The devil is in the (implementation) details: an empirical analysis of OAuth SSO systems ST Sun, K Beznosov Proceedings of the 2012 ACM conference on Computer and communications …, 2012 | 300 | 2012 |
What makes users refuse web single sign-on? An empirical investigation of OpenID ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov Proceedings of the seventh symposium on usable privacy and security, 1-20, 2011 | 142 | 2011 |
A billion keys, but few locks: the crisis of web single sign-on ST Sun, Y Boshmaf, K Hawkey, K Beznosov Proceedings of the 2010 new security paradigms workshop, 61-72, 2010 | 87 | 2010 |
Android rooting: Methods, detection, and evasion ST Sun, A Cuadros, K Beznosov Proceedings of the 5th Annual ACM CCS Workshop on Security and Privacy in …, 2015 | 82 | 2015 |
Systematically breaking and fixing OpenID security: Formal analysis, semi-automated empirical evaluation, and practical countermeasures ST Sun, K Hawkey, K Beznosov Computers & Security 31 (4), 465-483, 2012 | 72 | 2012 |
Investigating users’ perspectives of web single sign-on: Conceptual gaps and acceptance model ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov ACM Transactions on Internet Technology (TOIT) 13 (1), 1-35, 2013 | 43 | 2013 |
Classification of SQL injection attacks ST Sun, TH Wei, S Liu, S Lau University of British Columbia, Term Project, 2007 | 22 | 2007 |
Secure web 2.0 content sharing beyond walled gardens ST Sun, K Hawkey, K Beznosov 2009 Annual Computer Security Applications Conference, 409-418, 2009 | 20 | 2009 |
OpenIDemail enabled browser: towards fixing the broken web single sign-on triangle ST Sun, K Hawkey, K Beznosov Proceedings of the 6th ACM workshop on Digital identity management, 49-58, 2010 | 19 | 2010 |
OpenID-enabled browser: towards usable and secure web single sign-on ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov CHI'11 Extended Abstracts on Human Factors in Computing Systems, 1291-1296, 2011 | 10 | 2011 |
Decoupling data-at-rest encryption and smartphone locking with wearable devices I Muslukhov, ST Sun, P Wijesekera, Y Boshmaf, K Beznosov Pervasive and Mobile Computing 32, 26-34, 2016 | 8 | 2016 |
Simple but not secure: an empirical security analysis of OAuth 2.0-based single sign-on systems ST Sun Proceedings of ACM Conference on Computer and Communications, 2012 | 6 | 2012 |
Sqlprevent: Effective dynamic detection and prevention of sql injection attacks without access to the application source code ST Sun, K Beznosov Technical Report, 2008 | 6 | 2008 |
Open problems in web 2.0 user content sharing ST Sun, K Beznosov iNetSec 2009–Open Research Problems in Network Security: IFIP WG 11.4 …, 2009 | 5 | 2009 |
Retrofitting existing web applications with effective dynamic protection against sql injection attacks ST Sun, K Beznosov Security-Aware Systems Applications and Software Development Methods, 169-189, 2012 | 4 | 2012 |
Towards Enabling Web 2.0 Content Sharing beyond Walled Gardens ST Sun, K Hawkey, K Beznosov 2009 International Conference on Computational Science and Engineering 4 …, 2009 | 3 | 2009 |
Poster: Towards Secure Web 2.0 User Content Sharing Beyond Walled Gardens ST Sun, K Beznosov | 1 | 2009 |
SQLPrevent: Effective dynamic detection and prevention of SQL injection ST Sun, K Beznosov Technical report, March, 2009 | 1 | 2009 |
Poster: Toward Enabling Secure Web 2.0 Content Sharing Beyond Walled Gardens ST Sun, K Beznosov | | |
Poster: OpenIDemail Enabled Browser ST Sun, K Beznosov | | |