{"id":"https://openalex.org/W4399039481","doi":"https://doi.org/10.1109/tnsm.2024.3401200","title":"MITREtrieval: Retrieving MITRE Techniques From Unstructured Threat Reports by Fusion of Deep Learning and Ontology","display_name":"MITREtrieval: Retrieving MITRE Techniques From Unstructured Threat Reports by Fusion of Deep Learning and Ontology","publication_year":2024,"publication_date":"2024-05-27","ids":{"openalex":"https://openalex.org/W4399039481","doi":"https://doi.org/10.1109/tnsm.2024.3401200"},"language":"en","primary_location":{"id":"doi:10.1109/tnsm.2024.3401200","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2024.3401200","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5059650126","display_name":"Yi-Ting Huang","orcid":"https://orcid.org/0000-0002-6315-8927"},"institutions":[{"id":"https://openalex.org/I154864474","display_name":"National Taiwan University of Science and Technology","ror":"https://ror.org/00q09pe49","country_code":"TW","type":"education","lineage":["https://openalex.org/I154864474"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Yi-Ting Huang","raw_affiliation_strings":["Department of Electrical Engineering, National Taiwan University of Science and Technology, Taipei, Taiwan"],"raw_orcid":"https://orcid.org/0000-0002-6315-8927","affiliations":[{"raw_affiliation_string":"Department of Electrical Engineering, National Taiwan University of Science and Technology, Taipei, Taiwan","institution_ids":["https://openalex.org/I154864474"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5019351314","display_name":"R. Vaitheeshwari","orcid":null},"institutions":[{"id":"https://openalex.org/I22265921","display_name":"National Central University","ror":"https://ror.org/00944ve71","country_code":"TW","type":"education","lineage":["https://openalex.org/I22265921"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"R. Vaitheeshwari","raw_affiliation_strings":["Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan"],"raw_orcid":"https://orcid.org/0000-0002-0524-2717","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","institution_ids":["https://openalex.org/I22265921"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052520979","display_name":"Meng Chang Chen","orcid":"https://orcid.org/0000-0002-6815-2436"},"institutions":[{"id":"https://openalex.org/I4210098366","display_name":"Institute of Information Science, Academia Sinica","ror":"https://ror.org/00z83z196","country_code":"TW","type":"facility","lineage":["https://openalex.org/I4210098366","https://openalex.org/I84653119"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Meng-Chang Chen","raw_affiliation_strings":["Institute of Information Science, Academia Sinica, Taipei, Taiwan"],"raw_orcid":"https://orcid.org/0000-0002-6815-2436","affiliations":[{"raw_affiliation_string":"Institute of Information Science, Academia Sinica, Taipei, Taiwan","institution_ids":["https://openalex.org/I4210098366"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021844836","display_name":"Ying\u2013Dar Lin","orcid":"https://orcid.org/0000-0002-5226-4396"},"institutions":[{"id":"https://openalex.org/I148366613","display_name":"National Yang Ming Chiao Tung University","ror":"https://ror.org/00se2k293","country_code":"TW","type":"education","lineage":["https://openalex.org/I148366613"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Ying-Dar Lin","raw_affiliation_strings":["Department of Computer Science, National Yang Ming Chiao Tung University, Hsinchu, Taiwan"],"raw_orcid":"https://orcid.org/0000-0002-5226-4396","affiliations":[{"raw_affiliation_string":"Department of Computer Science, National Yang Ming Chiao Tung University, Hsinchu, Taiwan","institution_ids":["https://openalex.org/I148366613"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035925200","display_name":"Ren\u2010Hung Hwang","orcid":"https://orcid.org/0000-0001-7996-4184"},"institutions":[{"id":"https://openalex.org/I148366613","display_name":"National Yang Ming Chiao Tung University","ror":"https://ror.org/00se2k293","country_code":"TW","type":"education","lineage":["https://openalex.org/I148366613"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Ren-Hung Hwang","raw_affiliation_strings":["College of Artificial Intelligence, National Yang Ming Chiao Tung