-the-secret-to-making-sure-ai-doesnt-steal-your-job-work-with-it-not-against-it-172691"},{"key":"e_1_3_1_109_2","volume-title":"Adaptive Prioritization of Network Security Incidents","author":"Renners Leonard","year":"2020","unstructured":"Leonard Renners. 2020. Adaptive Prioritization of Network Security Incidents. Ph.D. Dissertation. Dissertation, Neubiberg, Universit\u00e4t der Bundeswehr M\u00fcnchen."},{"key":"e_1_3_1_110_2","doi-asserted-by":"crossref","first-page":"28","DOI":"10.1109\/ICDIS.2019.00012","volume-title":"2019 2nd International Conference on Data Intelligence and Security (ICDIS) (2019)","author":"Renners Leonard","year":"2019","unstructured":"Leonard Renners, Felix Heine, Carsten Kleiner, and Gabi Dreo Rodosek. 2019. Design and evaluation of an approach for feedback-based adaptation of incident prioritization. In 2019 2nd International Conference on Data Intelligence and Security (ICDIS) (2019). IEEE, 28\u201335."},{"key":"e_1_3_1_111_2","first-page":"398","volume-title":"2017 9th IEEE International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS) (2017)","volume":"1","author":"Renners Leonard","year":"2017","unstructured":"Leonard Renners, Felix Heine, and Gabi Dreo Rodosek. 2017. Modeling and learning incident prioritization. In 2017 9th IEEE International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS) (2017), Vol. 1. IEEE, 398\u2013403."},{"key":"e_1_3_1_112_2","first-page":"1135","volume-title":"Proceedings of the 22nd ACM International Conference on Knowledge Discovery and Data Mining (SIGKDD) (2016)","author":"Ribeiro Marco Tulio","year":"2016","unstructured":"Marco Tulio Ribeiro, Sameer Singh, and Carlos Guestrin. 2016. \u201cWhy should I trust you?\u201d Explaining the predictions of any classifier. In Proceedings of the 22nd ACM International Conference on Knowledge Discovery and Data Mining (SIGKDD) (2016). 1135\u20131144."},{"key":"e_1_3_1_113_2","first-page":"410","volume-title":"Workshops of the International Conference on Advanced Information Networking and Applications","author":"Rodriguez Ariel","year":"2020","unstructured":"Ariel Rodriguez and Koji Okamura. 2020. Cybersecurity text data classification and optimization for CTI systems. In Workshops of the International Conference on Advanced Information Networking and Applications. Springer, 410\u2013419."},{"key":"e_1_3_1_114_2","first-page":"75","volume-title":"Proceedings of the 19th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA) (2022)","author":"Sakazi Shay","year":"2022","unstructured":"Shay Sakazi, Yuval Elovici, and Asaf Shabtai. 2022. Prioritizing antivirus alerts on internal enterprise machines. In Proceedings of the 19th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA) (2022). Springer, 75\u201395."},{"key":"e_1_3_1_115_2","doi-asserted-by":"crossref","first-page":"403","DOI":"10.1007\/s10462-017-9567-1","article-title":"A hybrid intrusion detection system (HIDS) based on prioritized k-nearest neighbors and optimized SVM classifiers","volume":"51","author":"Saleh Ahmed I.","year":"2019","unstructured":"Ahmed I. Saleh, Fatma M. Talaat, and Labib M. Labib. 