{"id":"https://openalex.org/W3186673178","doi":"https://doi.org/10.1145/3460824.3460859","title":"Efficient Industrial Control Systems risk assessment using the attack path to the critical device","display_name":"Efficient Industrial Control Systems risk assessment using the attack path to the critical device","publication_year":2021,"publication_date":"2021-04-02","ids":{"openalex":"https://openalex.org/W3186673178","doi":"https://doi.org/10.1145/3460824.3460859","mag":"3186673178"},"language":"en","primary_location":{"id":"doi:10.1145/3460824.3460859","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460824.3460859","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460824.3460859","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 3rd International Conference on Management Science and Industrial Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3460824.3460859","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5007623312","display_name":"Mariko Fujimoto","orcid":null},"institutions":[{"id":"https://openalex.org/I197274945","display_name":"Nagoya Institute of Technology","ror":"https://ror.org/055yf1005","country_code":"JP","type":"education","lineage":["https://openalex.org/I197274945"]}],"countries":["JP"],"is_corresponding":true,"raw_author_name":"Mariko Fujimoto","raw_affiliation_strings":["Nagoya Institute of Technology, Japan"],"affiliations":[{"raw_affiliation_string":"Nagoya Institute of Technology, Japan","institution_ids":["https://openalex.org/I197274945"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075499567","display_name":"Wataru Matsuda","orcid":null},"institutions":[{"id":"https://openalex.org/I74801974","display_name":"The University of Tokyo","ror":"https://ror.org/057zh3y96","country_code":"JP","type":"education","lineage":["https://openalex.org/I74801974"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Wataru Matsuda","raw_affiliation_strings":["The University of Tokyo, Japan"],"affiliations":[{"raw_affiliation_string":"The University of Tokyo, Japan","institution_ids":["https://openalex.org/I74801974"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058910521","display_name":"Takuho Mitsunaga","orcid":"https://orcid.org/0009-0003-0089-7997"},"institutions":[{"id":"https://openalex.org/I158123994","display_name":"Toyo University","ror":"https://ror.org/059d6yn51","country_code":"JP","type":"education","lineage":["https://openalex.org/I158123994"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Takuho Mitsunaga","raw_affiliation_strings":["Toyo University, Japan"],"affiliations":[{"raw_affiliation_string":"Toyo University, Japan","institution_ids":["https://openalex.org/I158123994"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5110033094","display_name":"Yoshihiro Hashimoto","orcid":null},"institutions":[{"id":"https://openalex.org/I197274945","display_name":"Nagoya Institute of Technology","ror":"https://ror.org/055yf1005","country_code":"JP","type":"education","lineage":["https://openalex.org/I197274945"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Yoshihiro Hashimoto","raw_affiliation_strings":["Nagoya Institute of Technology, Japan"],"affiliations":[{"raw_affiliation_string":"Nagoya Institute of Technology, Japan","institution_ids":["https://openalex.org/I197274945"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5007623312"],"corresponding_institution_ids":["https://openalex.org/I197274945"],"apc_list":null,"apc_paid":null,"fwci":0.2754,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.61040757,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"104","last_page":"110"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9869999885559082,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.98580002784729,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/industrial-control-system","display_name":"Industrial control system","score":0.5480343699455261},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5400652885437012},{"id":"https://openalex.org/keywords/path","display_name":"Path (computing)","score":0.518997311592102},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.4980473518371582},{"id":"https://openalex.org/keywords/risk-assessment","display_name":"Risk assessment","score":0.45234882831573486},{"id":"https://openalex.org/keywords/control-system","display_name":"Control system","score":0.4358079731464386},{"id":"https://openalex.org/keywords/reliability-engineering","display_name":"Reliability engineering","score":0.43423566222190857},{"id":"https://openalex.org/keywords/critical-path-method","display_name":"Critical path method","score":0.42410147190093994},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.37454983592033386},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2975662350654602},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.21834075450897217},{"id":"https://openalex.org/keywords/systems-engineering","display_name":"Systems engineering","score":0.207932710647583},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.15259531140327454},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.11920401453971863},{"id":"https://openalex.org/keywords/electrical-engineering","display_name":"Electrical engineering","score":0.09359318017959595},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.0835191011428833}],"concepts":[{"id":"https://openalex.org/C40071531","wikidata":"https://www.wikidata.org/wiki/Q2513962","display_name":"Industrial control system","level":3,"score":0.5480343699455261},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5400652885437012},{"id":"https://openalex.org/C2777735758","wikidata":"https://www.wikidata.org/wiki/Q817765","display_name":"Path (computing)","level":2,"score":0.518997311592102},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.4980473518371582},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.45234882831573486},{"id":"https://openalex.org/C17500928","wikidata":"https://www.wikidata.org/wiki/Q959968","display_name":"Control system","level":2,"score":0.4358079731464386},{"id":"https://openalex.org/C200601418","wikidata":"https://www.wikidata.org/wiki/Q2193887","display_name":"Reliability engineering","level":1,"score":0.43423566222190857},{"id":"https://openalex.org/C115874739","wikidata":"https://www.wikidata.org/wiki/Q825377","display_name":"Critical path method","level":2,"score":0.42410147190093994},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.37454983592033386},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2975662350654602},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.21834075450897217},{"id":"https://openalex.org/C201995342","wikidata":"https://www.wikidata.org/wiki/Q682496","display_name":"Systems engineering","level":1,"score":0.207932710647583},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.15259531140327454},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.11920401453971863},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.09359318017959595},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0835191011428833}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3460824.3460859","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460824.3460859","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460824.3460859","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 3rd International Conference on Management Science and Industrial Engineering","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3460824.3460859","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460824.3460859","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460824.3460859","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 3rd International Conference on Management Science and Industrial Engineering","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9","score":0.41999998688697815}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3186673178.pdf","grobid_xml":"https://content.openalex.org/works/W3186673178.grobid-xml"},"referenced_works_count":7,"referenced_works":["https://openalex.org/W1658157971","https://openalex.org/W2131875370","https://openalex.org/W2317533934","https://openalex.org/W2561790180","https://openalex.org/W2600332792","https://openalex.org/W2604458029","https://openalex.org/W4236402571"],"related_works":["https://openalex.org/W2365007040","https://openalex.org/W1970519101","https://openalex.org/W2045633099","https://openalex.org/W1910575119","https://openalex.org/W2486991799","https://openalex.org/W2110796433","https://openalex.org/W3155069932","https://openalex.org/W1993066969","https://openalex.org/W2382834095","https://openalex.org/W2615607975"],"abstract_inverted_index":{"In":[0,131],"cyberattacks":[1],"against":[2],"Industrial":[3],"Control":[4],"Systems":[5],"(ICS),":[6],"one":[7],"of":[8,12,49,58,146,174,185,197,216],"the":[9,47,55,82,117,144,160,171,182,195,214,217,221],"final":[10],"goals":[11],"attackers":[13],"is":[14],"to":[15,22,37,46,110,123,142,163,220],"impair":[16],"ICS":[17,20,96,99,151,161,188],"operations.":[18],"Recent":[19],"tend":[21],"be":[23,68,73,87],"connected":[24],"with":[25,32],"other":[26],"networks":[27],"and":[28,41,112,121,128,169,213],"are":[29,97],"often":[30],"implemented":[31],"common":[33],"technologies":[34],"in":[35,104,159,201],"order":[36],"increase":[38,54],"production":[39],"efficiency":[40],"reduce":[42],"costs.":[43],"This":[44,153],"leads":[45],"creation":[48],"new":[50],"attack":[51,126,129,167,176,218],"surfaces":[52],"that":[53,199,209],"cyber":[56],"risks":[57],"these":[59],"systems.":[60],"Although":[61],"preventing":[62],"system":[63],"intrusion":[64],"without":[65],"fault":[66],"could":[67],"difficult,":[69],"if":[70],"attacks":[71,148],"can":[72,86],"prevented":[74],"at":[75],"an":[76,136,186],"early":[77],"stage":[78],"before":[79],"they":[80,113],"reach":[81],"physical":[83],"world,":[84],"damage":[85],"minimized.":[88],"Thus,":[89],"appropriate":[90],"cybersecurity":[91],"risk":[92,100,139,145,172,183],"assessment":[93,101,140],"methods":[94,102],"for":[95],"necessary.":[98],"proposed":[103],"previous":[105],"research":[106],"require":[107],"more":[108],"time":[109],"administer,":[111],"heavily":[114],"depend":[115],"on":[116,149],"analysts\u2019":[118],"particular":[119],"expertise":[120],"skill":[122],"efficiently":[124],"examine":[125],"scenarios":[127],"paths.":[130],"this":[132],"research,":[133],"we":[134],"propose":[135],"efficient":[137],"quantitative":[138],"method":[141,154],"evaluate":[143],"possible":[147,166],"critical":[150,222],"devices.":[152,223],"uses":[155],"packet":[156],"capture":[157],"data":[158],"network":[162],"automatically":[164],"enumerate":[165],"paths":[168,219],"calculates":[170],"level":[173,184],"each":[175],"path.":[177],"It":[178],"then":[179],"comprehensively":[180],"evaluates":[181],"entire":[187],"by":[189],"utilizing":[190],"multiple":[191],"metrics":[192],"such":[193],"as":[194],"severity":[196],"vulnerabilities":[198],"exist":[200],"specific":[202],"devices":[203],"or":[204],"communication":[205],"methods,":[206],"security":[207],"measures":[208],"have":[210],"been":[211],"taken,":[212],"features":[215]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}