{"id":"https://openalex.org/W2609425222","doi":"https://doi.org/10.1109/pst.2016.7906940","title":"Correlating cyber incident information to establish situational awareness in Critical Infrastructures","display_name":"Correlating cyber incident information to establish situational awareness in Critical Infrastructures","publication_year":2016,"publication_date":"2016-12-01","ids":{"openalex":"https://openalex.org/W2609425222","doi":"https://doi.org/10.1109/pst.2016.7906940","mag":"2609425222"},"language":"en","primary_location":{"id":"doi:10.1109/pst.2016.7906940","is_oa":false,"landing_page_url":"https://doi.org/10.1109/pst.2016.7906940","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 14th Annual Conference on Privacy, Security and Trust (PST)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5013015010","display_name":"Giuseppe Settanni","orcid":null},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Giuseppe Settanni","raw_affiliation_strings":["Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020448646","display_name":"Yegor Shovgenya","orcid":null},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Yegor Shovgenya","raw_affiliation_strings":["Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088439816","display_name":"Florian Skopik","orcid":"https://orcid.org/0000-0002-1922-7892"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Florian Skopik","raw_affiliation_strings":["Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5014584547","display_name":"Roman Graf","orcid":"https://orcid.org/0000-0002-4479-2092"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Roman Graf","raw_affiliation_strings":["Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029942543","display_name":"Markus Wurzenberger","orcid":"https://orcid.org/0000-0003-3259-6972"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Markus Wurzenberger","raw_affiliation_strings":["Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5010095823","display_name":"Roman Fiedler","orcid":"https://orcid.org/0000-0001-7924-8495"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Roman Fiedler","raw_affiliation_strings":["Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Digital Safety and Security Department, AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I132118926"],"apc_list":null,"apc_paid":null,"fwci":1.7725,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.87780374,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"78","last_page":"81"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9958999752998352,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/situation-awareness","display_name":"Situation awareness","score":0.8409097194671631},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.8104541301727295},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7607240676879883},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.6593472957611084},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6234673261642456},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.4641626477241516},{"id":"https://openalex.org/keywords/situational-ethics","display_name":"Situational ethics","score":0.44466227293014526},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.44283461570739746},{"id":"https://openalex.org/keywords/cyber-threats","display_name":"Cyber threats","score":0.43640270829200745},{"id":"https://openalex.org/keywords/multitude","display_name":"Multitude","score":0.4232065975666046},{"id":"https://openalex.org/keywords/cyber-attack","display_name":"Cyber-attack","score":0.4139212965965271},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.25710952281951904},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.1946633756160736},{"id":"https://openalex.org/keywords/systems-engineering","display_name":"Systems engineering","score":0.11065807938575745}],"concepts":[{"id":"https://openalex.org/C145804949","wikidata":"https://www.wikidata.org/wiki/Q478123","display_name":"Situation awareness","level":2,"score":0.8409097194671631},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.8104541301727295},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7607240676879883},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.6593472957611084},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6234673261642456},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.4641626477241516},{"id":"https://openalex.org/C9114305","wikidata":"https://www.wikidata.org/wiki/Q1428317","display_name":"Situational ethics","level":2,"score":0.44466227293014526},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.44283461570739746},{"id":"https://openalex.org/C3018725008","wikidata":"https://www.wikidata.org/wiki/Q4071928","display_name":"Cyber