University, Hsinchu, Taiwan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"College of Artificial Intelligence, National Yang Ming Chiao Tung University, Hsinchu, Taiwan","institution_ids":["https://openalex.org/I148366613"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084330488","display_name":"Po\u2010Ching Lin","orcid":"https://orcid.org/0000-0001-8294-5857"},"institutions":[{"id":"https://openalex.org/I148099254","display_name":"National Chung Cheng University","ror":"https://ror.org/0028v3876","country_code":"TW","type":"education","lineage":["https://openalex.org/I148099254"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Po-Ching Lin","raw_affiliation_strings":["Department of Computer Science and Information Engineering, National Chung Cheng University, Chiayi, Taiwan"],"raw_orcid":"https://orcid.org/0000-0001-8294-5857","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Engineering, National Chung Cheng University, Chiayi, Taiwan","institution_ids":["https://openalex.org/I148099254"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085347760","display_name":"Yuan\u2010Cheng Lai","orcid":"https://orcid.org/0000-0003-3695-5784"},"institutions":[{"id":"https://openalex.org/I154864474","display_name":"National Taiwan University of Science and Technology","ror":"https://ror.org/00q09pe49","country_code":"TW","type":"education","lineage":["https://openalex.org/I154864474"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Yuan-Cheng Lai","raw_affiliation_strings":["Department of Information Management, National Taiwan University of Science and Technology, Taipei, Taiwan"],"raw_orcid":"https://orcid.org/0000-0003-3695-5784","affiliations":[{"raw_affiliation_string":"Department of Information Management, National Taiwan University of Science and Technology, Taipei, Taiwan","institution_ids":["https://openalex.org/I154864474"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017527118","display_name":"Eric Hsiao\u2010Kuang Wu","orcid":"https://orcid.org/0000-0002-1767-2773"},"institutions":[{"id":"https://openalex.org/I22265921","display_name":"National Central University","ror":"https://ror.org/00944ve71","country_code":"TW","type":"education","lineage":["https://openalex.org/I22265921"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Eric Hsiao-Kuang Wu","raw_affiliation_strings":["Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan"],"raw_orcid":"https://orcid.org/0000-0002-1767-2773","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","institution_ids":["https://openalex.org/I22265921"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038091906","display_name":"Chung\u2010Hsuan Chen","orcid":"https://orcid.org/0000-0002-2826-0002"},"institutions":[{"id":"https://openalex.org/I22265921","display_name":"National Central University","ror":"https://ror.org/00944ve71","country_code":"TW","type":"education","lineage":["https://openalex.org/I22265921"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Chung-Hsuan Chen","raw_affiliation_strings":["Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","Research Division, CyCraft Technology, New Taipei City, Taiwan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","institution_ids":["https://openalex.org/I22265921"]},{"raw_affiliation_string":"Research Division, CyCraft Technology, New Taipei City, Taiwan","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5113229612","display_name":"Zi-Jie Liao","orcid":null},"institutions":[{"id":"https://openalex.org/I22265921","display_name":"National Central University","ror":"https://ror.org/00944ve71","country_code":"TW","type":"education","lineage":["https://openalex.org/I22265921"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Zi-Jie Liao","raw_affiliation_strings":["Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","institution_ids":["https://openalex.org/I22265921"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5102791319","display_name":"Chung-Kuan Chen","orcid":"https://orcid.org/0000-0002-6235-7529"},"institutions":[{"id":"https://openalex.org/I22265921","display_name":"National Central University","ror":"https://ror.org/00944ve71","country_code":"TW","type":"education","lineage":["https://openalex.org/I22265921"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Chung-Kuan