2019. A hybrid intrusion detection system (HIDS) based on prioritized k-nearest neighbors and optimized SVM classifiers. Artificial Intelligence Review 51 (2019), 403\u2013443.","journal-title":"Artificial Intelligence Review"},{"issue":"2","key":"e_1_3_1_116_2","doi-asserted-by":"crossref","first-page":"911","DOI":"10.25300\/MISQ\/2022\/15392","article-title":"Linking exploits from the dark web to known vulnerabilities for proactive cyber threat intelligence: An attention-based deep structured semantic model","volume":"46","author":"Samtani Sagar","year":"2022","unstructured":"Sagar Samtani, Yidong Chai, and Hsinchun Chen. 2022. Linking exploits from the dark web to known vulnerabilities for proactive cyber threat intelligence: An attention-based deep structured semantic model. MIS Quarterly 46, 2 (2022), 911\u2013946.","journal-title":"MIS Quarterly"},{"key":"e_1_3_1_117_2","volume-title":"Game Theoretic Deception and Threat Screening for Cyber Security","author":"Schlenker Aaron","year":"2018","unstructured":"Aaron Schlenker. 2018. Game Theoretic Deception and Threat Screening for Cyber Security. Ph.D. Dissertation. University of Southern California."},{"key":"e_1_3_1_118_2","doi-asserted-by":"crossref","unstructured":"Aaron Schlenker Haifeng Xu Mina Guirguis Christopher Kiekintveld Arunesh Sinha Milind Tambe Solomon Sonya Darryl Balderas and Noah Dunstatter. 2017. Don\u2019t bury your head in warnings: A game-theoretic approach for intelligent allocation of cyber-security alerts. (2017).","DOI":"10.24963\/ijcai.2017\/54"},{"key":"e_1_3_1_119_2","doi-asserted-by":"crossref","first-page":"102831","DOI":"10.1016\/j.ijhcs.2022.102831","article-title":"Design patterns for human-AI co-learning: A Wizard-of-Oz evaluation in an urban-search-and-rescue task","volume":"164","author":"Schoonderwoerd Tjeerd A. J.","year":"2022","unstructured":"Tjeerd A. J. Schoonderwoerd, Emma M. Van Zoelen, Karel van den Bosch, and Mark A. Neerincx. 2022. Design patterns for human-AI co-learning: A Wizard-of-Oz evaluation in an urban-search-and-rescue task. International Journal of Human-computer Studies 164 (2022), 102831.","journal-title":"International Journal of Human-computer Studies"},{"issue":"1","key":"e_1_3_1_120_2","doi-asserted-by":"crossref","first-page":"13","DOI":"10.1177\/1548512919874129","article-title":"Vulnerability selection for remediation: An empirical analysis","volume":"19","author":"Shah Ankit","year":"2022","unstructured":"Ankit Shah, Katheryn A. Farris, Rajesh Ganesan, and Sushil Jajodia. 2022. Vulnerability selection for remediation: An empirical analysis. Journal of Defense Modeling and Simulation 19, 1 (2022), 13\u201322.","journal-title":"Journal of Defense Modeling and Simulation"},{"issue":"7","key":"e_1_3_1_121_2","doi-asserted-by":"crossref","first-page":"1857","DOI":"10.1109\/TIFS.2018.2886465","article-title":"A two-step approach to optimal selection of alerts for investigation in a CSOC","volume":"14","author":"Shah Ankit","year":"2019","unstructured":"Ankit Shah, Rajesh Ganesan, Sushil Jajodia, and Hasan Cam. 2019. A two-step approach to optimal selection of alerts for investigation in a CSOC. IEEE Transactions on Information Forensics and Security 14, 7 (2019), 1857\u20131870.","journal-title":"IEEE Transactions on Information Forensics and Security"},{"key":"e_1_3_1_122_2","doi-asserted-by":"crossref","first-page":"101507","DOI":"10.1016\/j.is.2020.101507","article-title":"A survey on graph-based methods for similarity searches in metric spaces","volume":"95","author":"Shimomura Larissa C.","year":"2021","unstructured":"Larissa C. Shimomura, Rafael Seidi Oyamada, Marcos R. Vieira, and Daniel S. Kaster. 