{"id":"https://openalex.org/W2171259231","doi":"https://doi.org/10.1109/crisis.2009.5411976","title":"A formal methodology for detection of vulnerabilities in an enterprise information system","display_name":"A formal methodology for detection of vulnerabilities in an enterprise information system","publication_year":2009,"publication_date":"2009-10-01","ids":{"openalex":"https://openalex.org/W2171259231","doi":"https://doi.org/10.1109/crisis.2009.5411976","mag":"2171259231"},"language":"en","primary_location":{"id":"doi:10.1109/crisis.2009.5411976","is_oa":false,"landing_page_url":"https://doi.org/10.1109/crisis.2009.5411976","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2009 Fourth International Conference on Risks and Security of Internet and Systems (CRiSIS 2009)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5070024088","display_name":"Anirban Sengupta","orcid":"https://orcid.org/0000-0002-6239-256X"},"institutions":[{"id":"https://openalex.org/I170979836","display_name":"Jadavpur University","ror":"https://ror.org/02af4h012","country_code":"IN","type":"education","lineage":["https://openalex.org/I170979836"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Anirban Sengupta","raw_affiliation_strings":["Centre of Distributed Computing, Jadavpur University, Kolkata, India"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Centre of Distributed Computing, Jadavpur University, Kolkata, India","institution_ids":["https://openalex.org/I170979836"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062156678","display_name":"Chandan Mazumdar","orcid":"https://orcid.org/0000-0002-4252-8861"},"institutions":[{"id":"https://openalex.org/I170979836","display_name":"Jadavpur University","ror":"https://ror.org/02af4h012","country_code":"IN","type":"education","lineage":["https://openalex.org/I170979836"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Chandan Mazumdar","raw_affiliation_strings":["Centre of Distributed Computing, Jadavpur University, Kolkata, India"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Centre of Distributed Computing, Jadavpur University, Kolkata, India","institution_ids":["https://openalex.org/I170979836"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5113557349","display_name":"Aditya Bagchi","orcid":null},"institutions":[{"id":"https://openalex.org/I6498739","display_name":"Indian Statistical Institute","ror":"https://ror.org/00q2w1j53","country_code":"IN","type":"education","lineage":["https://openalex.org/I6498739"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Aditya Bagchi","raw_affiliation_strings":["Indian Statistical Institute, Kolkata, India"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Indian Statistical Institute, Kolkata, India","institution_ids":["https://openalex.org/I6498739"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.1057,"has_fulltext":false,"cited_by_count":12,"citation_normalized_percentile":{"value":0.93799236,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":"52","issue":null,"first_page":"74","last_page":"81"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7249354720115662},{"id":"https://openalex.org/keywords/enterprise-information-system","display_name":"Enterprise information system","score":0.6976220011711121},{"id":"https://openalex.org/keywords/enterprise-information-security-architecture","display_name":"Enterprise information security architecture","score":0.6664431095123291},{"id":"https://openalex.org/keywords/enterprise-software","display_name":"Enterprise software","score":0.5628174543380737},{"id":"https://openalex.org/keywords/enterprise-architecture","display_name":"Enterprise architecture","score":0.5623433589935303},{"id":"https://openalex.org/keywords/enterprise-systems-engineering","display_name":"Enterprise systems engineering","score":0.5334888696670532},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5261392593383789},{"id":"https://openalex.org/keywords/enterprise-system","display_name":"Enterprise system","score":0.484567791223526},{"id":"https://openalex.org/keywords/enterprise-life-cycle","display_name":"Enterprise life cycle","score":0.46997588872909546},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.45394542813301086},{"id":"https://openalex.org/keywords/information-system","display_name":"Information system","score":0.4416029453277588},{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.4387095868587494},{"id":"https://openalex.org/keywords/enterprise-private-network","display_name":"Enterprise private network","score":0.4368932545185089},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.4168854355812073},{"id":"https://openalex.org/keywords/knowledge-management","display_name":"Knowledge management","score":0.32091444730758667},{"id":"https://openalex.org/keywords/architecture","display_name":"Architecture","score":0.31608882546424866},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.1576710045337677},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.09876886010169983},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.08330094814300537}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7249354720115662},{"id":"https://openalex.org/C27295321","wikidata":"https://www.wikidata.org/wiki/Q831795","display_name":"Enterprise information system","level":2,"score":0.6976220011711121},{"id":"https://openalex.org/C31139447","wikidata":"https://www.wikidata.org/wiki/Q5380386","display_name":"Enterprise