{"id":"https://openalex.org/W4323345677","doi":"https://doi.org/10.1109/tdsc.2023.3253121","title":"Quantitative Evaluation of Extensive Vulnerability Set Using Cost Benefit Analysis","display_name":"Quantitative Evaluation of Extensive Vulnerability Set Using Cost Benefit Analysis","publication_year":2023,"publication_date":"2023-03-06","ids":{"openalex":"https://openalex.org/W4323345677","doi":"https://doi.org/10.1109/tdsc.2023.3253121"},"language":"en","primary_location":{"id":"doi:10.1109/tdsc.2023.3253121","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2023.3253121","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5108813386","display_name":"Urvashi","orcid":null},"institutions":[{"id":"https://openalex.org/I70971781","display_name":"Dr. B. R. Ambedkar National Institute of Technology Jalandhar","ror":"https://ror.org/03xt0bg88","country_code":"IN","type":"education","lineage":["https://openalex.org/I70971781"]}],"countries":["IN"],"is_corresponding":true,"raw_author_name":"Urvashi Bansal","raw_affiliation_strings":["Department of Computer Science and Engineering, National Institute of Technology, Jalandhar, Punjab, India"],"raw_orcid":"https://orcid.org/0000-0002-3395-9942","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, National Institute of Technology, Jalandhar, Punjab, India","institution_ids":["https://openalex.org/I70971781"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5077283062","display_name":"Geeta Sikka","orcid":"https://orcid.org/0000-0003-4795-1842"},"institutions":[{"id":"https://openalex.org/I44635919","display_name":"National Institute of Technology Delhi","ror":"https://ror.org/032twef21","country_code":"IN","type":"education","lineage":["https://openalex.org/I4210152752","https://openalex.org/I44635919"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Geeta Sikka","raw_affiliation_strings":["Department of Computer Science and Engineering, National Institute of Technology, Delhi, India"],"raw_orcid":"https://orcid.org/0000-0003-4795-1842","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, National Institute of Technology, Delhi, India","institution_ids":["https://openalex.org/I44635919"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052416182","display_name":"Lalit Kumar Awasthi","orcid":"https://orcid.org/0000-0001-8396-9025"},"institutions":[{"id":"https://openalex.org/I8778637","display_name":"National Institute of Technology Srinagar","ror":"https://ror.org/03sfwvw54","country_code":"IN","type":"education","lineage":["https://openalex.org/I4210152752","https://openalex.org/I8778637"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Lalit K. Awasthi","raw_affiliation_strings":["National Institute of Technology, Srinagar, Uttarakhand, India"],"raw_orcid":"https://orcid.org/0000-0001-8396-9025","affiliations":[{"raw_affiliation_string":"National Institute of Technology, Srinagar, Uttarakhand, India","institution_ids":["https://openalex.org/I8778637"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5077320731","display_name":"Bharat Bhargava","orcid":"https://orcid.org/0000-0003-3803-8672"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bharat Bhargava","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"raw_orcid":"https://orcid.org/0000-0003-3803-8672","affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5108813386"],"corresponding_institution_ids":["https://openalex.org/I70971781"],"apc_list":null,"apc_paid":null,"fwci":1.7937,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.87220082,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":97,"max":98},"biblio":{"volume":"21","issue":"1","first_page":"298","last_page":"308"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9815999865531921,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9815999865531921,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9779999852180481,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9667999744415283,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8547366857528687},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6915150284767151},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.5974819660186768},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5480896234512329},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.5126535296440125},{"id":"https://openalex.org/keywords/node","display_name":"Node (physics)","score":0.5026805400848389},{"id":"https://openalex.org/keywords/path","display_name":"Path (computing)","score":0.48214051127433777},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.4589449465274811},{"id":"https://openalex.org/keywords/attack-surface","display_name":"Attack surface","score":0.45395344495773315},{"id":"https://openalex.org/keywords/security-analysis","display_name":"Security analysis","score":0.4427873194217682},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.4397144615650177},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.42926883697509766},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.39240461587905884}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8547366857528687},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6915150284767151},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.5974819660186768},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5480896234512329},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.5126535296440125},{"id":"https://openalex.org/C62611344","wikidata":"https://www.wikidata.org/wiki/Q1062658","display_name":"Node (physics)","level":2,"score":0.5026805400848389},{"id":"https://openalex.org/C2777735758","wikidata":"https://www.wikidata.org/wiki/Q817765","display_name":"Path (computing)","level":2,"score":0.48214051127433777},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.4589449465274811},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.45395344495773315},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.4427873194217682},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.4397144615650177},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.42926883697509766},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.39240461587905884},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C66938386","wikidata":"https://www.wikidata.org/wiki/Q633538","display_name":"Structural engineering","level":1,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tdsc.2023.3253121","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2023.3253121","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5861396838","display_name":null,"funder_award_id":"DST/TDT/DDP-30/2021","funder_id":"https://openalex.org/F4320326272","funder_display_name":"Department of Science and Technology, Philippines"}],"funders":[{"id":"https://openalex.org/F4320326272","display_name":"Department of Science and Technology, Philippines","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":51,"referenced_works":["https://openalex.org/W82848659","https://openalex.org/W180604521","https://openalex.org/W348506420","https://openalex.org/W1508191694","https://openalex.org/W1556359845","https://openalex.org/W1633140981","https://openalex.org/W1965332127","https://openalex.org/W1966412766","https://openalex.org/W1969292866","https://openalex.org/W1970903699","https://openalex.org/W1989567187","https://openalex.org/W1992578681","https://openalex.org/W2009495439","https://openalex.org/W2042645728","https://openalex.org/W2047784240","https://openalex.org/W2051090406","https://openalex.org/W2055844736","https://openalex.org/W2068413716","https://openalex.org/W2074648518","https://openalex.org/W2075001427","https://openalex.org/W2075556238","https://openalex.org/W2085679735","https://openalex.org/W2108246235","https://openalex.org/W2118382442","https://openalex.org/W2121805588","https://openalex.org/W2130373165","https://openalex.org/W2131875370","https://openalex.org/W2146893542","https://openalex.org/W2151369956","https://openalex.org/W2157554212","https://openalex.org/W2157841794","https://openalex.org/W2162142914","https://openalex.org/W2317787581","https://openalex.org/W2318930168","https://openalex.org/W2505759804","https://openalex.org/W2626631366","https://openalex.org/W2730472565","https://openalex.org/W2771043140","https://openalex.org/W2800109782","https://openalex.org/W2907236248","https://openalex.org/W2910358275","https://openalex.org/W2913231348","https://openalex.org/W2913714499","https://openalex.org/W2914917387","https://openalex.org/W3033513857","https://openalex.org/W3092427874","https://openalex.org/W3134320273","https://openalex.org/W4255179959","https://openalex.org/W6632058376","https://openalex.org/W6679383015","https://openalex.org/W6812742317"],"related_works":["https://openalex.org/W1883246888","https://openalex.org/W2370114625","https://openalex.org/W2947584067","https://openalex.org/W3118510577","https://openalex.org/W2280562859","https://openalex.org/W3157230915","https://openalex.org/W1496728123","https://openalex.org/W2062873522","https://openalex.org/W1756374135","https://openalex.org/W2789975780"],"abstract_inverted_index":{"The":[0,155],"significant":[1],"expansion":[2],"in":[3,24,41,52,160],"network":[4,42,145],"size":[5],"to":[6,68,128,131,147],"support":[7],"new":[8],"paradigms":[9],"such":[10],"as":[11],"cloud":[12],"computing,":[13],"IoT":[14],"(Internet":[15],"of":[16,74,91,124,136,151,172],"Things),":[17],"etc.":[18],"together":[19],"with":[20],"the":[21,28,71,75,112,122,133,149,152,170,177],"exponential":[22],"increase":[23],"vulnerabilities":[25,125,164],"has":[26,188],"challenged":[27],"existing":[29],"security":[30],"mechanisms":[31],"greatly.":[32],"These":[33],"challenges":[34],"have":[35,80,103,141,165],"opened":[36],"many":[37],"avenues":[38],"for":[39,83,184],"research":[40],"security.":[43],"However,":[44],"while":[45],"attack":[46,57,76,84,100,113,137,185],"graphs":[47,58],"play":[48],"an":[49],"important":[50],"role":[51],"analyzing":[53,55],"vulnerabilities,":[54],"large":[56],"itself":[59],"is":[60,66,88,176],"a":[61,89,105,143,181],"major":[62,134],"issue.":[63],"Therefore,":[64],"it":[65],"necessary":[67],"extract":[69],"only":[70],"critical":[72],"part":[73],"graph.":[77,138],"Although":[78],"technologies":[79],"been":[81,189],"developed":[82],"path":[85,107,186],"characterization,":[86],"there":[87],"lack":[90],"hybrid":[92],"technology":[93],"that":[94,110,126,180],"can":[95],"differentiate":[96],"between":[97],"similar":[98,166],"behavior":[99],"paths.":[101],"We":[102],"proposed":[104,153,156],"cost-based":[106],"characterization":[108],"technique":[109],"takes":[111],"node's":[114],"vulnerability":[115],"complexity":[116],"into":[117],"account":[118],"and":[119],"significantly":[120],"reduces":[121],"number":[123],"need":[127],"be":[129],"patched":[130],"avoid":[132],"segment":[135],"Moreover,":[139],"we":[140],"used":[142],"real":[144],"prototype":[146],"validate":[148],"performance":[150],"scheme.":[154],"scheme":[157],"works":[158],"well":[159],"cases":[161],"where":[162],"some":[163],"risk":[167],"scores.":[168],"To":[169],"best":[171],"our":[173],"knowledge,":[174],"this":[175],"first":[178],"time":[179],"cost-effective":[182],"approach":[183],"analysis":[187],"proposed.":[190]},"counts_by_year":[{"year":2025,"cited_by_count":4}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2023-03-08T00:00:00"}