{"id":"https://openalex.org/W3171557651","doi":"https://doi.org/10.1145/3447548.3467159","title":"A Framework for Modeling Cyber Attack Techniques from Security Vulnerability Descriptions","display_name":"A Framework for Modeling Cyber Attack Techniques from Security Vulnerability Descriptions","publication_year":2021,"publication_date":"2021-08-12","ids":{"openalex":"https://openalex.org/W3171557651","doi":"https://doi.org/10.1145/3447548.3467159","mag":"3171557651"},"language":"en","primary_location":{"id":"doi:10.1145/3447548.3467159","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3447548.3467159","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 27th ACM SIGKDD Conference on Knowledge Discovery & Data Mining","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5076577930","display_name":"Hodaya Binyamini","orcid":null},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Hodaya Binyamini","raw_affiliation_strings":["Ben-Gurion University of the Negev, Be'er Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev, Be'er Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033439559","display_name":"Ron Bitton","orcid":"https://orcid.org/0000-0001-8942-9783"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Ron Bitton","raw_affiliation_strings":["Ben-Gurion University of the Negev, Be'er Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev, Be'er Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026809005","display_name":"Masaki Inokuchi","orcid":null},"institutions":[{"id":"https://openalex.org/I118347220","display_name":"NEC (Japan)","ror":"https://ror.org/04jndar25","country_code":"JP","type":"company","lineage":["https://openalex.org/I118347220"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Masaki Inokuchi","raw_affiliation_strings":["NEC Corporation, Tokyo, Japan"],"affiliations":[{"raw_affiliation_string":"NEC Corporation, Tokyo, Japan","institution_ids":["https://openalex.org/I118347220"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112854776","display_name":"Tomohiko Yagyu","orcid":null},"institutions":[{"id":"https://openalex.org/I118347220","display_name":"NEC (Japan)","ror":"https://ror.org/04jndar25","country_code":"JP","type":"company","lineage":["https://openalex.org/I118347220"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Tomohiko Yagyu","raw_affiliation_strings":["NEC Corporation, Tokyo, Japan"],"affiliations":[{"raw_affiliation_string":"NEC Corporation, Tokyo, Japan","institution_ids":["https://openalex.org/I118347220"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072913672","display_name":"Yuval Elovici","orcid":"https://orcid.org/0000-0002-9641-128X"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Yuval Elovici","raw_affiliation_strings":["Ben-Gurion University of the Negev, Be'er Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev, Be'er Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002391103","display_name":"Asaf Shabtai","orcid":"https://orcid.org/0000-0003-0630-4059"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Asaf Shabtai","raw_affiliation_strings":["Ben-Gurion University of the Negev, Be'er Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev, Be'er Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5076577930"],"corresponding_institution_ids":["https://openalex.org/I124227911"],"apc_list":null,"apc_paid":null,"fwci":4.258,"has_fulltext":false,"cited_by_count":25,"citation_normalized_percentile":{"value":0.94562276,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"2574","last_page":"2583"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10994","display_name":"Terrorism, Counterterrorism, and Political Violence","score":0.9894000291824341,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.987500011920929,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8337315320968628},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6301756501197815},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.47759199142456055},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.4736146628856659},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4734480082988739},{"id":"https://openalex.org/keywords/attack-model","display_name":"Attack model","score":0.46546223759651184},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4285022020339966},{"id":"https://openalex.org/keywords/stochastic-matrix","display_name":"Stochastic matrix","score":0.4229237735271454},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.4142773747444153},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.2856276035308838},{"id":"https://openalex.org/keywords/markov-chain","display_name":"Markov