{"id":"https://openalex.org/W3167506177","doi":"https://doi.org/10.1145/3448016.3452745","title":"A System for Automated Open-Source Threat Intelligence Gathering and Management","display_name":"A System for Automated Open-Source Threat Intelligence Gathering and Management","publication_year":2021,"publication_date":"2021-06-09","ids":{"openalex":"https://openalex.org/W3167506177","doi":"https://doi.org/10.1145/3448016.3452745","mag":"3167506177"},"language":"en","primary_location":{"id":"doi:10.1145/3448016.3452745","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3448016.3452745","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3448016.3452745","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 International Conference on Management of Data","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3448016.3452745","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5024596435","display_name":"Peng Gao","orcid":"https://orcid.org/0000-0001-6331-9383"},"institutions":[{"id":"https://openalex.org/I95457486","display_name":"University of California, Berkeley","ror":"https://ror.org/01an7q238","country_code":"US","type":"education","lineage":["https://openalex.org/I95457486"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Peng Gao","raw_affiliation_strings":["University of California, Berkeley, Berkeley, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California, Berkeley, Berkeley, CA, USA","institution_ids":["https://openalex.org/I95457486"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100605609","display_name":"Xiaoyuan Liu","orcid":"https://orcid.org/0000-0003-1084-9713"},"institutions":[{"id":"https://openalex.org/I95457486","display_name":"University of California, Berkeley","ror":"https://ror.org/01an7q238","country_code":"US","type":"education","lineage":["https://openalex.org/I95457486"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xiaoyuan Liu","raw_affiliation_strings":["University of California, Berkeley, Berkeley, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California, Berkeley, Berkeley, CA, USA","institution_ids":["https://openalex.org/I95457486"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5034622258","display_name":"Edward Choi","orcid":"https://orcid.org/0000-0002-5958-3509"},"institutions":[{"id":"https://openalex.org/I95457486","display_name":"University of California, Berkeley","ror":"https://ror.org/01an7q238","country_code":"US","type":"education","lineage":["https://openalex.org/I95457486"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Edward Choi","raw_affiliation_strings":["University of California, Berkeley, Berkeley, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California, Berkeley, Berkeley, CA, USA","institution_ids":["https://openalex.org/I95457486"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063110632","display_name":"Bhavna Soman","orcid":null},"institutions":[{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bhavna Soman","raw_affiliation_strings":["Microsoft Corporation, Seattle, WA, USA"],"affiliations":[{"raw_affiliation_string":"Microsoft Corporation, Seattle, WA, USA","institution_ids":["https://openalex.org/I1290206253"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028606029","display_name":"Chinmaya Mishra","orcid":null},"institutions":[{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Chinmaya Mishra","raw_affiliation_strings":["Microsoft Corporation, Seattle, WA, USA"],"affiliations":[{"raw_affiliation_string":"Microsoft Corporation, Seattle, WA, USA","institution_ids":["https://openalex.org/I1290206253"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5081756534","display_name":"Kate Farris","orcid":null},"institutions":[{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Kate Farris","raw_affiliation_strings":["Microsoft Corporation, Seattle, WA, USA"],"affiliations":[{"raw_affiliation_string":"Microsoft Corporation, Seattle, WA, USA","institution_ids":["https://openalex.org/I1290206253"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5102480144","display_name":"Dawn Song","orcid":null},"institutions":[{"id":"https://openalex.org/I95457486","display_name":"University of California, Berkeley","ror":"https://ror.org/01an7q238","country_code":"US","type":"education","lineage":["https://openalex.org/I95457486"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Dawn Song","raw_affiliation_strings":["University of California, Berkeley, Berkeley, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California, Berkeley, Berkeley, CA, USA","institution_ids":["https://openalex.org/I95457486"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5024596435"],"corresponding_institution_ids":["https://openalex.org/I95457486"],"apc_list":null,"apc_paid":null,"fwci":3.1996,"has_fulltext":true,"cited_by_count":32,"citation_normalized_percentile":{"value":0.92731575,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"2716","last_page":"2720"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9950000047683716,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9950000047683716,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9929999709129333,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.9916999936103821,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7572849988937378},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.5928963422775269},{"id":"https://openalex.org/keywords/bridge","display_name":"Bridge (graph