{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,19]],"date-time":"2025-11-19T07:09:57Z","timestamp":1763536197803,"version":"3.40.3"},"publisher-location":"Cham","reference-count":56,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031514784"},{"type":"electronic","value":"9783031514791"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-51479-1_12","type":"book-chapter","created":{"date-parts":[[2024,1,11]],"date-time":"2024-01-11T07:02:33Z","timestamp":1704956553000},"page":"222-242","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["The Grant Negotiation and\u00a0Authorization Protocol: Attacking, Fixing, and\u00a0Verifying an\u00a0Emerging Standard"],"prefix":"10.1007","author":[{"given":"Florian","family":"Helmschmidt","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5618-5663","authenticated-orcid":false,"given":"Pedram","family":"Hosseyni","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9071-9312","authenticated-orcid":false,"given":"Ralf","family":"K\u00fcsters","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6032-087X","authenticated-orcid":false,"given":"Klaas","family":"Pruiksma","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6019-7130","authenticated-orcid":false,"given":"Clara","family":"Waldmann","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4729-0629","authenticated-orcid":false,"given":"Tim","family":"W\u00fcrtele","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,1,12]]},"reference":[{"unstructured":"Arnaboldi, L., Tschofenig, H.: A formal model for delegated authorization of IoT devices using ace-oauth. In: 4th OAuth Security Workshop (2019). https:\/\/homepages.inf.ed.ac.uk\/larnibol\/img\/publications\/Paper-03.pdf","key":"12_CR1"},{"unstructured":"Axeland, A., Oueidat, O.: Security analysis of attack surfaces on the grant negotiation and authorization protocol, Master\u2019s thesis, Chalmers University of Technology, University of Gothenburg (2021). https:\/\/odr.chalmers.se\/items\/7d36a5d4-c295-4270-886b-d5ed1154a8e8","key":"12_CR2"},{"unstructured":"Backman, A., Richer, J., Sporny, M.: HTTP message signatures. Internet-Draft draft-ietf-httpbis-message-signatures-15, Internet Engineering Task Force (2022). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-httpbis-message-signatures\/15\/, work in Progress","key":"12_CR3"},{"issue":"4","key":"12_CR4","doi-asserted-by":"publisher","first-page":"601","DOI":"10.3233\/JCS-140503","volume":"22","author":"C Bansal","year":"2014","unstructured":"Bansal, C., Bhargavan, K., Delignat-Lavaud, A., Maffeis, S.: Discovering concrete attacks on website authorization by formal analysis. J. Comput. Secur. 22(4), 601\u2013657 (2014)","journal-title":"J. Comput. Secur."},{"doi-asserted-by":"crossref","unstructured":"Bansal, C., Bhargavan, K., Maffeis, S.: Discovering concrete attacks on website authorization by formal analysis. In: Chong, S. (ed.) 25th IEEE Computer Security Foundations Symposium, CSF 2012, pp. 247\u2013262. IEEE Computer Society (2012)","key":"12_CR5","DOI":"10.1109\/CSF.2012.27"},{"doi-asserted-by":"publisher","unstructured":"Bertocci, V.: JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens. RFC 9068 (2021). https:\/\/doi.org\/10.17487\/RFC9068, https:\/\/www.rfc-editor.org\/info\/rfc9068","key":"12_CR6","DOI":"10.17487\/RFC9068"},{"doi-asserted-by":"crossref","unstructured":"Blanchet, B.: An efficient cryptographic protocol verifier based on prolog rules. In: Proceedings of the 14th IEEE Computer Security Foundations Workshop (CSFW-14), pp. 82\u201396. IEEE Computer Society (2001)","key":"12_CR7","DOI":"10.1109\/CSFW.2001.930138"},{"doi-asserted-by":"publisher","unstructured":"Campbell, B., Bradley, J., Sakimura, N., Lodderstedt, T.: OAuth 2.0 mutual-TLS