2021. A survey on graph-based methods for similarity searches in metric spaces. Information Systems 95 (2021), 101507.","journal-title":"Information Systems"},{"key":"e_1_3_1_123_2","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.cose.2014.12.003","article-title":"Intrusion alert prioritisation and attack detection using post-correlation analysis","volume":"50","author":"Shittu Riyanat","year":"2015","unstructured":"Riyanat Shittu, Alex Healing, Robert Ghanea-Hercock, Robin Bloomfield, and Muttukrishnan Rajarajan. 2015. Intrusion alert prioritisation and attack detection using post-correlation analysis. Computers & Security 50 (2015), 1\u201315.","journal-title":"Computers & Security"},{"key":"e_1_3_1_124_2","first-page":"1","volume-title":"2018 IEEE Symposium on Visualization for Cyber Security (VizSec) (2018)","author":"Sopan Awalin","year":"2018","unstructured":"Awalin Sopan, Matthew Berninger, Murali Mulakaluri, and Raj Katakam. 2018. Building a machine learning model for the SOC, by the input from the SOC, and analyzing it for the SOC. In 2018 IEEE Symposium on Visualization for Cyber Security (VizSec) (2018). IEEE, 1\u20138."},{"key":"e_1_3_1_125_2","doi-asserted-by":"crossref","first-page":"113577","DOI":"10.1016\/j.eswa.2020.113577","article-title":"A comparative evaluation of unsupervised deep architectures for intrusion detection in sequential data streams","volume":"159","author":"Sovilj Du\u0161an","year":"2020","unstructured":"Du\u0161an Sovilj, Paul Budnarain, Scott Sanner, Geoff Salmon, and Mohan Rao. 2020. A comparative evaluation of unsupervised deep architectures for intrusion detection in sequential data streams. Expert Systems with Applications 159 (2020), 113577.","journal-title":"Expert Systems with Applications"},{"key":"e_1_3_1_126_2","article-title":"A survey of using large language models for generating infrastructure as code","author":"Srivatsa Kalahasti Ganesh","year":"2024","unstructured":"Kalahasti Ganesh Srivatsa, Sabyasachi Mukhopadhyay, Ganesh Katrapati, and Manish Shrivastava. 2024. A survey of using large language models for generating infrastructure as code. arXiv preprint arXiv:2404.00227 (2024).","journal-title":"arXiv preprint arXiv:2404.00227"},{"key":"e_1_3_1_127_2","unstructured":"PCI Security Standards Council (PCI SSC). 2018. PCI DSS Quick Reference Guide. Retrieved July 8 2024 from https:\/\/listings.pcisecuritystandards.org\/documents\/PCI_DSS-QRG-v3_2_1.pdf"},{"key":"e_1_3_1_128_2","first-page":"58","volume-title":"Proceedings of the 2nd International Conference on Computing and Big Data","author":"Su Yuan-Hsiang","year":"2019","unstructured":"Yuan-Hsiang Su, Michael Cheng Yi Cho, and Hsiu-Chuan Huang. 2019. False alert buster: An adaptive approach for NIDS false alert filtering. In Proceedings of the 2nd International Conference on Computing and Big Data. 58\u201362."},{"key":"e_1_3_1_129_2","first-page":"347","volume-title":"11th Symposium on Usable Privacy and Security (SOUPS) (2015)","author":"Sundaramurthy Sathya Chandran","year":"2015","unstructured":"Sathya Chandran Sundaramurthy, Alexandru G. Bardas, Jacob Case, Xinming Ou, Michael Wesch, John McHugh, S. Raj Rajagopalan, and Lorrie Faith Cranor. 2015. A human capital model for mitigating security analyst burnout. In 11th Symposium on Usable Privacy and Security (SOUPS) (2015). 347\u2013359."},{"key":"e_1_3_1_130_2","article-title":"A2C: A modular multi-stage collaborative decision framework for Human-AI teams","author":"Tariq Shahroz","year":"2024","unstructured":"Shahroz Tariq, Mohan Baruwal Chhetri, Surya Nepal, and Cecile Paris. 