theory)","score":0.5563948750495911},{"id":"https://openalex.org/keywords/interactivity","display_name":"Interactivity","score":0.5095727443695068},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.453220009803772},{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.4420930743217468},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.4167690575122833},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.28040042519569397}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7572849988937378},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.5928963422775269},{"id":"https://openalex.org/C100776233","wikidata":"https://www.wikidata.org/wiki/Q2532492","display_name":"Bridge (graph theory)","level":2,"score":0.5563948750495911},{"id":"https://openalex.org/C144430266","wikidata":"https://www.wikidata.org/wiki/Q839721","display_name":"Interactivity","level":2,"score":0.5095727443695068},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.453220009803772},{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.4420930743217468},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.4167690575122833},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.28040042519569397},{"id":"https://openalex.org/C126322002","wikidata":"https://www.wikidata.org/wiki/Q11180","display_name":"Internal medicine","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3448016.3452745","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3448016.3452745","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3448016.3452745","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 International Conference on Management of Data","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3448016.3452745","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3448016.3452745","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3448016.3452745","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 International Conference on Management of Data","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.6000000238418579}],"awards":[],"funders":[{"id":"https://openalex.org/F4320309411","display_name":"University of California Berkeley","ror":"https://ror.org/01an7q238"},{"id":"https://openalex.org/F4320333609","display_name":"Center for Long-Term Cybersecurity, University of California Berkeley","ror":null}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3167506177.pdf","grobid_xml":"https://content.openalex.org/works/W3167506177.grobid-xml"},"referenced_works_count":18,"referenced_works":["https://openalex.org/W102708294","https://openalex.org/W804133461","https://openalex.org/W2068306188","https://openalex.org/W2081580037","https://openalex.org/W2147880316","https://openalex.org/W2404161646","https://openalex.org/W2538865281","https://openalex.org/W2771963642","https://openalex.org/W2806057024","https://openalex.org/W2887200831","https://openalex.org/W2888989071","https://openalex.org/W2950133940","https://openalex.org/W2964738734","https://openalex.org/W2965837624","https://openalex.org/W2971114155","https://openalex.org/W3028802855","https://openalex.org/W3173648532","https://openalex.org/W3176367300"],"related_works":["https://openalex.org/W2801622120","https://openalex.org/W2164141394","https://openalex.org/W3036524962","https://openalex.org/W4240977217","https://openalex.org/W4387985143","https://openalex.org/W4362599004","https://openalex.org/W2808242528","https://openalex.org/W1567638270","https://openalex.org/W4285163392","https://openalex.org/W3110049015"],"abstract_inverted_index":{"To":[0,91],"remain":[1],"aware":[2],"of":[3,31,55,116,143],"the":[4,19,35,58,87,93],"fast-evolving":[5],"cyber":[6],"threat":[7,80,89,126],"landscape,":[8],"open-source":[9],"Cyber":[10],"Threat":[11],"Intelligence":[12],"(OSCTI)":[13],"has":[14],"received":[15],"growing":[16],"attention":[17],"from":[18,110],"community.":[20],"Commonly,":[21],"knowledge":[22,78,124,132,147],"about":[23,79,125],"threats":[24],"is":[25,83],"presented":[26],"in":[27],"a":[28,98,114,130,137],"vast":[29],"number":[30],"OSCTI":[32,42,102,108],"reports.":[33],"Despite":[34],"pressing":[36],"need":[37],"for":[38,100],"high-quality":[39],"OSCTI,":[40],"existing":[41],"gathering":[43,103],"and":[44,67,69,104,118,128],"management":[45],"platforms,":[46],"however,":[47],"have":[48,72],"primarily":[49],"focused":[50],"on":[51],"isolated,":[52],"low-level":[53],"Indicators":[54],"Compromise.":[56],"On":[57],"other":[59],"hand,":[60],"higher-level":[61],"concepts":[62],"(e.g.,":[63],"adversary":[64],"tactics,":[65],"techniques,":[66],"procedures)":[68],"their":[70],"relationships":[71],"been":[73],"overlooked,":[74],"which":[75],"contain":[76],"essential":[77],"behaviors":[81],"that":[82,139],"critical":[84],"to":[85,121,145],"uncovering":[86],"complete":[88],"scenario.":[90],"bridge":[92],"gap,":[94],"we":[95],"propose":[96],"SecurityKG,":[97],"system":[99],"automated":[101],"management.":[105],"SecurityKG":[106,134],"collects":[107],"reports":[109],"various":[111,141],"sources,":[112],"uses":[113],"combination":[115],"AI":[117],"NLP":[119],"techniques":[120],"extract":[122],"high-fidelity":[123],"behaviors,":[127],"constructs":[129],"security":[131],"graph.":[133],"also":[135],"provides":[136],"UI":[138],"supports":[140],"types":[142],"interactivity":[144],"facilitate":[146],"graph":[148],"exploration.":[149]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":10},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":3}],"updated_date":"2026-02-25T08:12:03.925757","created_date":"2025-10-10T00:00:00"}