{"id":"https://openalex.org/W4403866415","doi":"https://doi.org/10.1109/iccst59048.2023.10726853","title":"Enhancing Cybersecurity Proactive Decision-Making Through Attack Tree Analysis and MITRE Framework","display_name":"Enhancing Cybersecurity Proactive Decision-Making Through Attack Tree Analysis and MITRE Framework","publication_year":2023,"publication_date":"2023-10-11","ids":{"openalex":"https://openalex.org/W4403866415","doi":"https://doi.org/10.1109/iccst59048.2023.10726853"},"language":"en","primary_location":{"id":"doi:10.1109/iccst59048.2023.10726853","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iccst59048.2023.10726853","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Carnahan Conference on Security Technology (ICCST)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5072776893","display_name":"Anas Husseis","orcid":"https://orcid.org/0000-0001-6327-5659"},"institutions":[{"id":"https://openalex.org/I4210140267","display_name":"Ikerlan","ror":"https://ror.org/03hp1m080","country_code":"ES","type":"company","lineage":["https://openalex.org/I4210140267"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Anas Husseis","raw_affiliation_strings":["Industrial Cybersecurity Ikerlan,Mondragon/Arrasate,Spain"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Industrial Cybersecurity Ikerlan,Mondragon/Arrasate,Spain","institution_ids":["https://openalex.org/I4210140267"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035500193","display_name":"Jos\u00e9 Luis Flores","orcid":"https://orcid.org/0000-0002-5555-9712"},"institutions":[{"id":"https://openalex.org/I4210140267","display_name":"Ikerlan","ror":"https://ror.org/03hp1m080","country_code":"ES","type":"company","lineage":["https://openalex.org/I4210140267"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Jose Luis Flores","raw_affiliation_strings":["Industrial Cybersecurity Ikerlan,Mondragon/Arrasate,Spain"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Industrial Cybersecurity Ikerlan,Mondragon/Arrasate,Spain","institution_ids":["https://openalex.org/I4210140267"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060199896","display_name":"Andrej Bregar","orcid":"https://orcid.org/0000-0002-5843-5619"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Andrej Bregar","raw_affiliation_strings":["Cybersecurity Informatika d.o.o,Maribor,Slovenija"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Cybersecurity Informatika d.o.o,Maribor,Slovenija","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5091367151","display_name":"Giovanni Mazzeo","orcid":"https://orcid.org/0000-0002-0238-5616"},"institutions":[{"id":"https://openalex.org/I183638586","display_name":"Parthenope University of Naples","ror":"https://ror.org/05pcv4v03","country_code":"IT","type":"education","lineage":["https://openalex.org/I183638586"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Giovanni Mazzeo","raw_affiliation_strings":["University of Naples ‘Parthenope’,Department of Economics, Law, Cybersecurity, and Sports Sciences,Napoli,Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Naples ‘Parthenope’,Department of Economics, Law, Cybersecurity, and Sports Sciences,Napoli,Italy","institution_ids":["https://openalex.org/I183638586"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5048702602","display_name":"Luigi Coppolino","orcid":"https://orcid.org/0000-0002-2079-8713"},"institutions":[{"id":"https://openalex.org/I183638586","display_name":"Parthenope University of Naples","ror":"https://ror.org/05pcv4v03","country_code":"IT","type":"education","lineage":["https://openalex.org/I183638586"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Luigi Coppolino","raw_affiliation_strings":["University of Naples ‘Parthenope’,Department of Engineering,Napoli,Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Naples ‘Parthenope’,Department of Engineering,Napoli,Italy","institution_ids":["https://openalex.org/I183638586"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.8627,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.82549794,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"5"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9639000296592712,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9639000296592712,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9379000067710876,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7293674945831299},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.65240079164505},{"id":"https://openalex.org/keywords/decision-tree","display_name":"Decision tree","score":0.6011744737625122},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.12276744842529297}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7293674945831299},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.65240079164505},{"id":"https://openalex.org/C84525736","wikidata":"https://www.wikidata.org/wiki/Q831366","display_name":"Decision tree","level":2,"score":0.6011744737625122},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.12276744842529297}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/iccst59048.2023.10726853","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iccst59048.2023.10726853","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Carnahan Conference on Security Technology (ICCST)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7300000190734863,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":4,"referenced_works":["https://openalex.org/W2052064701","https://openalex.org/W2767503590","https://openalex.org/W3014589148","https://openalex.org/W4367598047"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052"],"abstract_inverted_index":{"In":[0],"today's":[1],"increasingly":[2],"complex":[3],"and":[4,15,34,53,71,87,95,125,145,149,161],"dynamic":[5],"cyber-security":[6],"landscape,":[7],"organizations":[8,114,156],"face":[9],"the":[10,29,46,58,75,92,107,133,146],"constant":[11],"challenge":[12],"of":[13,31,68,83,135],"identifying":[14],"addressing":[16],"security":[17,36,120,123,159],"requirements":[18],"effectively.":[19,129],"This":[20,38,130],"article":[21,131],"proposes":[22],"a":[23,65,79,100],"comprehensive":[24],"approach":[25],"aimed":[26],"at":[27],"enhancing":[28],"process":[30],"cybersecurity":[32,165],"decision-making":[33],"streamlining":[35],"analysis.":[37],"is":[39],"achieved":[40],"by":[41],"leveraging":[42],"attack":[43,72,85,137,143],"tree":[44,138],"analysis,":[45],"MITRE":[47,76,142],"framework":[48,77],"-":[49],"particularly":[50],"ATT":[51],"&CK":[52],"D3FEND,":[54],"as":[55,57],"well":[56],"Gordon-Loeb":[59,151],"cost-benefit":[60,152],"model.":[61],"Attack":[62],"trees":[63],"provide":[64],"structured":[66],"representation":[67],"potential":[69],"vulnerabilities":[70],"paths,":[73],"while":[74],"offers":[78],"robust":[80],"knowledge":[81],"base":[82],"real-world":[84],"methods":[86],"corresponding":[88,147],"mitigations.":[89],"Moreover,":[90],"analysing":[91],"financial":[93],"cost":[94],"benefits":[96],"coming":[97],"from":[98],"implementing":[99],"remediation":[101],"strategy":[102,160],"provides":[103],"significant":[104],"input":[105],"for":[106],"decision":[108],"maker.":[109],"By":[110],"integrating":[111],"these":[112],"approaches,":[113],"gain":[115],"valuable":[116],"insights":[117],"into":[118],"their":[119,158,163],"posture,":[121],"prioritize":[122],"measures,":[124],"allocate":[126],"resources":[127],"more":[128],"explores":[132],"methodology":[134],"mapping":[136],"nodes":[139],"to":[140],"specific":[141],"techniques":[144],"mitigations":[148],"applies":[150],"model":[153],"so":[154],"that":[155],"optimize":[157],"bolster":[162],"overall":[164],"resilience.":[166]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}