Chen","raw_affiliation_strings":["Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","Research Division, CyCraft Technology, New Taipei City, Taiwan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Information Engineering, National Central University, Taoyuan, Taiwan","institution_ids":["https://openalex.org/I22265921"]},{"raw_affiliation_string":"Research Division, CyCraft Technology, New Taipei City, Taiwan","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":11,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":11.722,"has_fulltext":false,"cited_by_count":17,"citation_normalized_percentile":{"value":0.9841267,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"21","issue":"4","first_page":"4871","last_page":"4887"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9948999881744385,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9948999881744385,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9947999715805054,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11147","display_name":"Misinformation and Its Impacts","score":0.9901999831199646,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8837389349937439},{"id":"https://openalex.org/keywords/ontology","display_name":"Ontology","score":0.5729789733886719},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.570652425289154},{"id":"https://openalex.org/keywords/merge","display_name":"Merge (version control)","score":0.4697827398777008},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.45938780903816223},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.4425967335700989},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.4328423738479614},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.38636136054992676},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.3579496741294861},{"id":"https://openalex.org/keywords/information-retrieval","display_name":"Information retrieval","score":0.2614450454711914},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2544613778591156}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8837389349937439},{"id":"https://openalex.org/C25810664","wikidata":"https://www.wikidata.org/wiki/Q44325","display_name":"Ontology","level":2,"score":0.5729789733886719},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.570652425289154},{"id":"https://openalex.org/C197129107","wikidata":"https://www.wikidata.org/wiki/Q1921621","display_name":"Merge (version control)","level":2,"score":0.4697827398777008},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.45938780903816223},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.4425967335700989},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.4328423738479614},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.38636136054992676},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.3579496741294861},{"id":"https://openalex.org/C23123220","wikidata":"https://www.wikidata.org/wiki/Q816826","display_name":"Information retrieval","level":1,"score":0.2614450454711914},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2544613778591156},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tnsm.2024.3401200","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2024.3401200","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.5799999833106995,"display_name":"Climate action","id":"https://metadata.un.org/sdg/13"}],"awards":[{"id":"https://openalex.org/G5565839249","display_name":null,"funder_award_id":"112-2622-E-008-005","funder_id":"https://openalex.org/F4320322795","funder_display_name":"Ministry of Science and Technology, Taiwan"}],"funders":[{"id":"https://openalex.org/F4320322795","display_name":"Ministry of Science and