{"id":"https://openalex.org/W4327767802","doi":"https://doi.org/10.1109/ccnc51644.2023.10060371","title":"Towards Incorporating a Possibility of Zero-day Attacks Into Security Risk Metrics: Work in Progress","display_name":"Towards Incorporating a Possibility of Zero-day Attacks Into Security Risk Metrics: Work in Progress","publication_year":2023,"publication_date":"2023-01-08","ids":{"openalex":"https://openalex.org/W4327767802","doi":"https://doi.org/10.1109/ccnc51644.2023.10060371"},"language":"en","primary_location":{"id":"doi:10.1109/ccnc51644.2023.10060371","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/ccnc51644.2023.10060371","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE 20th Consumer Communications &amp; Networking Conference (CCNC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5016961984","display_name":"Vladimir Marbukh","orcid":null},"institutions":[{"id":"https://openalex.org/I1321296531","display_name":"National Institute of Standards and Technology","ror":"https://ror.org/05xpvk416","country_code":"US","type":"funder","lineage":["https://openalex.org/I1321296531","https://openalex.org/I1343035065"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Vladimir Marbukh","raw_affiliation_strings":["National Institute of Standards &#x0026; Technology,Gaithersburg,MD,20899-8910"],"affiliations":[{"raw_affiliation_string":"National Institute of Standards &#x0026; Technology,Gaithersburg,MD,20899-8910","institution_ids":["https://openalex.org/I1321296531"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5016961984"],"corresponding_institution_ids":["https://openalex.org/I1321296531"],"apc_list":null,"apc_paid":null,"fwci":0.4582,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.62996426,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"947","last_page":"948"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9937000274658203,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10994","display_name":"Terrorism, Counterterrorism, and Political Violence","score":0.9779000282287598,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.8609588146209717},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6232089400291443},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.6151000261306763},{"id":"https://openalex.org/keywords/metric","display_name":"Metric (unit)","score":0.6068325042724609},{"id":"https://openalex.org/keywords/zero","display_name":"Zero (linguistics)","score":0.520691990852356},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.425171434879303},{"id":"https://openalex.org/keywords/bayesian-probability","display_name":"Bayesian probability","score":0.41354191303253174},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.3232528567314148},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.18353044986724854},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.17047736048698425},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.06978201866149902}],"concepts":[{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.8609588146209717},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6232089400291443},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.6151000261306763},{"id":"https://openalex.org/C176217482","wikidata":"https://www.wikidata.org/wiki/Q860554","display_name":"Metric (unit)","level":2,"score":0.6068325042724609},{"id":"https://openalex.org/C2780813799","wikidata":"https://www.wikidata.org/wiki/Q3274237","display_name":"Zero (linguistics)","level":2,"score":0.520691990852356},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.425171434879303},{"id":"https://openalex.org/C107673813","wikidata":"https://www.wikidata.org/wiki/Q812534","display_name":"Bayesian probability","level":2,"score":0.41354191303253174},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.3232528567314148},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.18353044986724854},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.17047736048698425},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.06978201866149902},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C21547014","wikidata":"https://www.wikidata.org/wiki/Q1423657","display_name":"Operations management","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ccnc51644.2023.10060371","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/ccnc51644.2023.10060371","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE 20th Consumer Communications &amp; Networking Conference (CCNC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W136325890","https://openalex.org/W1489574895","https://openalex.org/W1508191694","https://openalex.org/W2031355801","https://openalex.org/W2032558547","https://openalex.org/W6798987557"],"related_works":["https://openalex.org/W17155033","https://openalex.org/W3207760230","https://openalex.org/W1496222301","https://openalex.org/W1590307681","https://openalex.org/W2536018345","https://openalex.org/W4312814274","https://openalex.org/W4285370786","https://openalex.org/W2296488620","https://openalex.org/W2358353312","https://openalex.org/W2353836703"],"abstract_inverted_index":{"This":[0],"paper":[1],"reports":[2],"on":[3,7,137,146],"work":[4],"in":[5],"progress":[6],"incorporating":[8],"a":[9,31,94,121,156],"possibility":[10],"of":[11,33,40,46,54,56,66,71,79,97,100,159],"zero-day":[12,36,42,67,80,101,122],"attacks":[13],"into":[14],"security":[15,19,153],"risk":[16,73,83,126],"metrics.":[17,74],"System":[18],"is":[20,111,155],"modelled":[21],"by":[22],"Attack":[23],"Graph":[24],"(AG),":[25],"where":[26],"attack":[27,48],"paths":[28],"may":[29],"include":[30],"combination":[32],"known":[34,57],"and":[35,44,141],"exploits.":[37],"While":[38],"set":[39],"feasible":[41],"exploits":[43,58,68,102],"composition":[45],"each":[47],"path":[49],"are":[50,59],"known,":[51],"only":[52],"estimates":[53],"likelihoods":[55,65,78,99],"available.":[60],"We":[61],"propose":[62],"addressing":[63],"uncertain":[64],"within":[69],"framework":[70],"robust":[72,82,125],"Assuming":[75],"some":[76],"base":[77,105],"exploits,":[81],"metrics":[84,127],"assume":[85],"worst-case":[86,109],"Probabilistic":[87],"or":[88,133],"Bayesian":[89,134],"AG":[90,135],"scenario":[91,110],"allowing":[92],"for":[93],"controlled":[95],"deviation":[96],"actual":[98],"from":[103],"their":[104],"values.":[106],"The":[107],"corresponding":[108,131],"defined":[112],"with":[113],"respect":[114],"to":[115,120],"the":[116,130,138,147,160],"system":[117],"losses":[118],"due":[119],"attack.":[123],"These":[124],"interpolate":[128],"between":[129],"probabilistic":[132],"model":[136,145],"one":[139],"hand":[140],"purely":[142],"antagonistic":[143],"game-theoretic":[144],"other":[148],"hand.":[149],"Popular":[150],"k-zero":[151],"day":[152],"metric":[154],"particular":[157],"case":[158],"proposed":[161],"metric.":[162]},"counts_by_year":[{"year":2024,"cited_by_count":1}],"updated_date":"2025-12-19T19:40:27.379048","created_date":"2025-10-10T00:00:00"}