client authentication and certificate-bound access tokens. RFC 8705 (2020). https:\/\/doi.org\/10.17487\/RFC8705, https:\/\/www.rfc-editor.org\/info\/rfc8705","key":"12_CR8","DOI":"10.17487\/RFC8705"},{"unstructured":"cwaldm: Issue 56 - RS validation of access token. GitHub Issue (2022). https:\/\/github.com\/ietf-wg-gnap\/gnap-resource-servers\/issues\/56","key":"12_CR9"},{"doi-asserted-by":"publisher","unstructured":"Denniss, W., Bradley, J., Jones, M., Tschofenig, H.: OAuth 2.0 device authorization grant. RFC 8628 (2019). https:\/\/doi.org\/10.17487\/RFC8628, https:\/\/rfc-editor.org\/rfc\/rfc8628.txt","key":"12_CR10","DOI":"10.17487\/RFC8628"},{"doi-asserted-by":"publisher","unstructured":"Do, Q.H., Hosseyni, P., K\u00fcsters, R., Schmitz, G., Wenzler, N., W\u00fcrtele, T.: A formal security analysis of the W3C web payment APIs: attacks and verification. In: 43rd IEEE Symposium on Security and Privacy (S &P 2022), vol. 1, pp. 134\u2013153. IEEE Computer Society (2022). https:\/\/doi.org\/10.1109\/SP46214.2022.9833681","key":"12_CR11","DOI":"10.1109\/SP46214.2022.9833681"},{"unstructured":"Dropbox Platform Team: Oauth guide. https:\/\/developers.dropbox.com\/oauth-guide (2020)","key":"12_CR12"},{"unstructured":"Fett, D.: FAPI 2.0 attacker model, draft 02. OpenID Foundation (2022). https:\/\/openid.net\/specs\/fapi-2_0-attacker-model-02.html","key":"12_CR13"},{"doi-asserted-by":"publisher","unstructured":"Fett, D., Hosseyni, P., K\u00fcsters, R.: An extensive formal security analysis of the OpenID financial-grade API. In: 40th IEEE Symposium on Security and Privacy (S &P 2019), pp. 1054\u20131072. IEEE Computer Society, Los Alamitos, CA, USA (2019). https:\/\/doi.org\/10.1109\/SP.2019.00067, https:\/\/doi.ieeecomputersociety.org\/10.1109\/SP.2019.00067","key":"12_CR14","DOI":"10.1109\/SP.2019.00067"},{"doi-asserted-by":"crossref","unstructured":"Fett, D., K\u00fcsters, R., Schmitz, G.: An expressive model for the web infrastructure: definition and application to the BrowserID SSO system. In: 35th IEEE Symposium on Security and Privacy (S &P 2014), pp. 673\u2013688. IEEE Computer Society (2014)","key":"12_CR15","DOI":"10.1109\/SP.2014.49"},{"key":"12_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"43","DOI":"10.1007\/978-3-319-24174-6_3","volume-title":"Computer Security \u2013 ESORICS 2015","author":"D Fett","year":"2015","unstructured":"Fett, D., K\u00fcsters, R., Schmitz, G.: Analyzing the BrowserID SSO system with primary identity providers using an expressive model of the web. In: Pernul, G., Ryan, P.Y.A., Weippl, E. (eds.) ESORICS 2015. LNCS, vol. 9326, pp. 43\u201365. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-24174-6_3"},{"doi-asserted-by":"crossref","unstructured":"Fett, D., K\u00fcsters, R., Schmitz, G.: SPRESSO: a secure, privacy-respecting single sign-on system for the web. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, Denver, CO, USA, October 12\u20136, 2015, pp. 1358\u20131369. ACM (2015)","key":"12_CR17","DOI":"10.1145\/2810103.2813726"},{"doi-asserted-by":"crossref","unstructured":"Fett, D., K\u00fcsters, R., Schmitz, G.: A comprehensive formal security analysis of OAuth 2.0. In: Proceedings of the 23nd ACM SIGSAC Conference on Computer and Communications Security (CCS 2016), pp. 1204\u20131215. ACM (2016)","key":"12_CR18","DOI":"10.1145\/2976749.2978385"},{"doi-asserted-by":"crossref","unstructured":"Fett, D., K\u00fcsters, R., Schmitz, G.: The web SSO standard OpenID connect: in-depth formal security analysis and security guidelines. In: IEEE 30th Computer Security Foundations Symposium (CSF 2017). IEEE Computer Society (2017)","key":"12_CR19","DOI":"10.1109\/CSF.2017.20"},{"unstructured":"Fett, D., K\u00fcsters, R., Schmitz, G.: The web infrastructure