{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,8]],"date-time":"2026-02-08T15:52:04Z","timestamp":1770565924334,"version":"3.49.0"},"publisher-location":"Cham","reference-count":11,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031651748","type":"print"},{"value":"9783031651755","type":"electronic"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-65175-5_21","type":"book-chapter","created":{"date-parts":[[2024,7,25]],"date-time":"2024-07-25T14:43:01Z","timestamp":1721918581000},"page":"294-307","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Session Replication Attack Through QR Code Sniffing in\u00a0Passkey CTAP Registration"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0006-2033-4341","authenticated-orcid":false,"given":"Donghyun","family":"Kim","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-0911-3282","authenticated-orcid":false,"given":"Seungmin","family":"Kim","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4713-9486","authenticated-orcid":false,"given":"Gwonsang","family":"Ryu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1438-0265","authenticated-orcid":false,"given":"Daeseon","family":"Choi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,7,26]]},"reference":[{"key":"21_CR1","unstructured":"Android Source: Mac randomization behavior. https:\/\/source.android.com\/docs\/core\/connect\/wifi-mac-randomization-behavior"},{"key":"21_CR2","unstructured":"Apple Developer: Meet passkeys - wwdc22. https:\/\/developer.apple.com\/videos\/play"},{"key":"21_CR3","unstructured":"Apple Developer: Passkeys. https:\/\/developer.apple.com\/passkeys\/"},{"key":"21_CR4","unstructured":"Apple Developer: Question about passkey fido ctap protocol. https:\/\/developer.apple.com\/forums\/thread\/727059"},{"key":"21_CR5","unstructured":"Hardwear.io: Bluetooth le link layer relay attacks (2022). https:\/\/hardwear.io\/netherlands-2022\/presentation\/bluetooth-LE-link-layer-relay-attacks.pdf"},{"key":"21_CR6","doi-asserted-by":"crossref","unstructured":"Martin, J., et al.: A study of mac address randomization in mobile devices and when it fails. arXiv preprint arXiv:1703.02874 (2017)","DOI":"10.1515\/popets-2017-0054"},{"issue":"5","key":"21_CR7","doi-asserted-by":"publisher","first-page":"571","DOI":"10.1109\/WCL.2013.072513.130428","volume":"2","author":"J Milliken","year":"2013","unstructured":"Milliken, J., Selis, V., Yap, K.M., Marshall, A.: Impact of metric selection on wireless deauthentication dos attack performance. IEEE Wireless Commu. Lett. 2(5), 571\u2013574 (2013)","journal-title":"IEEE Wireless Commu. Lett."},{"key":"21_CR8","doi-asserted-by":"crossref","unstructured":"Papapanagiotou, I., Nahum, E.M., Pappas, V.: Smartphones vs. laptops: comparing web browsing behavior and the implications for caching. In: Proceedings of the 12th ACM SIGMETRICS\/PERFORMANCE Joint International Conference on Measurement and Modeling of Computer Systems, pp. 423\u2013424 (2012)","DOI":"10.1145\/2254756.2254824"},{"key":"21_CR9","doi-asserted-by":"publisher","unstructured":"Pearman, S., et al.: Let\u2019s go in for a closer look: observing passwords in their natural habitat. In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, pp. 295\u2013310. CCS 2017, Association for Computing Machinery, New York, NY, USA (2017). https:\/\/doi.org\/10.1145\/3133956.3133973","DOI":"10.1145\/3133956.3133973"},{"key":"21_CR10","doi-asserted-by":"publisher","unstructured":"Qian, C., Koo, H., Oh, C., Kim, T., Lee, W.: Slimium: debloating the chromium browser with feature subsetting. In: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, pp. 461\u2013476. CCS 2020, Association for Computing Machinery, New York, NY, USA (2020). https:\/\/doi.org\/10.1145\/3372297.3417866","DOI":"10.1145\/3372297.3417866"},{"key":"21_CR11","doi-asserted-by":"crossref","unstructured":"Staat, P., Jansen, K., Zenger, C., Elders-Boll, H., Paar, C.: Analog physical-layer relay attacks with application to bluetooth and phase-based ranging. In: Proceedings of the 15th ACM Conference on Security and Privacy in Wireless and Mobile Networks, pp. 60\u201372 (2022)","DOI":"10.1145\/3507657.3528536"}],"container-title":["IFIP Advances in Information and Communication Technology","ICT Systems Security and Privacy Protection"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-65175-5_21","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,7,25]],"date-time":"2024-07-25T14:46:09Z","timestamp":1721918769000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-65175-5_21"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031651748","9783031651755"],"references-count":11,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-65175-5_21","relation":{},"ISSN":["1868-4238","1868-422X"],"issn-type":[{"value":"1868-4238","type":"print"},{"value":"1868-422X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"26 July 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SEC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"IFIP International Conference on ICT Systems Security and Privacy Protection","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Edinburgh","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Kingdom","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12 June 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 June 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"39","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"sec2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/ifipsec2024.co.uk\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}