2024. A2C: A modular multi-stage collaborative decision framework for Human-AI teams. arXiv preprint arXiv:2401.14432 (2024).","journal-title":"arXiv preprint arXiv:2401.14432"},{"key":"e_1_3_1_131_2","doi-asserted-by":"crossref","first-page":"1790","DOI":"10.1109\/FSKD.2017.8393038","volume-title":"2017 13th International Conference on Natural Computation, Fuzzy Systems and Knowledge Discovery (ICNC-FSKD) (2017)","author":"Teoh T. T.","year":"2017","unstructured":"T. T. Teoh, Yue Zhang, Y. Y. Nguwi, Yuval Elovici, and W. L. Ng. 2017. Analyst intuition inspired high velocity big data analysis using PCA ranked fuzzy k-means clustering with multi-layer perceptron (MLP) to obviate cyber security risk. In 2017 13th International Conference on Natural Computation, Fuzzy Systems and Knowledge Discovery (ICNC-FSKD) (2017). IEEE, 1790\u20131793."},{"key":"e_1_3_1_132_2","doi-asserted-by":"crossref","first-page":"11","DOI":"10.1145\/1599272.1599277","volume-title":"Proceedings of the ACM SIGKDD Workshop on CyberSecurity and Intelligence Informatics (CSI-KDD) (2009)","author":"Thonnard Olivier","year":"2009","unstructured":"Olivier Thonnard, Wim Mees, and Marc Dacier. 2009. Addressing the attack attribution problem using knowledge discovery and multi-criteria fuzzy decision-making. In Proceedings of the ACM SIGKDD Workshop on CyberSecurity and Intelligence Informatics (CSI-KDD) (2009). 11\u201321."},{"key":"e_1_3_1_133_2","first-page":"946","volume-title":"Proceedings of the AAAI Conference on Artificial Intelligence","volume":"34","author":"Tong Liang","year":"2020","unstructured":"Liang Tong, Aron Laszka, Chao Yan, Ning Zhang, and Yevgeniy Vorobeychik. 2020. Finding needles in a moving haystack: Prioritizing alerts with adversarial reinforcement learning. In Proceedings of the AAAI Conference on Artificial Intelligence, Vol. 34. 946\u2013953."},{"key":"e_1_3_1_134_2","doi-asserted-by":"crossref","first-page":"447","DOI":"10.1109\/APSEC57359.2022.00060","volume-title":"2022 29th Asia-Pacific Software Engineering Conference (APSEC) (2022)","author":"Tran Kien T.","year":"2022","unstructured":"Kien T. Tran and Hieu Dinh Vo. 2022. SCAR: Smart contract alarm ranking. In 2022 29th Asia-Pacific Software Engineering Conference (APSEC) (2022). IEEE, 447\u2013451."},{"key":"e_1_3_1_135_2","volume-title":"Outpacing Cyber Threats: Priorities for Cybersecurity at Nuclear Facilities","author":"Dine Alexandra Van","year":"2016","unstructured":"Alexandra Van Dine, Michael Assante, Page Stoutland, and Sam Nunn. 2016. Outpacing Cyber Threats: Priorities for Cybersecurity at Nuclear Facilities. Nuclear Threat Initiative, Washington, DC."},{"key":"e_1_3_1_136_2","first-page":"1","volume-title":"2021 International Conference on Software, Telecommunications and Computer Networks (SoftCOM) (2021)","author":"Vidovi\u0107 Kristijan","year":"2021","unstructured":"Kristijan Vidovi\u0107, Ivan Tomi\u010di\u0107, Karlo Slovenec, Miljenko Mikuc, and Ivona Brajdi\u0107. 2021. Ranking network devices for alarm prioritisation: Intrusion detection case study. In 2021 International Conference on Software, Telecommunications and Computer Networks (SoftCOM) (2021). IEEE, 1\u20135."},{"issue":"1","key":"e_1_3_1_137_2","doi-asserted-by":"crossref","first-page":"45","DOI":"10.1057\/ejis.2011.51","article-title":"Using grounded theory as a method for rigorously reviewing literature","volume":"22","author":"Wolfswinkel Joost F.","year":"2013","unstructured":"Joost F. Wolfswinkel, Elfi Furtmueller, and Celeste P. M. Wilderom. 