{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,19]],"date-time":"2026-03-19T02:49:50Z","timestamp":1773888590534,"version":"3.50.1"},"publisher-location":"Cham","reference-count":16,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031651748","type":"print"},{"value":"9783031651755","type":"electronic"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-65175-5_14","type":"book-chapter","created":{"date-parts":[[2024,7,25]],"date-time":"2024-07-25T14:43:01Z","timestamp":1721918581000},"page":"191-205","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Chain of\u00a0Trust: Unraveling References Among Common Criteria Certified Products"],"prefix":"10.1007","author":[{"given":"Adam","family":"Janovsky","sequence":"first","affiliation":[]},{"given":"\u0141ukasz","family":"Chmielewski","sequence":"additional","affiliation":[]},{"given":"Petr","family":"Svenda","sequence":"additional","affiliation":[]},{"given":"Jan","family":"Jancar","sequence":"additional","affiliation":[]},{"given":"Vashek","family":"Matyas","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2024,7,26]]},"reference":[{"key":"14_CR1","doi-asserted-by":"crossref","unstructured":"Bundesamt f\u00fcr Sicherheit in der Informationstechnik: Product certification: IT security certification scheme Common Criteria (CC), version 4.1 (2023)","DOI":"10.1007\/978-3-658-23669-4_104-1"},{"key":"14_CR2","unstructured":"Common Criteria: ISO\/IEC 15408 Information technology - Security techniques - Evaluation criteria for IT security. In: ISO\/IEC 15408-1:2022. ISO\/IEC (2022)"},{"key":"14_CR3","unstructured":"Common Criteria Recognition Arrangement Management Committee: Assurance continuity: CCRA requrements (2012)"},{"key":"14_CR4","unstructured":"Common Criteria Recognition Arrangement Management Committee: Operating procedures: Certificate validity (2021)"},{"key":"14_CR5","doi-asserted-by":"crossref","unstructured":"Decan, A., Mens, T., Claes, M.: On the topology of package dependency networks: a comparison of three programming language ecosystems. In: Proccedings of the 10th European Conference on Software Architecture Workshops, p.\u00a021. ACM (2016)","DOI":"10.1145\/2993412.3003382"},{"key":"14_CR6","doi-asserted-by":"crossref","unstructured":"Janovsky, A., Jancar, J., Svenda, P., Chmielewski, \u0141., Michalik, J., Matyas, V.: sec-certs: examining the security certification practice for better vulnerability mitigation. arXiv preprint (2023). https:\/\/www.sciencedirect.com\/science\/article\/abs\/pii\/S0167404824001974","DOI":"10.1016\/j.cose.2024.103895"},{"key":"14_CR7","unstructured":"Janovsky, A., Jancar, J., Svenda, P., et\u00a0al.: sec-certs: a tool for data scraping and analysis of security certificates from Common Criteria and FIPS 140-2\/3 frameworks (2024). https:\/\/github.com\/crocs-muni\/sec-certs\/"},{"key":"14_CR8","unstructured":"Joint Interpretation Library: Composite product evaluation for smartcards and similar devices (2018). Version 1.5.1"},{"key":"14_CR9","unstructured":"jtsec: 2022 CC statistics report (2022). https:\/\/www.jtsec.es\/files\/2022%20CC%20Statistics%20Report.pdf. Accessed 14 Feb 2024"},{"key":"14_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"132","DOI":"10.1007\/978-3-319-09770-1_12","volume-title":"Trust, Privacy, and Security in Digital Business","author":"SP Kaluvuri","year":"2014","unstructured":"Kaluvuri, S.P., Bezzi, M., Roudier, Y.: A quantitative analysis of common criteria certification practice. In: Eckert, C., Katsikas, S.K., Pernul, G. (eds.) TrustBus 2014. LNCS, vol. 8647, pp. 132\u2013143. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-09770-1_12"},{"key":"14_CR11","doi-asserted-by":"crossref","unstructured":"Liu, C., Chen, S., Fan, L., Chen, B., Liu, Y., Peng, X.: Demystifying the vulnerability propagation and its evolution via dependency trees in the NPM ecosystem. In: 44th IEEE\/ACM 44th International Conference on Software Engineering, ICSE 2022 (2022)","DOI":"10.1145\/3510003.3510142"},{"key":"14_CR12","doi-asserted-by":"crossref","unstructured":"McInnes, L., Healy, J., Melville, J.: UMAP: uniform manifold approximation and projection for dimension reduction. arXiv (2018). https:\/\/arxiv.org\/abs\/1802.03426","DOI":"10.21105\/joss.00861"},{"key":"14_CR13","doi-asserted-by":"crossref","unstructured":"Nemec, M., S\u00fds, M., Svenda, P., Klinec, D., Matyas, V.: The return of coppersmith\u2019s attack: practical factorization of widely used RSA moduli. In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS 2017, pp. 1631\u20131648. ACM (2017)","DOI":"10.1145\/3133956.3133969"},{"key":"14_CR14","unstructured":"Netherlands Scheme for Certification in the Area of IT Security (NSCIB): NSCIB application form (2020). https:\/\/tuv-nederland.nl\/assets\/files\/general-files\/2020\/01\/nst_01_nscib_application_form_v2020-01-2020-01-31.doc"},{"key":"14_CR15","doi-asserted-by":"publisher","first-page":"193","DOI":"10.1007\/978-3-319-50500-8_8","volume-title":"Smart Cards, Tokens, Security and Applications","author":"J Tierney","year":"2017","unstructured":"Tierney, J., Boswell, T.: Common criteria: origins and overview. In: Mayes, K., Markantonakis, K. (eds.) Smart Cards, Tokens, Security and Applications, pp. 193\u2013216. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-50500-8_8"},{"key":"14_CR16","unstructured":"Zimmermann, M., Staicu, C., Tenny, C., Pradel, M.: Small world with high risks: a study of security threats in the NPM ecosystem. In: Heninger, N., Traynor, P. (eds.) 28th USENIX Security Symposium, USENIX Security 2019, pp. 995\u20131010 (2019)"}],"container-title":["IFIP Advances in Information and Communication Technology","ICT Systems Security and Privacy Protection"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-65175-5_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,7,25]],"date-time":"2024-07-25T14:45:02Z","timestamp":1721918702000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-65175-5_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031651748","9783031651755"],"references-count":16,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-65175-5_14","relation":{},"ISSN":["1868-4238","1868-422X"],"issn-type":[{"value":"1868-4238","type":"print"},{"value":"1868-422X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"26 July 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SEC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"IFIP International Conference on ICT Systems Security and Privacy Protection","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Edinburgh","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Kingdom","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12 June 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 June 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"39","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"sec2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/ifipsec2024.co.uk\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}