Technology, Taiwan","ror":"https://ror.org/02kv4zf79"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":46,"referenced_works":["https://openalex.org/W1999489595","https://openalex.org/W2470673105","https://openalex.org/W2538865281","https://openalex.org/W2586235276","https://openalex.org/W2760313715","https://openalex.org/W2771963642","https://openalex.org/W2784054170","https://openalex.org/W2837911466","https://openalex.org/W2896457183","https://openalex.org/W2896612858","https://openalex.org/W2900914892","https://openalex.org/W2908121058","https://openalex.org/W2908909372","https://openalex.org/W2913350960","https://openalex.org/W2952357537","https://openalex.org/W2964522977","https://openalex.org/W2965373594","https://openalex.org/W2974015196","https://openalex.org/W2990138404","https://openalex.org/W2997634552","https://openalex.org/W3015650867","https://openalex.org/W3017733550","https://openalex.org/W3026270031","https://openalex.org/W3042306246","https://openalex.org/W3104081646","https://openalex.org/W3157022402","https://openalex.org/W3169766753","https://openalex.org/W3170276438","https://openalex.org/W3176367300","https://openalex.org/W3179788886","https://openalex.org/W3201096633","https://openalex.org/W3201929529","https://openalex.org/W3207901375","https://openalex.org/W3211888892","https://openalex.org/W3214329506","https://openalex.org/W4210404000","https://openalex.org/W4232812820","https://openalex.org/W4324031781","https://openalex.org/W4387850743","https://openalex.org/W6661564250","https://openalex.org/W6745040976","https://openalex.org/W6755207826","https://openalex.org/W6755267338","https://openalex.org/W6764456104","https://openalex.org/W6776615434","https://openalex.org/W6785148927"],"related_works":["https://openalex.org/W4388150944","https://openalex.org/W4234886518","https://openalex.org/W2389591058","https://openalex.org/W4242235492","https://openalex.org/W2382112581","https://openalex.org/W4237162029","https://openalex.org/W3124036233","https://openalex.org/W2367268135","https://openalex.org/W4229787472","https://openalex.org/W2486541857"],"abstract_inverted_index":{"Cyber":[0],"Threat":[1],"Intelligence":[2],"(CTI)":[3],"plays":[4],"a":[5,38,50,79,126,142,151],"crucial":[6],"role":[7],"in":[8,71,150,167,174,189],"understanding":[9],"and":[10,30,45,57,86,107,187,196,205],"preemptively":[11],"defending":[12],"against":[13],"emerging":[14],"threats.":[15],"Typically":[16],"disseminated":[17],"through":[18],"unstructured":[19,72],"reports,":[20,74,199],"CTI":[21,73,198,203],"encompasses":[22],"detailed":[23],"insights":[24],"into":[25],"threat":[26,207],"actors,":[27],"their":[28,172],"actions,":[29],"attack":[31],"patterns.":[32],"The":[33],"MITRE":[34,69,91,156],"ATT&CK":[35],"framework":[36],"offers":[37],"comprehensive":[39],"catalog":[40],"of":[41,64,68,102,110,155,171,184],"adversary":[42],"tactics,":[43],"techniques,":[44,157,169],"procedures":[46],"(TTPs),":[47],"serving":[48],"as":[49],"valuable":[51],"resource":[52],"for":[53],"deciphering":[54],"attacker":[55],"behavior":[56],"enhancing":[58],"defensive":[59],"measures.":[60],"Addressing":[61],"the":[62,99,108],"challenge":[63],"time-consuming":[65],"manual":[66],"analysis":[67,117,204],"TTPs":[70],"this":[75],"paper":[76],"presents":[77],"MITREtrieval,":[78],"novel":[80],"system":[81],"that":[82],"leverages":[83],"deep":[84,130],"learning":[85,131],"ontology":[87,134],"to":[88,98,136,145],"efficiently":[89],"extract":[90],"techniques.":[92],"This":[93,148],"approach":[94,124],"mitigates":[95],"issues":[96],"related":[97],"implicit":[100],"nature":[101],"TTPs,":[103],"textual":[104],"semantic":[105],"dependencies,":[106],"scarcity":[109],"adequately":[111],"labeled":[112],"datasets,":[113],"enabling":[114],"more":[115,152],"effective":[116],"even":[118],"with":[119,133],"limited":[120],"sample":[121],"sizes.":[122],"Our":[123,162],"combines":[125],"sophisticated":[127],"sentence-level":[128],"BERT":[129],"model":[132],"knowledge":[135],"address":[137],"sparse":[138],"data":[139],"challenges,":[140],"using":[141],"voting":[143],"algorithm":[144],"merge":[146],"outcomes.":[147],"results":[149],"accurate":[153],"classification":[154],"capturing":[158],"contextual":[159],"nuances":[160],"effectively.":[161],"evaluation":[163],"confirms":[164],"MITREtrieval\u2019s":[165],"effectiveness":[166],"identifying":[168],"regardless":[170],"representation":[173],"training":[175],"samples.":[176],"MITREtrieval":[177],"has":[178],"surpassed":[179],"benchmarks,":[180],"achieving":[181],"F2":[182],"scores":[183],"58%,":[185],"62%,":[186],"69%":[188],"multi-label":[190],"technique":[191],"identification":[192],"across":[193],"113,":[194],"46,":[195],"23":[197],"respectively,":[200],"thereby":[201],"streamlining":[202],"improving":[206],"intelligence.":[208]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":12},{"year":2024,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}