model (WIM) (2022). https:\/\/www.sec.uni-stuttgart.de\/research\/wim\/WIM_V1.0.pdf","key":"12_CR20"},{"unstructured":"GitHub docs: authorizing oauth apps (2023). https:\/\/docs.github.com\/en\/developers\/apps\/building-oauth-apps\/authorizing-oauth-apps","key":"12_CR21"},{"unstructured":"Google: Oauth 2.0 for tv and limited-input device applications (2022). https:\/\/developers.google.com\/identity\/protocols\/oauth2\/limited-input-device","key":"12_CR22"},{"unstructured":"Google: using oauth 2.0 to access google APIs (2022). https:\/\/developers.google.com\/identity\/protocols\/oauth2","key":"12_CR23"},{"doi-asserted-by":"publisher","unstructured":"Hardt (ed.), D.: The OAuth 2.0 authorization framework. RFC 6749 (2012). https:\/\/doi.org\/10.17487\/RFC6749, https:\/\/rfc-editor.org\/rfc\/rfc6749.txt","key":"12_CR24","DOI":"10.17487\/RFC6749"},{"unstructured":"Helmschmidt, F.: Issue 364 - End user\/client instance mix-up attack. GitHub Issue (2021). https:\/\/github.com\/ietf-wg-gnap\/gnap-core-protocol\/issues\/364","key":"12_CR25"},{"unstructured":"Helmschmidt, F.: Issue 390 - Clarified user presence on interaction finish methods. GitHub Commit (2022). https:\/\/github.com\/ietf-wg-gnap\/gnap-core-protocol\/pull\/390\/commits\/b028a1e363e90ad1c2711bd8244ea76e3957f935","key":"12_CR26"},{"unstructured":"Helmschmidt, F., Hosseyni, P., Kuesters, R., Pruiksma, K., Waldmann, C., W\u00fcrtele, T.: The grant negotiation and authorization protocol: attacking, fixing, and verifying an emerging standard. Cryptology ePrint Archive, Paper 2023\/1325 (2023). https:\/\/eprint.iacr.org\/2023\/1325","key":"12_CR27"},{"unstructured":"Hofmeier, X.: Formal analysis of web single-sign on protocols using TAMARIN. Bachelor\u2019s thesis, Swiss Federal Institute of Technology in Zurich, Switzerland (2019)","key":"12_CR28"},{"doi-asserted-by":"publisher","unstructured":"Jackson, D., Schechter, I., Shlyakhter, I.: Alcoa: the alloy constraint analyzer. In: Ghezzi, C., Jazayeri, M., Wolf, A.L. (eds.) Proceedings of the 22nd International Conference on on Software Engineering, ICSE 2000, Limerick Ireland, June 4\u201311, 2000, pp. 730\u2013733. ACM (2000). https:\/\/doi.org\/10.1145\/337180.337616","key":"12_CR29","DOI":"10.1145\/337180.337616"},{"doi-asserted-by":"publisher","unstructured":"Jones, M.B., Bradley, J., Sakimura, N.: JSON Web Signature (JWS). RFC 7515 (2015). https:\/\/doi.org\/10.17487\/RFC7515, https:\/\/www.rfc-editor.org\/info\/rfc7515","key":"12_CR30","DOI":"10.17487\/RFC7515"},{"unstructured":"Kasselman, P., Fett, D., Skokan, F.: Cross-device flows: security best current practice. Internet-Draft draft-ietf-oauth-cross-device-security-00, Internet Engineering Task Force (2022). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-oauth-cross-device-security\/00\/, work in Progress","key":"12_CR31"},{"unstructured":"Limited, O.B.: Open Banking UK (2022). https:\/\/www.openbanking.org.uk\/","key":"12_CR32"},{"unstructured":"Lodderstedt, T., Bradley, J., Labunets, A., Fett, D.: OAuth 2.0 security best current practice. Internet-Draft draft-ietf-oauth-security-topics-21, Internet Engineering Task Force (2022). https:\/\/datatracker.ietf.org\/doc\/html\/draft-ietf-oauth-security-topics-21, work in Progress","key":"12_CR33"},{"doi-asserted-by":"publisher","unstructured":"Lodderstedt, T., Campbell, B., Sakimura, N., Tonge, D., Skokan, F.: OAuth 2.0 pushed authorization requests. RFC 9126 (2021). https:\/\/doi.org\/10.17487\/RFC9126, https:\/\/www.rfc-editor.org\/info\/rfc9126","key":"12_CR34","DOI":"10.17487\/RFC9126"},{"unstructured":"Machulak, M., Richer, J.: User-managed access (UMA) 2.0 grant for OAuth 2.0 authorization (2018). https:\/\/docs.kantarainitiative.org\/uma\/wg\/rec-oauth-uma-grant-2.0.html","key":"12_CR35"},{"doi-asserted-by":"crossref","unstructured":"Mainka, C., Mladenov, V., Schwenk, J., Wich, T.: SoK: single sign-on security \u2014 an evaluation of OpenID connect. In: IEEE European Symposium on Security and Privacy, EuroS &P 2017, Paris, France, April 26\u201328, 2017 (2017)","key":"12_CR36","DOI":"10.1109\/EuroSP.2017.32"},{"key":"12_CR37","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"696","DOI":"10.1007\/978-3-642-39799-8_48","volume-title":"Computer Aided Verification","author":"S Meier","year":"2013","unstructured":"Meier, S., Schmidt, B., Cremers, C., Basin, D.: The TAMARIN prover for the symbolic analysis of security protocols. In: Sharygina, N., Veith, H. (eds.) CAV 2013. LNCS, vol. 8044, pp. 696\u2013701. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-39799-8_48"},{"unstructured":"Meta for developers documents: facebook login for the web with the JavaScript SDK (2023). https:\/\/developers.facebook.com\/docs\/facebook-login\/web\/","key":"12_CR38"},{"unstructured":"Mladenov, V., Mainka, C., Krautwald, J., Feldmann, F., Schwenk, J.: On the security of modern single sign-on protocols: second-order vulnerabilities in OpenID connect. CoRR abs\/1508.04324v2, http:\/\/arxiv.org\/abs\/1508.04324v2 (2016)","key":"12_CR39"},{"doi-asserted-by":"crossref","unstructured":"Pai, S., Sharma, Y., Kumar, S., Pai, R.M., Singh, S.: Formal verification of OAuth 2.0 using alloy framework. In: CSNT 2011 Proceedings of the 2011 International Conference on Communication Systems and Network Technologies, pp. 655\u2013659. Proceedings of the International Conference on Communication Systems and Network Technologies (2011)","key":"12_CR40","DOI":"10.1109\/CSNT.2011.141"},{"doi-asserted-by":"publisher","unstructured":"Rescorla, E.: The transport layer security (TLS) protocol version 1.3. RFC 8446 (2018). https:\/\/doi.org\/10.17487\/RFC8446, https:\/\/www.rfc-editor.org\/info\/rfc8446","key":"12_CR41","DOI":"10.17487\/RFC8446"},{"unstructured":"Richer, J.: Moving on from OAuth 2: a proposal (2018). https:\/\/justinsecurity.medium.com\/moving-on-from-oauth-2-629a00133ade","key":"12_CR42"},{"doi-asserted-by":"crossref","unstructured":"Richer, J., Imbault, F.: Grant negotiation and authorization protocol. Internet-Draft draft-ietf-gnap-core-protocol-15, Internet Engineering Task Force (2023). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-gnap-core-protocol\/15\/, work in Progress","key":"12_CR43","DOI":"10.17487\/RFC9635"},{"doi-asserted-by":"crossref","unstructured":"Richer, J., Imbault, F.: Grant negotiation and authorization protocol resource server connections. Internet-Draft draft-ietf-gnap-resource-servers-03, Internet Engineering Task Force (2023). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-gnap-resource-servers\/03\/, work in Progress","key":"12_CR44","DOI":"10.17487\/RFC9635"},{"unstructured":"Richer, J., Parecki, A., Imbault, F.: Grant negotiation and authorization protocol. Internet-Draft draft-ietf-gnap-core-protocol-08, Internet Engineering Task Force (2021). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-gnap-core-protocol\/08\/, work in Progress","key":"12_CR45"},{"unstructured":"Richer, J., Parecki, A., Imbault, F.: Grant negotiation and authorization protocol resource server connections. Internet-Draft draft-ietf-gnap-resource-servers-02, Internet Engineering Task Force (2022). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-gnap-resource-servers\/02\/, work in Progress","key":"12_CR46"},{"doi-asserted-by":"publisher","unstructured":"Richer (ed.), J.: OAuth 2.0 token introspection. RFC 7662 (2015). https:\/\/doi.org\/10.17487\/RFC7662, https:\/\/rfc-editor.org\/rfc\/rfc7662.txt","key":"12_CR47","DOI":"10.17487\/RFC7662"},{"doi-asserted-by":"publisher","unstructured":"Richer (ed.), J., Jones, M., Bradley, J., Machulak, M.: OAuth 2.0 dynamic client registration management protocol. RFC 7592 (2015). https:\/\/doi.org\/10.17487\/RFC7592, https:\/\/rfc-editor.org\/rfc\/rfc7592.txt","key":"12_CR48","DOI":"10.17487\/RFC7592"},{"doi-asserted-by":"publisher","unstructured":"Richer, J., Jones, M., Bradley, J., Machulak, M., Hunt, P.: OAuth 2.0 dynamic client registration protocol. RFC 7591 (2015). https:\/\/doi.org\/10.17487\/RFC7591, https:\/\/rfc-editor.org\/rfc\/rfc7591.txt","key":"12_CR49","DOI":"10.17487\/RFC7591"},{"unstructured":"Sakimura, N., Bradley, J., Jay, E.: Financial-grade API security profile 1.0 - part 1: baseline (2021). https:\/\/openid.net\/specs\/openid-financial-api-part-1-1_0.html, openID Foundation","key":"12_CR50"},{"unstructured":"Sakimura, N., Bradley, J., Jay, E.: Financial-grade API security profile 1.0 - part 2: advanced (2021). https:\/\/openid.net\/specs\/openid-financial-api-part-2-1_0.html, openID Foundation","key":"12_CR51"},{"unstructured":"Sakimura, N., Bradley, J., Jones, M., de Medeiros, B., Mortimore, C.: OpenID connect core 1.0 incorporating errata set 1 (2014). http:\/\/openid.net\/specs\/openid-connect-core-1_0.html, openID Foundation","key":"12_CR52"},{"doi-asserted-by":"publisher","unstructured":"Sakimura (ed.), N., Bradley, J., Agarwal, N.: Proof key for code exchange by OAuth public clients. RFC 7636 (2015). https:\/\/doi.org\/10.17487\/RFC7636, https:\/\/rfc-editor.org\/rfc\/rfc7636.txt","key":"12_CR53","DOI":"10.17487\/RFC7636"},{"doi-asserted-by":"publisher","unstructured":"Seitz, L., Selander, G., Wahlstroem, E., Erdtman, S., Tschofenig, H.: Authentication and authorization for constrained environments using the OAuth 2.0 framework (ACE-OAuth). RFC 9200 (2022). https:\/\/doi.org\/10.17487\/RFC9200, https:\/\/www.rfc-editor.org\/info\/rfc9200","key":"12_CR54","DOI":"10.17487\/RFC9200"},{"unstructured":"Sheffer, Y.: GNAP core protocol - publication has been requested. GNAP Mailing List (2023). https:\/\/mailarchive.ietf.org\/arch\/msg\/txauth\/4q2W9cTho2chk4IunHKXztcorO0\/","key":"12_CR55"},{"doi-asserted-by":"publisher","unstructured":"Yang, R., Li, G., Lau, W.C., Zhang, K., Hu, P.: Model-based security testing: an empirical study on OAuth 2.0 implementations. In: Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security. ACM (2016). https:\/\/doi.org\/10.1145\/2897845.2897874","key":"12_CR56","DOI":"10.1145\/2897845.2897874"}],"container-title":["Lecture Notes in Computer Science","Computer Security \u2013 ESORICS 2023"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-51479-1_12","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,11,7]],"date-time":"2024-11-07T21:46:21Z","timestamp":1731015981000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-51479-1_12"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031514784","9783031514791"],"references-count":56,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-51479-1_12","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"12 January 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"The Hague","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"The Netherlands","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"25 September 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29 September 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/esorics2023.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"478","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"93","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"19% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3-4","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"10","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}