乐胖代购免代理版

{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,13]],"date-time":"2024-09-13T00:51:11Z","timestamp":1726188671163},"publisher-location":"Singapore","reference-count":33,"publisher":"Springer Nature Singapore","isbn-type":[{"type":"print","value":"9789819902712"},{"type":"electronic","value":"9789819902729"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-981-99-0272-9_19","type":"book-chapter","created":{"date-parts":[[2023,2,15]],"date-time":"2023-02-15T09:16:09Z","timestamp":1676452569000},"page":"279-291","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Threat Modeling in\u00a0Cloud Computing - A Literature Review"],"prefix":"10.1007","author":[{"ORCID":"http:\/\/orcid.org\/0000-0001-8280-3285","authenticated-orcid":false,"given":"Mohammed","family":"Kharma","sequence":"first","affiliation":[]},{"ORCID":"http:\/\/orcid.org\/0000-0003-0240-9857","authenticated-orcid":false,"given":"Adel","family":"Taweel","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2023,2,16]]},"reference":[{"key":"19_CR1","unstructured":"Cybersecurity in 2022 - a fresh look at some very alarming stats. https:\/\/www.forbes.com\/sites\/chuckbrooks\/2022\/01\/21\/cybersecurity-in-2022-a-fresh-look-at-some-very-alarming-stats\/?sh=3b5eccd46b61, (Accessed 01 December 2022)"},{"key":"19_CR2","doi-asserted-by":"publisher","unstructured":"Ananthapadmanabhan, A., Achuthan, K.: Threat modeling and threat intelligence system for cloud using splunk. In: Varol, A., Karabatak, M., Varol, C. (eds.) 10th International Symposium on Digital Forensics and Security, ISDFS 2022, Istanbul, Turkey, 6\u20137 June 2022, pp. 1\u20136. IEEE (2022). https:\/\/doi.org\/10.1109\/ISDFS55398.2022.9800787","DOI":"10.1109\/ISDFS55398.2022.9800787"},{"issue":"2","key":"19_CR3","doi-asserted-by":"publisher","first-page":"108","DOI":"10.34306\/itsdi.v1i2.103","volume":"1","author":"T Alam","year":"2020","unstructured":"Alam, T.: Cloud computing and its role in the information technology. IAIC Trans. Sustain. Digital Innov. (ITSDI) 1(2), 108\u2013115 (2020)","journal-title":"IAIC Trans. Sustain. Digital Innov. (ITSDI)"},{"key":"19_CR4","doi-asserted-by":"publisher","unstructured":"Alhebaishi, N., Wang, L., Singhal, A.: Threat modeling for cloud infrastructures. EAI Endorsed Trans. Security Safety 5(17), e5 (2019). https:\/\/doi.org\/10.4108\/eai.10-1-2019.156246","DOI":"10.4108\/eai.10-1-2019.156246"},{"issue":"5","key":"19_CR5","first-page":"36","volume":"9","author":"B Andrei","year":"2021","unstructured":"Andrei, B.: Threat modeling of cloud systems with ontological security pattern catalog. Int. J. Open Inf. Technol. 9(5), 36\u201341 (2021)","journal-title":"Int. J. Open Inf. Technol."},{"key":"19_CR6","doi-asserted-by":"publisher","unstructured":"Andrei-Cristian, I., Gasiba, T.E., Zhao, T., Lechner, U., Pinto-Albuquerque, M.: A large-scale study on the security vulnerabilities of cloud deployments. In: Wang, G., Choo, K.R., Ko, R.K.L., Xu, Y., Crispo, B. (eds.) UbiSec 2021. CCIS, vol. 1557, pp. 171\u2013188. Springer (2022). https:\/\/doi.org\/10.1007\/978-981-19-0468-4_13","DOI":"10.1007\/978-981-19-0468-4_13"},{"key":"19_CR7","doi-asserted-by":"publisher","unstructured":"Bernsmed, K., Cruzes, D.S., Jaatun, M.G., Iovan, M.: Adopting threat modelling in agile software development projects. J. Syst. Softw. 