information security architecture","level":2,"score":0.6664431095123291},{"id":"https://openalex.org/C185765463","wikidata":"https://www.wikidata.org/wiki/Q1318054","display_name":"Enterprise software","level":2,"score":0.5628174543380737},{"id":"https://openalex.org/C10590034","wikidata":"https://www.wikidata.org/wiki/Q1048431","display_name":"Enterprise architecture","level":3,"score":0.5623433589935303},{"id":"https://openalex.org/C146342590","wikidata":"https://www.wikidata.org/wiki/Q11606385","display_name":"Enterprise systems engineering","level":4,"score":0.5334888696670532},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5261392593383789},{"id":"https://openalex.org/C67571701","wikidata":"https://www.wikidata.org/wiki/Q1318054","display_name":"Enterprise system","level":2,"score":0.484567791223526},{"id":"https://openalex.org/C82419060","wikidata":"https://www.wikidata.org/wiki/Q5380394","display_name":"Enterprise life cycle","level":2,"score":0.46997588872909546},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.45394542813301086},{"id":"https://openalex.org/C180198813","wikidata":"https://www.wikidata.org/wiki/Q121182","display_name":"Information system","level":2,"score":0.4416029453277588},{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.4387095868587494},{"id":"https://openalex.org/C149859251","wikidata":"https://www.wikidata.org/wiki/Q483426","display_name":"Enterprise private network","level":2,"score":0.4368932545185089},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.4168854355812073},{"id":"https://openalex.org/C56739046","wikidata":"https://www.wikidata.org/wiki/Q192060","display_name":"Knowledge management","level":1,"score":0.32091444730758667},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.31608882546424866},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.1576710045337677},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.09876886010169983},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.08330094814300537},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.0},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0},{"id":"https://openalex.org/C153349607","wikidata":"https://www.wikidata.org/wiki/Q36649","display_name":"Visual arts","level":1,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/crisis.2009.5411976","is_oa":false,"landing_page_url":"https://doi.org/10.1109/crisis.2009.5411976","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2009 Fourth International Conference on Risks and Security of Internet and Systems (CRiSIS 2009)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9","score":0.5400000214576721}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":16,"referenced_works":["https://openalex.org/W1548628436","https://openalex.org/W1979579813","https://openalex.org/W1991016690","https://openalex.org/W2019341062","https://openalex.org/W2035142022","https://openalex.org/W2043144080","https://openalex.org/W2102563702","https://openalex.org/W2104588447","https://openalex.org/W2121805588","https://openalex.org/W2135481006","https://openalex.org/W2139666321","https://openalex.org/W2505768305","https://openalex.org/W2999136791","https://openalex.org/W4238177474","https://openalex.org/W6675162021","https://openalex.org/W6816441195"],"related_works":["https://openalex.org/W2384858042","https://openalex.org/W154420263","https://openalex.org/W2123266705","https://openalex.org/W2347554177","https://openalex.org/W2379291113","https://openalex.org/W2048393514","https://openalex.org/W232038341","https://openalex.org/W1991095555","https://openalex.org/W2015420596","https://openalex.org/W2369828050"],"abstract_inverted_index":{"From":[0],"information":[1,26,45,100,116,131],"security":[2],"point":[3],"of":[4,13,32,34,42,73,86,115,126,129],"view,":[5],"an":[6],"enterprise":[7,25,66,99,130],"is":[8],"considered":[9],"as":[10,28,82],"a":[11,50,121],"collection":[12],"assets":[14,46,75],"and":[15],"their":[16],"interrelations.":[17],"These":[18,102],"interrelations":[19],"may":[20,56,67,92,108],"be":[21],"built":[22],"into":[23],"the":[24,30,71,98,112],"infrastructure,":[27],"in":[29,37,47,76,97,133],"case":[31],"connection":[33],"hardware":[35],"elements":[36],"network":[38],"architecture,":[39],"or":[40,44],"installation":[41],"software":[43],"hardware.":[48],"As":[49],"result,":[51],"access":[52,58,72],"to":[53,59,94,111],"one":[54],"element":[55],"enable":[57],"another":[60],"if":[61,104],"they":[62],"are":[63],"connected.":[64],"An":[65],"specify":[68],"conditions":[69],"on":[70],"certain":[74,77],"mode":[78],"(read,":[79],"write":[80],"etc.)":[81],"policies.":[83],"The":[84],"interconnection":[85],"assets,":[87],"along":[88],"with":[89],"specified":[90],"policies,":[91],"lead":[93],"managerial":[95,127],"vulnerabilities":[96,128],"system.":[101],"vulnerabilities,":[103],"exploited":[105],"by":[106],"threats,":[107],"cause":[109],"disruption":[110],"normal":[113],"functioning":[114],"systems.":[117],"This":[118],"paper":[119],"presents":[120],"formal":[122],"method":[123],"for":[124],"detection":[125],"systems":[132],"linear":[134],"time.":[135]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2015,"cited_by_count":1},{"year":2014,"cited_by_count":1},{"year":2013,"cited_by_count":2},{"year":2012,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}