{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,6]],"date-time":"2026-05-06T23:16:12Z","timestamp":1778109372009,"version":"3.51.4"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032160911","type":"print"},{"value":"9783032160928","type":"electronic"}],"license":[{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-16092-8_31","type":"book-chapter","created":{"date-parts":[[2026,5,6]],"date-time":"2026-05-06T23:06:36Z","timestamp":1778108796000},"page":"564-574","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Towards Zero-Knowledge Based Private and\u00a0Verifiable Software Assurance"],"prefix":"10.1007","author":[{"given":"Bj\u00f6rn","family":"Johansson","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ferhat","family":"Karakoc","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0164-1478","authenticated-orcid":false,"given":"Karl","family":"Norrman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2026,5,1]]},"reference":[{"key":"31_CR1","unstructured":"CEST \u2013 Confidential Software Security Assurance. https:\/\/cest.se"},{"key":"31_CR2","unstructured":"Common Criteria. https:\/\/www.commoncriteriaportal.org"},{"key":"31_CR3","unstructured":"Salt Typhoon Report. https:\/\/www.darkreading.com\/cyber-risk\/salt-typhoon-apt-subverts-law-enforcement-wiretapping"},{"key":"31_CR4","doi-asserted-by":"crossref","unstructured":"Goldreich, O.: The Foundations of Cryptography - Volume 1: Basic Techniques. Cambridge University Press (2001)","DOI":"10.1017\/CBO9780511546891"},{"key":"31_CR5","doi-asserted-by":"crossref","unstructured":"Goldwasser, S., Micali, S., Rackoff, C.: The knowledge complexity of interactive proof-systems. In: Proceedings of the ACM Symposium on Theory of Computing (1985)","DOI":"10.1145\/22145.22178"},{"key":"31_CR6","unstructured":"GSMA: Network Equipment Security Assurance Scheme (NESAS). https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/04\/FS.13-v3.0.pdf"},{"key":"31_CR7","unstructured":"Halstead, M.: Elements of Software Science. Elsevier Science Inc. (1977)"},{"key":"31_CR8","doi-asserted-by":"crossref","unstructured":"Hassanshahi, B., Mai, T.N., Michael, A., Selwyn-Smith, B., Bates, S., Krishnan, P.: Macaron: a logic-based framework for software supply chain security assurance. In: SCORED@CCS (2023)","DOI":"10.1145\/3605770.3625213"},{"key":"31_CR9","doi-asserted-by":"crossref","unstructured":"McKeen, F., et al.: Intel Software Guard Extensions (Intel SGX) support for dynamic memory management inside an enclave. In: Proceedings of the Hardware and Architectural Support for Security and Privacy (2016)","DOI":"10.1145\/2948618.2954331"},{"key":"31_CR10","unstructured":"NCSC: UK Vendor Security Assessment. https:\/\/www.ncsc.gov.uk\/report\/vendor-security-assessment"},{"key":"31_CR11","unstructured":"RISC ZERO. https:\/\/www.risczero.com\/"},{"key":"31_CR12","doi-asserted-by":"crossref","unstructured":"Rose, S., Borchert, O., Mitchell, S., Connelly, S.: Zero trust architecture. Special Publication (NIST SP), National Institute of Standards and Technology (2020)","DOI":"10.6028\/NIST.SP.800-207-draft2"},{"key":"31_CR13","unstructured":"Seacord, R.C.: SEI CERT C Coding Standard: 98 Rules for Developing Safe, Reliable, and Secure Systems. Addison-Wesley Professional (2014)"},{"key":"31_CR14","unstructured":"Succinct Labs: SP1. https:\/\/docs.succinct.xyz\/"},{"key":"31_CR15","doi-asserted-by":"crossref","unstructured":"Thaler, J.: Proofs, Arguments, and Zero-Knowledge (2022). Manuscript","DOI":"10.1561\/9781638281252"},{"key":"31_CR16","unstructured":"The White House: Executive Order on Improving the Nation\u2019s Cybersecurity (2021). https:\/\/www.federalregister.gov\/d\/2021-10460"},{"key":"31_CR17","unstructured":"Tsang, C.: Rust Compiler. https:\/\/github.com\/ClementTsang\/rustcc\/"},{"key":"31_CR18","unstructured":"Wei, H., Ke, J., Liu, R., Li, G.: ZK-ProVer: proving programming verification in non-interactive zero-knowledge proofs. Cryptology ePrint Archive, Paper 2025\/1152 (2025). https:\/\/eprint.iacr.org\/2025\/1152"},{"key":"31_CR19","doi-asserted-by":"crossref","unstructured":"Welzel, A., Wohlrab, R., Mohamad, M.: Increasing the confidence in security assurance cases using game theory. In: Proceedings of the International Conference on Availability, Reliability and Security, ARES (2024)","DOI":"10.1145\/3664476.3664501"},{"key":"31_CR20","unstructured":"Wikipedia: Viasat Hack. https:\/\/en.wikipedia.org\/wiki\/Viasat_hack"},{"key":"31_CR21","unstructured":"zkMIPS. https:\/\/docs.zkm.io\/"}],"container-title":["Lecture Notes in Computer Science","Computer Security. ESORICS 2025 International Workshops"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-16092-8_31","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,6]],"date-time":"2026-05-06T23:06:39Z","timestamp":1778108799000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-16092-8_31"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026]]},"ISBN":["9783032160911","9783032160928"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-16092-8_31","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026]]},"assertion":[{"value":"1 May 2026","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Toulouse","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 September 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 September 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.esorics2025.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}