183, 111090 (2022). https:\/\/doi.org\/10.1016\/j.jss.2021.111090","DOI":"10.1016\/j.jss.2021.111090"},{"key":"19_CR8","unstructured":"Brazhuk, A.: Security patterns based approach to automatically select mitigations in ontology-driven threat modelling (2020)"},{"key":"19_CR9","doi-asserted-by":"crossref","unstructured":"Buyya, R., Broberg, J., Goscinski, A.M.: Cloud computing: Principles and paradigms. John Wiley & Sons (2010)","DOI":"10.1002\/9780470940105"},{"key":"19_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"767","DOI":"10.1007\/978-3-030-81685-8_36","volume-title":"Computer Aided Verification","author":"C Cauli","year":"2021","unstructured":"Cauli, C., Li, M., Piterman, N., Tkachuk, O.: Pre-deployment security assessment for cloud services through semantic reasoning. In: Silva, A., Leino, K.R.M. (eds.) CAV 2021. LNCS, vol. 12759, pp. 767\u2013780. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-81685-8_36"},{"key":"19_CR11","doi-asserted-by":"publisher","unstructured":"Chandran, S., Hrudya, P., Poornachandran, P.: An efficient classification model for detecting advanced persistent threat. In: Mauri, J.L., et al. (eds.) 2015 International Conference on Advances in Computing, Communications and Informatics, ICACCI 2015, Kochi, India, 10\u201313 August 2015, pp. 2001\u20132009. IEEE (2015). https:\/\/doi.org\/10.1109\/ICACCI.2015.7275911","DOI":"10.1109\/ICACCI.2015.7275911"},{"key":"19_CR12","unstructured":"Farhat, V., McCarthy, B., Raysman, R., Canale, J.: Cyber attacks: prevention and proactive responses. In: Practical Law. pp. 1\u201312 (2011)"},{"key":"19_CR13","doi-asserted-by":"publisher","unstructured":"Gupta, R., Tanwar, S., Tyagi, S., Kumar, N.: Machine learning models for secure data analytics: A taxonomy and threat model. Comput. Commun. 153, 406\u2013440 (2020). https:\/\/doi.org\/10.1016\/j.comcom.2020.02.008","DOI":"10.1016\/j.comcom.2020.02.008"},{"key":"19_CR14","doi-asserted-by":"publisher","unstructured":"Hacks, S., Katsikeas, S., Ling, E.R., Xiong, W., Pfeiffer, J., Wortmann, A.: Towards a systematic method for developing meta attack language instances. In: Augusto, A., Gill, A., Bork, D., Nurcan, S., Reinhartz-Berger, I., Schmidt, R. (eds.) Enterprise, Business-Process and Information Systems Modeling - 23rd International Conference, BPMDS 2022 and 27th International Conference, EMMSAD 2022, Held at CAiSE 2022, Leuven, Belgium, 6\u20137 June 2022, Proceedings. LNBIP, vol. 450, pp. 139\u2013154. Springer (2022). https:\/\/doi.org\/10.1007\/978-3-031-07475-2_10","DOI":"10.1007\/978-3-031-07475-2_10"},{"issue":"4","key":"19_CR15","doi-asserted-by":"publisher","first-page":"356","DOI":"10.7763\/IJFCC.2012.V1.95","volume":"1","author":"S Kumar","year":"2012","unstructured":"Kumar, S., Goudar, R.: Cloud computing-research issues, challenges, architecture, platforms and applications: a survey. Int. J. Future Comput. Commun. 1(4), 356 (2012)","journal-title":"Int. J. Future Comput. Commun."},{"key":"19_CR16","doi-asserted-by":"publisher","unstructured":"Manzoor, S., Zhang, H., Suri, N.: Threat modeling and analysis for the cloud ecosystem. In: Chandra, A., Li, J., Cai, Y., Guo, T. (eds.) 2018 IEEE International Conference on Cloud Engineering, IC2E 2018, Orlando, FL, USA, 17\u201320 April 2018, pp. 278\u2013281. IEEE Computer Society (2018). https:\/\/doi.org\/10.1109\/IC2E.2018.00056","DOI":"10.1109\/IC2E.2018.00056"},{"key":"19_CR17","doi-asserted-by":"crossref","unstructured":"Mell, P., Grance, T., et al.: The nist definition of cloud computing (2011)","DOI":"10.6028\/NIST.SP.800-145"},{"key":"19_CR18","doi-asserted-by":"publisher","first-page":"163","DOI":"10.1016\/j.procs.2020.03.194","volume":"167","author":"GS Pandi","year":"2020","unstructured":"Pandi, G.S., Shah, S., Wandra, K.: Exploration of vulnerabilities, threats and forensic issues and its impact on the distributed environment of cloud and its mitigation. Proc. Comput. Sci. 167, 163\u2013173 (2020)","journal-title":"Proc. Comput. Sci."