{"id":"https://openalex.org/W3014985682","doi":"https://doi.org/10.1007/s12530-020-09335-4","title":"Handling of advanced persistent threats and complex incidents in healthcare, transportation and energy ICT infrastructures","display_name":"Handling of advanced persistent threats and complex incidents in healthcare, transportation and energy ICT infrastructures","publication_year":2020,"publication_date":"2020-04-04","ids":{"openalex":"https://openalex.org/W3014985682","doi":"https://doi.org/10.1007/s12530-020-09335-4","mag":"3014985682"},"language":"en","primary_location":{"id":"doi:10.1007/s12530-020-09335-4","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s12530-020-09335-4","pdf_url":"https://link.springer.com/content/pdf/10.1007/s12530-020-09335-4.pdf","source":{"id":"https://openalex.org/S202254422","display_name":"Evolving Systems","issn_l":"1868-6478","issn":["1868-6478","1868-6486"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Evolving Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s12530-020-09335-4.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5011195262","display_name":"Spyridon Papastergiou","orcid":null},"institutions":[{"id":"https://openalex.org/I154757721","display_name":"University of Piraeus","ror":"https://ror.org/02qs84g94","country_code":"GR","type":"education","lineage":["https://openalex.org/I154757721"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Spyridon Papastergiou","raw_affiliation_strings":["Department of Informatics, University of Piraeus, 80 Karaoli and Dimitriou Str., 18534, Piraeus, Greece"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Informatics, University of Piraeus, 80 Karaoli and Dimitriou Str., 18534, Piraeus, Greece","institution_ids":["https://openalex.org/I154757721"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5014613493","display_name":"Haralambos Mouratidis","orcid":"https://orcid.org/0000-0002-2599-0712"},"institutions":[{"id":"https://openalex.org/I161593684","display_name":"Stockholm University","ror":"https://ror.org/05f0yaq80","country_code":"SE","type":"education","lineage":["https://openalex.org/I161593684"]},{"id":"https://openalex.org/I4210160701","display_name":"Kista Photonics Research Center","ror":"https://ror.org/05j59av97","country_code":"SE","type":"facility","lineage":["https://openalex.org/I4210160701"]},{"id":"https://openalex.org/I71637028","display_name":"University of Brighton","ror":"https://ror.org/04kp2b655","country_code":"GB","type":"education","lineage":["https://openalex.org/I71637028"]}],"countries":["GB","SE"],"is_corresponding":true,"raw_author_name":"Haralambos Mouratidis","raw_affiliation_strings":["Centre for Secure, Intelligent and Usable Systems, University of Brighton, Brighton, BN2 4GJ, UK","Department of Computer and Systems Sciences, Stockholm University, 164 07, Kista, Sweden"],"raw_orcid":"https://orcid.org/0000-0002-2599-0712","affiliations":[{"raw_affiliation_string":"Centre for Secure, Intelligent and Usable Systems, University of Brighton, Brighton, BN2 4GJ, UK","institution_ids":["https://openalex.org/I71637028"]},{"raw_affiliation_string":"Department of Computer and Systems Sciences, Stockholm University, 164 07, Kista, Sweden","institution_ids":["https://openalex.org/I4210160701","https://openalex.org/I161593684"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5109403870","display_name":"Eleni-Maria Kalogeraki","orcid":null},"institutions":[{"id":"https://openalex.org/I154757721","display_name":"University of Piraeus","ror":"https://ror.org/02qs84g94","country_code":"GR","type":"education","lineage":["https://openalex.org/I154757721"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Eleni-Maria Kalogeraki","raw_affiliation_strings":["Department of Informatics, University of Piraeus, 80 Karaoli and Dimitriou Str., 18534, Piraeus, Greece"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Informatics, University of Piraeus, 80 Karaoli and Dimitriou Str., 18534, Piraeus, Greece","institution_ids":["https://openalex.org/I154757721"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5014613493"],"corresponding_institution_ids":["https://openalex.org/I161593684","https://openalex.org/I4210160701","https://openalex.org/I71637028"],"apc_list":{"value":2590,"currency":"EUR","value_usd":3190},"apc_paid":{"value":2590,"currency":"EUR","value_usd":3190},"fwci":5.2908,"has_fulltext":true,"cited_by_count":25,"citation_normalized_percentile":{"value":0.95894531,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":"12","issue":"1","first_page":"91","last_page":"108"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7290692329406738},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6815730333328247},{"id":"https://openalex.org/keywords/novelty","display_name":"Novelty","score":0.6267577409744263},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.5845326781272888},{"id":"https://openalex.org/keywords/warning-system","display_name":"Warning system","score":0.5523658990859985},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.4905807077884674},{"id":"https://openalex.org/keywords/information-and-communications-technology","display_name":"Information