2013. Using grounded theory as a method for rigorously reviewing literature. European Journal of Information Systems 22, 1 (2013), 45\u201355.","journal-title":"European Journal of Information Systems"},{"key":"e_1_3_1_138_2","first-page":"153","volume-title":"7th IEEE International Conference on Software Engineering and Service Science (ICSESS) (2016)","author":"Wu Xiaoqian","year":"2016","unstructured":"Xiaoqian Wu, Yongjun Shen, Guidong Zhang, and Hua Zhi. 2016. Information security risk assessment based on DS evidence theory and improved TOPSIS. In 7th IEEE International Conference on Software Engineering and Service Science (ICSESS) (2016). IEEE, 153\u2013156."},{"key":"e_1_3_1_139_2","first-page":"1304","volume-title":"IEEE 34th International Conference on Data Engineering (ICDE) (2018)","author":"Yan Chao","year":"2018","unstructured":"Chao Yan, Bo Li, Yevgeniy Vorobeychik, Aron Laszka, Daniel Fabbri, and Bradley Malin. 2018. Get your workload in order: Theoretic prioritization of database auditing. In IEEE 34th International Conference on Data Engineering (ICDE) (2018). IEEE, 1304\u20131307."},{"issue":"3","key":"e_1_3_1_140_2","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3323924","article-title":"Database audit workload prioritization via game theory","volume":"22","author":"Yan Chao","year":"2019","unstructured":"Chao Yan, Bo Li, Yevgeniy Vorobeychik, Aron Laszka, Daniel Fabbri, and Bradley Malin. 2019. Database audit workload prioritization via game theory. ACM Transactions on Privacy and Security (TOPS) 22, 3 (2019), 1\u201321.","journal-title":"ACM Transactions on Privacy and Security (TOPS)"},{"issue":"2","key":"e_1_3_1_141_2","doi-asserted-by":"crossref","first-page":"1746","DOI":"10.1109\/TNSM.2021.3133811","article-title":"LICALITY\u2014Likelihood and criticality: Vulnerability risk prioritization through logical reasoning and deep learning","volume":"19","author":"Zeng Zhen","year":"2022","unstructured":"Zhen Zeng, Zhun Yang, Dijiang Huang, and Chun-Jen Chung. 2022. LICALITY\u2014Likelihood and criticality: Vulnerability risk prioritization through logical reasoning and deep learning. IEEE Transactions on Network and Service Management 19, 2 (2022), 1746\u20131760.","journal-title":"IEEE Transactions on Network and Service Management"},{"key":"e_1_3_1_142_2","first-page":"1214","volume-title":"4th International Conference on Intelligent Computation Technology and Automation (ICICTA) (2011)","volume":"2","author":"Zhang Deyang","year":"2011","unstructured":"Deyang Zhang and Dedong Zhang. 2011. The analysis of event correlation in security operations center. In 4th International Conference on Intelligent Computation Technology and Automation (ICICTA) (2011), Vol. 2. IEEE, 1214\u20131216."},{"key":"e_1_3_1_143_2","first-page":"341","volume-title":"International Conference on Intelligent Information Hiding and Multimedia Signal Processing (IIH-MSP) (2015)","author":"Zheng Yiling","year":"2015","unstructured":"Yiling Zheng and Song Zheng. 2015. Cyber security risk assessment for industrial automation platform. In International Conference on Intelligent Information Hiding and Multimedia Signal Processing (IIH-MSP) (2015). IEEE, 341\u2013344."},{"key":"e_1_3_1_144_2","first-page":"357","volume-title":"IEEE 2nd International Conference on Big Data Security on Cloud (BigDataSecurity), IEEE International Conference on High Performance and Smart Computing (HPSC), and IEEE International Conference on Intelligent Data and Security (IDS) (2016)","author":"Zhong Chen","year":"2016","unstructured":"Chen Zhong, John Yen, Peng Liu, and Robert F. Erbacher. 