threats","level":2,"score":0.43640270829200745},{"id":"https://openalex.org/C2780565519","wikidata":"https://www.wikidata.org/wiki/Q1208937","display_name":"Multitude","level":2,"score":0.4232065975666046},{"id":"https://openalex.org/C201307755","wikidata":"https://www.wikidata.org/wiki/Q4071928","display_name":"Cyber-attack","level":2,"score":0.4139212965965271},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.25710952281951904},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.1946633756160736},{"id":"https://openalex.org/C201995342","wikidata":"https://www.wikidata.org/wiki/Q682496","display_name":"Systems engineering","level":1,"score":0.11065807938575745},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/pst.2016.7906940","is_oa":false,"landing_page_url":"https://doi.org/10.1109/pst.2016.7906940","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 14th Annual Conference on Privacy, Security and Trust (PST)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","score":0.6200000047683716,"display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W153661252","https://openalex.org/W1527781663","https://openalex.org/W1532325895","https://openalex.org/W1660390307","https://openalex.org/W1662133657","https://openalex.org/W1676280465","https://openalex.org/W1828401780","https://openalex.org/W1978400666","https://openalex.org/W2013736495","https://openalex.org/W2039858940","https://openalex.org/W2050131929","https://openalex.org/W2064655388","https://openalex.org/W2118020653","https://openalex.org/W2161563551","https://openalex.org/W2165612380","https://openalex.org/W2339166448","https://openalex.org/W2344729661","https://openalex.org/W2414339927","https://openalex.org/W2593172760","https://openalex.org/W4213009331","https://openalex.org/W6606252789","https://openalex.org/W6638575021"],"related_works":["https://openalex.org/W4381733965","https://openalex.org/W4401664841","https://openalex.org/W151629373","https://openalex.org/W3215166534","https://openalex.org/W4288049909","https://openalex.org/W3205687007","https://openalex.org/W4401705120","https://openalex.org/W611119698","https://openalex.org/W2491808042","https://openalex.org/W4300817267"],"abstract_inverted_index":{"Protecting":[0],"Critical":[1],"Infrastructures":[2],"(CIs)":[3],"against":[4],"contemporary":[5],"cyber":[6,123,160],"attacks":[7],"has":[8],"become":[9],"a":[10,108],"crucial":[11],"as":[12,14,21],"well":[13],"complex":[15],"task.":[16],"Modern":[17],"attack":[18],"campaigns,":[19],"such":[20],"Advanced":[22],"Persistent":[23],"Threats":[24],"(APTs),":[25],"leverage":[26],"weaknesses":[27],"in":[28,133],"the":[29,74,157],"organization's":[30],"business":[31],"processes":[32],"and":[33,70,81,93,115,126,155],"exploit":[34],"vulnerabilities":[35],"of":[36,76,99,104,110,135,159],"several":[37],"systems":[38],"to":[39,88,96,121,128,151],"hit":[40],"their":[41,44,58],"target.":[42],"Although":[43],"life-cycle":[45],"can":[46,71],"last":[47],"for":[48,146],"months,":[49],"these":[50],"campaigns":[51],"typically":[52],"go":[53],"undetected":[54],"until":[55],"they":[56],"achieve":[57],"goal.":[59],"They":[60],"usually":[61],"aim":[62],"at":[63],"performing":[64],"data":[65],"exfiltration,":[66],"cause":[67],"service":[68],"disruptions":[69],"also":[72],"undermine":[73],"safety":[75],"humans.":[77],"Novel":[78],"detection":[79],"techniques":[80],"incident":[82],"handling":[83],"approaches":[84],"are":[85],"therefore":[86],"required,":[87],"effectively":[89],"protect":[90],"CI's":[91],"networks":[92],"timely":[94],"react":[95],"this":[97,139],"type":[98],"threats.":[100],"Correlating":[101],"large":[102],"amounts":[103],"data,":[105],"collected":[106],"from":[107],"multitude":[109],"relevant":[111,153],"sources,":[112],"is":[113],"necessary":[114],"sometimes":[116],"required":[117],"by":[118],"national":[119],"authorities":[120],"establish":[122],"situational":[124,161],"awareness,":[125],"allow":[127],"promptly":[129],"adopt":[130],"suitable":[131],"countermeasures":[132],"case":[134],"an":[136],"attack.":[137],"In":[138],"paper":[140],"we":[141],"propose":[142],"three":[143],"novel":[144],"methods":[145],"security":[147],"information":[148],"correlation":[149],"designed":[150],"discover":[152],"insights":[154],"support":[156],"establishment":[158],"awareness.":[162]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":2},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":3}],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2025-10-10T00:00:00"}