and Communications Technology","score":0.44798851013183594},{"id":"https://openalex.org/keywords/incident-response","display_name":"Incident response","score":0.4328461289405823},{"id":"https://openalex.org/keywords/critical-infrastructure","display_name":"Critical infrastructure","score":0.42189812660217285},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.1920970380306244},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.10572981834411621}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7290692329406738},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6815730333328247},{"id":"https://openalex.org/C2778738651","wikidata":"https://www.wikidata.org/wiki/Q16546687","display_name":"Novelty","level":2,"score":0.6267577409744263},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.5845326781272888},{"id":"https://openalex.org/C29825287","wikidata":"https://www.wikidata.org/wiki/Q1427940","display_name":"Warning system","level":2,"score":0.5523658990859985},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.4905807077884674},{"id":"https://openalex.org/C67363961","wikidata":"https://www.wikidata.org/wiki/Q5268834","display_name":"Information and Communications Technology","level":2,"score":0.44798851013183594},{"id":"https://openalex.org/C2985105721","wikidata":"https://www.wikidata.org/wiki/Q13479512","display_name":"Incident response","level":2,"score":0.4328461289405823},{"id":"https://openalex.org/C29852176","wikidata":"https://www.wikidata.org/wiki/Q373338","display_name":"Critical infrastructure","level":2,"score":0.42189812660217285},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.1920970380306244},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.10572981834411621},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C27206212","wikidata":"https://www.wikidata.org/wiki/Q34178","display_name":"Theology","level":1,"score":0.0}],"mesh":[],"locations_count":6,"locations":[{"id":"doi:10.1007/s12530-020-09335-4","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s12530-020-09335-4","pdf_url":"https://link.springer.com/content/pdf/10.1007/s12530-020-09335-4.pdf","source":{"id":"https://openalex.org/S202254422","display_name":"Evolving Systems","issn_l":"1868-6478","issn":["1868-6478","1868-6486"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Evolving Systems","raw_type":"journal-article"},{"id":"pmh:oai:repository.essex.ac.uk:32279","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306401236","display_name":"Open Access at Essex (University of Essex)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I110002522","host_organization_name":"University of Essex","host_organization_lineage":["https://openalex.org/I110002522"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":"Article"},{"id":"pmh:oai:DiVA.org:su-181331","is_oa":true,"landing_page_url":"http://urn.kb.se/resolve?urn=urn:nbn:se:su:diva-181331","pdf_url":null,"source":{"id":"https://openalex.org/S4306401559","display_name":"KTH Publication Database DiVA (KTH Royal Institute of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Article in journal"},{"id":"pmh:oai:pure.atira.dk:openaire/31d0695f-a8ff-45a8-93a8-c50f3b164997","is_oa":true,"landing_page_url":"https://research.brighton.ac.uk/en/publications/31d0695f-a8ff-45a8-93a8-c50f3b164997","pdf_url":null,"source":{"id":"https://openalex.org/S4306401758","display_name":"University of Brighton Repository (University of Brighton)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I71637028","host_organization_name":"University of Brighton","host_organization_lineage":["https://openalex.org/I71637028"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Papastergiou, S, Mouratidis, H & Kalogeraki, E M 2020, 'Handling of advanced persistent threats and complex incidents in healthcare, transportation and energy ICT infrastructures', Evolving Systems. https://doi.org/10.1007/s12530-020-09335-4","raw_type":"article"},{"id":"pmh:oai:pure.atira.dk:publications/31d0695f-a8ff-45a8-93a8-c50f3b164997","is_oa":true,"landing_page_url":"http://www.scopus.com/inward/record.url?scp=85083366513&partnerID=8YFLogxK","pdf_url":null,"source":{"id":"https://openalex.org/S4306401758","display_name":"University of Brighton Repository (University of Brighton)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I71637028","host_organization_name":"University of Brighton","host_organization_lineage":["https://openalex.org/I71637028"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Papastergiou, S, Mouratidis, H & Kalogeraki, E M 2020, 'Handling of advanced persistent threats and complex incidents in healthcare, transportation and energy ICT infrastructures', Evolving Systems. https://doi.org/10.1007/s12530-020-09335-4","raw_type":"article"},{"id":"pmh:oai:zenodo.org:4524818","is_oa":true,"landing_page_url":"https://zenodo.org/record/4524818","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Evolving