chain","score":0.09387832880020142}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8337315320968628},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6301756501197815},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.47759199142456055},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.4736146628856659},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4734480082988739},{"id":"https://openalex.org/C65856478","wikidata":"https://www.wikidata.org/wiki/Q3991682","display_name":"Attack model","level":2,"score":0.46546223759651184},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4285022020339966},{"id":"https://openalex.org/C49555168","wikidata":"https://www.wikidata.org/wiki/Q176583","display_name":"Stochastic matrix","level":3,"score":0.4229237735271454},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.4142773747444153},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.2856276035308838},{"id":"https://openalex.org/C98763669","wikidata":"https://www.wikidata.org/wiki/Q176645","display_name":"Markov chain","level":2,"score":0.09387832880020142},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3447548.3467159","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3447548.3467159","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 27th ACM SIGKDD Conference on Knowledge Discovery & Data Mining","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6200000047683716,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W1986203139","https://openalex.org/W2107878631","https://openalex.org/W2250539671","https://openalex.org/W2485766864","https://openalex.org/W2780570555","https://openalex.org/W2791673752","https://openalex.org/W2959604480","https://openalex.org/W2989609782","https://openalex.org/W3010977072","https://openalex.org/W3023882301","https://openalex.org/W3099149841","https://openalex.org/W4299301436"],"related_works":["https://openalex.org/W1883246888","https://openalex.org/W2370114625","https://openalex.org/W2947584067","https://openalex.org/W2062873522","https://openalex.org/W1756374135","https://openalex.org/W3157230915","https://openalex.org/W3118510577","https://openalex.org/W2789975780","https://openalex.org/W2007895524","https://openalex.org/W2393340519"],"abstract_inverted_index":{"Attack":[0],"graphs":[1],"are":[2],"one":[3],"of":[4,70,76,178,180],"the":[5,11,67,80,85,92,98,108,117,140,160,176,181,187],"main":[6],"techniques":[7,30,65],"used":[8,148,157],"to":[9,18,90],"automate":[10],"cybersecurity":[12,135],"risk":[13],"assessment":[14],"process.":[15],"In":[16],"order":[17],"derive":[19],"a":[20,45,56,74,77,102,126,133,143,153,164],"relevant":[21,86],"attack":[22,29,64,87,119,150],"graph,":[23],"up-to-date":[24],"information":[25,96],"on":[26,97,139],"known":[27],"cyber":[28],"should":[31],"be":[32],"represented":[33],"as":[34,184,186],"interaction":[35,42,104,172],"rules.":[36],"However,":[37],"designing":[38],"and":[39,100,163,190],"creating":[40],"new":[41,63,103,111,171],"rules":[43],"is":[44,113],"time":[46],"consuming":[47],"task":[48],"performed":[49],"manually":[50],"by":[51],"security":[52,71,78],"experts.":[53],"We":[54,174],"present":[55],"novel,":[57],"end-to-end,":[58],"automated":[59],"framework":[60,82,124],"for":[61,149,158,168],"modeling":[62],"from":[66],"textual":[68],"description":[69,75],"vulnerabilities.":[72],"Given":[73],"vulnerability,":[79,99],"proposed":[81,123],"first":[83],"extracts":[84],"entities":[88],"required":[89],"model":[91,137,147,156],"attack,":[93],"completes":[94],"missing":[95,161],"derives":[101],"rule":[105,112],"that":[106,131],"models":[107],"attack;":[109],"this":[110],"then":[114],"integrated":[115],"within":[116],"MulVal":[118],"graph":[120],"tool.":[121],"The":[122],"implements":[125],"novel":[127],"data":[128],"science":[129],"pipeline":[130],"includes":[132],"dedicated":[134],"linguistic":[136],"trained":[138],"NVD":[141],"repository,":[142],"recurrent":[144],"neural":[145],"network":[146],"entity":[151],"extraction,":[152],"logistic":[154],"regression":[155],"completing":[159],"information,":[162],"transition":[165],"probability":[166],"matrix":[167],"automatically":[169],"generating":[170],"rule.":[173],"evaluated":[175],"performance":[177],"each":[179],"individual":[182],"algorithms,":[183],"well":[185],"complete":[188],"framework,":[189],"demonstrated":[191],"its":[192],"effectiveness.":[193]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":5},{"year":2022,"cited_by_count":4}],"updated_date":"2026-03-27T14:29:43.386196","created_date":"2025-10-10T00:00:00"}