Home > Research > Publications & Outputs > Failures of security APIs

Research

Links

View graph of relations

Failures of security APIs: a new case

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Published

Standard

Failures of security APIs: a new case. / Algwil, Abdalnaser; Yan, Jeff.
Financial Cryptography and Data Security: 2016 Proceedings. New York: Springer, 2016. (Lecture Notes in Computer Science).

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Harvard

Algwil, A & Yan, J 2016, Failures of security APIs: a new case. in Financial Cryptography and Data Security: 2016 Proceedings. Lecture Notes in Computer Science, Springer, New York, Financial Cryptography and Data Security 2016, Christ Church, Barbados, 22/02/16. <http://fc16.ifca.ai/preproceedings/17_Algwil.pdf>

APA

Algwil, A., & Yan, J. (2016). Failures of security APIs: a new case. In Financial Cryptography and Data Security: 2016 Proceedings (Lecture Notes in Computer Science). Springer. http://fc16.ifca.ai/preproceedings/17_Algwil.pdf

Vancouver

Algwil A, Yan J. Failures of security APIs: a new case. In Financial Cryptography and Data Security: 2016 Proceedings. New York: Springer. 2016. (Lecture Notes in Computer Science).

Author

Algwil, Abdalnaser ; Yan, Jeff. / Failures of security APIs : a new case. Financial Cryptography and Data Security: 2016 Proceedings. New York : Springer, 2016. (Lecture Notes in Computer Science).

Bibtex

@inproceedings{04b7bba80e0b4ad28335fd9e775ce2de,
title = "Failures of security APIs: a new case",
abstract = "We report novel API attacks on a Captcha web service, and discuss lessons that we have learned. In so doing, we expand the horizon of security APIs research by extending it to a new setting. We also show that system architecture analysis is useful both for identifying vulnerabilities in security APIs and for fixing them.",
author = "Abdalnaser Algwil and Jeff Yan",
year = "2016",
month = feb,
day = "23",
language = "English",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
booktitle = "Financial Cryptography and Data Security",
note = "Financial Cryptography and Data Security 2016 ; Conference date: 22-02-2016 Through 26-02-2016",
url = "http://fc16.ifca.ai/",

}

RIS

TY - GEN

T1 - Failures of security APIs

T2 - Financial Cryptography and Data Security 2016

AU - Algwil, Abdalnaser

AU - Yan, Jeff

PY - 2016/2/23

Y1 - 2016/2/23

N2 - We report novel API attacks on a Captcha web service, and discuss lessons that we have learned. In so doing, we expand the horizon of security APIs research by extending it to a new setting. We also show that system architecture analysis is useful both for identifying vulnerabilities in security APIs and for fixing them.

AB - We report novel API attacks on a Captcha web service, and discuss lessons that we have learned. In so doing, we expand the horizon of security APIs research by extending it to a new setting. We also show that system architecture analysis is useful both for identifying vulnerabilities in security APIs and for fixing them.

M3 - Conference contribution/Paper

T3 - Lecture Notes in Computer Science

BT - Financial Cryptography and Data Security

PB - Springer

CY - New York

Y2 - 22 February 2016 through 26 February 2016

ER -