Systems","raw_type":"info:eu-repo/semantics/article"}],"best_oa_location":{"id":"doi:10.1007/s12530-020-09335-4","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s12530-020-09335-4","pdf_url":"https://link.springer.com/content/pdf/10.1007/s12530-020-09335-4.pdf","source":{"id":"https://openalex.org/S202254422","display_name":"Evolving Systems","issn_l":"1868-6478","issn":["1868-6478","1868-6486"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Evolving Systems","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.6100000143051147,"id":"https://metadata.un.org/sdg/9"}],"awards":[{"id":"https://openalex.org/G2374810032","display_name":null,"funder_award_id":"833683","funder_id":"https://openalex.org/F4320332999","funder_display_name":"Horizon 2020 Framework Programme"},{"id":"https://openalex.org/G6384328479","display_name":null,"funder_award_id":"830929","funder_id":"https://openalex.org/F4320332999","funder_display_name":"Horizon 2020 Framework Programme"}],"funders":[{"id":"https://openalex.org/F4320332999","display_name":"Horizon 2020 Framework Programme","ror":"https://ror.org/00k4n6c32"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3014985682.pdf","grobid_xml":"https://content.openalex.org/works/W3014985682.grobid-xml"},"referenced_works_count":43,"referenced_works":["https://openalex.org/W5024876","https://openalex.org/W166342712","https://openalex.org/W575487263","https://openalex.org/W577537521","https://openalex.org/W1517179628","https://openalex.org/W1557912208","https://openalex.org/W1561876182","https://openalex.org/W1566892458","https://openalex.org/W1637837609","https://openalex.org/W1704557890","https://openalex.org/W1988453576","https://openalex.org/W2014211033","https://openalex.org/W2015410758","https://openalex.org/W2018513178","https://openalex.org/W2025598241","https://openalex.org/W2026708637","https://openalex.org/W2027435913","https://openalex.org/W2031999883","https://openalex.org/W2069370369","https://openalex.org/W2079602848","https://openalex.org/W2083658929","https://openalex.org/W2090913920","https://openalex.org/W2092642267","https://openalex.org/W2100599034","https://openalex.org/W2104483923","https://openalex.org/W2108389203","https://openalex.org/W2115322878","https://openalex.org/W2121805588","https://openalex.org/W2143780970","https://openalex.org/W2159447717","https://openalex.org/W2189037114","https://openalex.org/W2406934947","https://openalex.org/W2497808668","https://openalex.org/W2512849712","https://openalex.org/W2560911655","https://openalex.org/W2563446422","https://openalex.org/W2587266735","https://openalex.org/W2615173403","https://openalex.org/W2617200927","https://openalex.org/W2875475762","https://openalex.org/W3138490561","https://openalex.org/W4246162059","https://openalex.org/W4256531287"],"related_works":["https://openalex.org/W2381242807","https://openalex.org/W3126131230","https://openalex.org/W2347541121","https://openalex.org/W2080951048","https://openalex.org/W4288804799","https://openalex.org/W3032237421","https://openalex.org/W2390346111","https://openalex.org/W3011883280","https://openalex.org/W2369082698","https://openalex.org/W3122004234"],"abstract_inverted_index":{"Abstract":[0],"In":[1],"recent":[2],"years,":[3],"the":[4,22,28,109,117,121,126,157],"use":[5],"of":[6,24,30,100,108,116,128,139,151,159,162],"information":[7],"technologies":[8],"in":[9],"Critical":[10,143],"Infrastructures":[11],"is":[12,39,120,154],"gradually":[13],"increasing.":[14],"Although":[15],"this":[16],"brings":[17],"benefits,":[18],"it":[19,90,124],"also":[20],"increases":[21],"possibility":[23],"security":[25,70,84],"attacks.":[26],"Despite":[27],"availability":[29],"various":[31],"advanced":[32],"incident":[33,130],"handling":[34,131],"techniques":[35],"and":[36,45,50,62,65,72,81,86,88,89,148],"tools,":[37],"there":[38],"still":[40],"no":[41],"easy,":[42],"structured,":[43],"standardized":[44],"trusted":[46],"way":[47],"to":[48,74,83,93,136],"manage":[49],"forecast":[51],"interrelated":[52],"cybersecurity":[53],"incidents.":[54,97],"This":[55],"paper":[56],"introduces":[57],"CyberSANE,":[58],"a":[59,106,160],"novel":[60],"dynamic":[61],"collaborative,":[63],"warning":[64],"response":[66],"system,":[67],"which":[68],"supports":[69],"officers":[71],"operators":[73],"recognize,":[75],"identify,":[76],"dynamically":[77],"analyse,":[78],"forecast,":[79],"treat":[80],"respond":[82],"threats":[85],"risks":[87],"guides":[91],"them":[92],"handle":[94],"effectively":[95],"cyber":[96],"The":[98,113,146],"components":[99],"CyberSANE":[101,110,118,153],"are":[102],"described":[103,155],"along":[104],"with":[105,133,156],"description":[107],"data":[111],"flow.":[112],"main":[114],"novelty":[115],"system":[119],"fact":[122],"that":[123],"enables":[125],"combination":[127],"active":[129],"approaches":[132,135],"reactive":[134],"support":[137],"incidents":[138],"compound,":[140],"highly":[141],"dependent":[142],"Information":[144],"Infrastructures.":[145],"benefits":[147],"added":[149],"value":[150],"using":[152],"aid":[158],"set":[161],"cyber-attack":[163],"scenarios.":[164]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}