Login / Signup
SCORED@CCS
2023
2023
2023
Keyphrases
Publications
2023
Tamas K. Lengyel
Estimating Security Risk Through Repository Mining.
SCORED@CCS
(2023)
Yesenia Yser
The Knockout of the Century: Cyber Resiliency through the Arts.
SCORED@CCS
(2023)
Tanmay Singla
,
Dharun Anandayuvaraj
,
Kelechi G. Kalu
,
Taylor R. Schorlemmer
,
James C. Davis
An Empirical Study on Using Large Language Models to Analyze Software Supply Chain Security Failures.
SCORED@CCS
(2023)
Behnaz Hassanshahi
,
Trong Nhan Mai
,
Alistair Michael
,
Benjamin Selwyn-Smith
,
Sophie Bates
,
Padmanabhan Krishnan
Macaron: A Logic-based Framework for Software Supply Chain Security Assurance.
SCORED@CCS
(2023)
Alex Crawford
,
Eugene Yakubovich
,
Rob Szumski
Enforcing SBOMs through the Linux kernel with eBPF and IMA.
SCORED@CCS
(2023)
Fabian Niklas Froh
,
Matías Federico Gobbi
,
Johannes Kinder
Differential Static Analysis for Detecting Malicious Updates to Open Source Packages.
SCORED@CCS
(2023)
Sufiyan Bukhari
,
Benjamin Tan
,
Lorenzo De Carli
Distinguishing AI- and Human-Generated Code: A Case Study.
SCORED@CCS
(2023)
Musard Balliu
,
Benoit Baudry
,
Sofia Bobadilla
,
Mathias Ekstedt
,
Martin Monperrus
,
Javier Ron
,
Aman Sharma
,
Gabriel Skoglund
,
César Soto-Valero
,
Martin Wittlinger
Software Bill of Materials in Java.
SCORED@CCS
(2023)
Piergiorgio Ladisa
,
Merve Sahin
,
Serena Elisa Ponta
,
Marco Rosa
,
Matias Martinez
,
Olivier Barais
The Hitchhiker's Guide to Malicious Third-Party Dependencies.
SCORED@CCS
(2023)
Proceedings of the 2023 Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED 2023, Copenhagen, Denmark, 30 November 2023
SCORED@CCS
(2023)
Russ Cox
Open Source Supply Chain Security at Google.
SCORED@CCS
(2023)
Thomas Hennen
Scalable Policies for Supply Chain Security.
SCORED@CCS
(2023)
William Woodruff
What Does it Look Like to Code-sign for an Entire Packaging Ecosystem?
SCORED@CCS
(2023)
Elizabeth Wyss
,
Lorenzo De Carli
,
Drew Davidson
(Nothing But) Many Eyes Make All Bugs Shallow.
SCORED@CCS
(2023)
2022
Vijay Prakash
,
Sicheng Xie
,
Danny Yuxing Huang
Inferring Software Update Practices on Smart Home IoT Devices Through User Agent Analysis.
SCORED@CCS
(2022)
Wenxin Jiang
,
Nicholas Synovic
,
Rohan Sethi
,
Aryan Indarapu
,
Matt Hyatt
,
Taylor R. Schorlemmer
,
George K. Thiruvathukal
,
James C. Davis
An Empirical Study of Artifacts and Security Risks in the Pre-trained Model Supply Chain.
SCORED@CCS
(2022)
Trevor Rosen
Strength, Trust, and Harmony: The Challenges and Opportunities of Software Supply Chain Security.
SCORED@CCS
(2022)
Piergiorgio Ladisa
,
Henrik Plate
,
Matias Martinez
,
Olivier Barais
,
Serena Elisa Ponta
Risk Explorer for Software Supply Chains: Understanding the Attack Surface of Open-Source based Software Development.
SCORED@CCS
(2022)
Kaspar Rosager Ludvigsen
,
Shishir Nagaraja
,
Angela Daly
Preventing or Mitigating Adversarial Supply Chain Attacks: A Legal Analysis.
SCORED@CCS
(2022)
Joseph Hejderup
On the Use of Tests for Software Supply Chain Threats.
SCORED@CCS
(2022)
Chinenye Okafor
,
Taylor R. Schorlemmer
,
Santiago Torres-Arias
,
James C. Davis
SoK: Analysis of Software Supply Chain Security by Establishing Secure Design Properties.
SCORED@CCS
(2022)
Daniel Krohmer
,
Kunal Sharma
,
Shi Chen
Adapting Static Taint Analyzers to Software Marketplaces: A Leverage Point for Mass Vulnerability Detection?
SCORED@CCS
(2022)
Piergiorgio Ladisa
,
Henrik Plate
,
Matias Martinez
,
Olivier Barais
,
Serena Elisa Ponta
Towards the Detection of Malicious Java Packages.
SCORED@CCS
(2022)
Frederick Barr-Smith
,
Tim Blazytko
,
Richard Baker
,
Ivan Martinovic
Exorcist: Automated Differential Analysis to Detect Compromises in Closed-Source Software Supply Chains.
SCORED@CCS
(2022)
Andrew Ferraiuolo
,
Razieh Behjati
,
Tiziano Santoro
,
Ben Laurie
Policy Transparency: Authorization Logic Meets General Transparency to Prove Software Supply Chain Integrity.
SCORED@CCS
(2022)
Proceedings of the 2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED2022, Los Angeles, CA, USA, 7 November 2022
SCORED@CCS
(2022)
Nicholas Boucher
,
Ross Anderson
Talking Trojan: Analyzing an Industry-Wide Disclosure.
SCORED@CCS
(2022)
Giacomo Benedetti
,
Luca Verderame
,
Alessio Merlo
Automatic Security Assessment of GitHub Actions Workflows.
SCORED@CCS
(2022)