},{"key":"19_CR19","doi-asserted-by":"crossref","unstructured":"Saatkamp, K., Krieger, C., Leymann, F., Sudendorf, J., Wurster, M.: Application threat modeling and automated vnf selection for mitigation using tosca. In: 2019 International Conference on Networked Systems (NetSys), pp. 1\u20136. IEEE (2019)","DOI":"10.1109\/NetSys.2019.8854524"},{"key":"19_CR20","unstructured":"Shevchenko, N., Chick, T.A., O\u2019Riordan, P., Scanlon, T.P., Woody, C.: Threat modeling: a summary of available methods. Tech. rep., Carnegie Mellon University Software Engineering Institute Pittsburgh United (2018)"},{"key":"19_CR21","unstructured":"Shostack, A.: Threat modeling: Designing for security. John Wiley & Sons (2014)"},{"key":"19_CR22","doi-asserted-by":"publisher","unstructured":"Soares, L.F.B., Fernandes, D.A.B., Freire, M.M., In\u00e1cio, P.R.M.: Secure user authentication in cloud computing management interfaces. In: IEEE 32nd International Performance Computing and Communications Conference, IPCCC 2013, San Diego, CA, USA, 6\u20138 December 2013. pp. 1\u20132. IEEE Computer Society (2013). https:\/\/doi.org\/10.1109\/PCCC.2013.6742763","DOI":"10.1109\/PCCC.2013.6742763"},{"issue":"1","key":"19_CR23","doi-asserted-by":"publisher","DOI":"10.1016\/j.heliyon.2021.e05969","volume":"7","author":"M Tatam","year":"2021","unstructured":"Tatam, M., Shanmugam, B., Azam, S., Kannoorpatti, K.: A review of threat modelling approaches for apt-style attacks. Heliyon 7(1), e05969 (2021)","journal-title":"Heliyon"},{"key":"19_CR24","doi-asserted-by":"publisher","unstructured":"Torkura, K.A., Sukmana, M.I.H., Meinig, M., Cheng, F., Meinel, C., Graupner, H.: A threat modeling approach for cloud storage brokerage and file sharing systems. In: 2018 IEEE\/IFIP Network Operations and Management Symposium, NOMS 2018, Taipei, Taiwan, 23\u201327 April 2018. pp. 1\u20135. IEEE (2018). https:\/\/doi.org\/10.1109\/NOMS.2018.8406188","DOI":"10.1109\/NOMS.2018.8406188"},{"key":"19_CR25","doi-asserted-by":"publisher","unstructured":"Torquato, M., Vieira, M.: Moving target defense in cloud computing: A systematic mapping study. Comput. Secur. 92, 101742 (2020). https:\/\/doi.org\/10.1016\/j.cose.2020.101742","DOI":"10.1016\/j.cose.2020.101742"},{"key":"19_CR26","doi-asserted-by":"crossref","unstructured":"UcedaVelez, T., Morana, M.M.: Risk Centric Threat Modeling: process for attack simulation and threat analysis. John Wiley & Sons (2015)","DOI":"10.1002\/9781118988374"},{"key":"19_CR27","doi-asserted-by":"publisher","unstructured":"Uzunov, A.V., Fern\u00e1ndez, E.B.: An extensible pattern-based library and taxonomy of security threats for distributed systems. Comput. Stand. Interfaces 36(4), 734\u2013747 (2014). https:\/\/doi.org\/10.1016\/j.csi.2013.12.008","DOI":"10.1016\/j.csi.2013.12.008"},{"issue":"1","key":"19_CR28","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1186\/s42400-020-00060-8","volume":"3","author":"M