2016. Automate cybersecurity data triage by leveraging human analysts\u2019 cognitive process. In IEEE 2nd International Conference on Big Data Security on Cloud (BigDataSecurity), IEEE International Conference on High Performance and Smart Computing (HPSC), and IEEE International Conference on Intelligent Data and Security (IDS) (2016). IEEE, 357\u2013363."},{"issue":"1","key":"e_1_3_1_145_2","doi-asserted-by":"crossref","first-page":"603","DOI":"10.1109\/JSYST.2018.2828832","article-title":"Learning from experts\u2019 experience: Toward automated cyber security data triage","volume":"13","author":"Zhong Chen","year":"2019","unstructured":"Chen Zhong, John Yen, Peng Liu, and Robert F. Erbacher. 2019. Learning from experts\u2019 experience: Toward automated cyber security data triage. IEEE Systems Journal 13, 1 (2019), 603\u2013614.","journal-title":"IEEE Systems Journal"},{"key":"e_1_3_1_146_2","doi-asserted-by":"crossref","first-page":"2842","DOI":"10.1145\/3366423.3380047","volume-title":"Proceedings of The Web Conference (WWW) (2020)","author":"Zhou Jianghong","year":"2020","unstructured":"Jianghong Zhou and Eugene Agichtein. 2020. Rlirank: Learning to rank with reinforcement learning for dynamic search. In Proceedings of The Web Conference (WWW) (2020). 2842\u20132848."},{"key":"e_1_3_1_147_2","article-title":"Principled reinforcement learning with human feedback from pairwise or K-wise comparisons","author":"Zhu Banghua","year":"2023","unstructured":"Banghua Zhu, Jiantao Jiao, and Michael I. Jordan. 2023. Principled reinforcement learning with human feedback from pairwise or K-wise comparisons. arXiv preprint arXiv:2301.11270 (2023).","journal-title":"arXiv preprint arXiv:2301.11270"},{"key":"e_1_3_1_148_2","unstructured":"Neatsun Ziv Lior Arzi Eyal Paz David Cross Hiroki Suezawa Naor Penso Shai Sivan Dineshwar Sahni Maxim Kovalsky Chenxi Wang Roy Feintuch Hadas Harel Lavie Ronen Atias and Gadi Evron. 2024. A New Open Framework for Releasing Secure Products. Retrieved July 14 2024 from https:\/\/pbom.dev\/#overview"},{"key":"e_1_3_1_149_2","doi-asserted-by":"crossref","first-page":"59","DOI":"10.1145\/2046684.2046694","volume-title":"Proceedings of the 4th ACM Workshop on Security and Artificial Intelligence (AISec) (2011)","author":"Zomlot Loai","year":"2011","unstructured":"Loai Zomlot, Sathya Chandran Sundaramurthy, Kui Luo, Xinming Ou, and S. Raj Rajagopalan. 2011. Prioritizing intrusion analysis using Dempster-Shafer theory. In Proceedings of the 4th ACM Workshop on Security and Artificial Intelligence (AISec) (2011). 59\u201370."}],"container-title":["ACM Computing Surveys"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3695462","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3695462","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T00:58:11Z","timestamp":1750294691000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3695462"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,11,7]]},"references-count":148,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2025,2,28]]}},"alternative-id":["10.1145\/3695462"],"URL":"https:\/\/doi.org\/10.1145\/3695462","relation":{},"ISSN":["0360-0300","1557-7341"],"issn-type":[{"value":"0360-0300","type":"print"},{"value":"1557-7341","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,11,7]]},"assertion":[{"value":"2023-08-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-09-02","order":2,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-11-07","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}