V\u00e4lja","year":"2020","unstructured":"V\u00e4lja, M., Heiding, F., Franke, U., Lagerstr\u00f6m, R.: Automating threat modeling using an ontology framework. Cybersecurity 3(1), 1\u201320 (2020). https:\/\/doi.org\/10.1186\/s42400-020-00060-8","journal-title":"Cybersecurity"},{"key":"19_CR29","unstructured":"Xiong, W., Hacks, S., Lagerstr\u00f6m, R.: A method for quality assessment of threat modeling languages: The case of enterpriselang. In: Barn, B., Sandkuhl, K., Asensio, E.S., Stirna, J. (eds.) Proceedings of the Forum at Practice of Enterprise Modeling 2021 (PoEM-Forum 2021) (PoEM 2021), Riga, Latvia, 24\u201326 November 2021. CEUR Workshop Proceedings, vol. 3045, pp. 49\u201358. CEUR-WS.org (2021), http:\/\/ceur-ws.org\/Vol-3045\/paper06.pdf"},{"key":"19_CR30","doi-asserted-by":"publisher","unstructured":"Xiong, W., Lagerstr\u00f6m, R.: Threat modeling - A systematic literature review. Comput. Secur. 84, 53\u201369 (2019). https:\/\/doi.org\/10.1016\/j.cose.2019.03.010","DOI":"10.1016\/j.cose.2019.03.010"},{"key":"19_CR31","doi-asserted-by":"crossref","unstructured":"Yeng, P.K., Wulthusen, S.D., Bian, Y.: Comparative analysis of threat modeling methods for cloud computing towards healthcare security practice. Int. J. Adv. Comput. Sci. Appli. 11(11) (2020)","DOI":"10.14569\/IJACSA.2020.0111194"},{"key":"19_CR32","doi-asserted-by":"crossref","unstructured":"Youseff, L., Butrico, M., Da Silva, D.: Toward a unified ontology of cloud computing. In: 2008 Grid Computing Environments Workshop, pp. 1\u201310. IEEE (2008)","DOI":"10.1109\/GCE.2008.4738443"},{"key":"19_CR33","doi-asserted-by":"publisher","unstructured":"Yskout, K., Heyman, T., Landuyt, D.V., Sion, L., Wuyts, K., Joosen, W.: Threat modeling: from infancy to maturity. In: Rothermel, G., Bae, D. (eds.) ICSE-NIER 2020: 42nd International Conference on Software Engineering, New Ideas and Emerging Results, Seoul, South Korea, 27 June - 19 July, 2020. pp. 9\u201312. ACM (2020). https:\/\/doi.org\/10.1145\/3377816.3381741, https:\/\/doi.org\/10.1145\/3377816.3381741","DOI":"10.1145\/3377816.3381741 10.1145\/3377816.3381741"}],"container-title":["Communications in Computer and Information Science","Ubiquitous Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-99-0272-9_19","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,6,13]],"date-time":"2023-06-13T13:04:39Z","timestamp":1686661479000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-99-0272-9_19"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9789819902712","9789819902729"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-981-99-0272-9_19","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"16 February 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"UbiSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Ubiquitous Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Zhangjiajie","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2022","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28 December 2022","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31 December 2022","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ubisec2022","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/ubisecurity.org\/2022\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"98","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"34","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"35% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}