{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,29]],"date-time":"2024-10-29T17:52:42Z","timestamp":1730224362793,"version":"3.28.0"},"reference-count":48,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014,12]]},"DOI":"10.1109\/glocomw.2014.7063386","type":"proceedings-article","created":{"date-parts":[[2015,3,20]],"date-time":"2015-03-20T13:21:39Z","timestamp":1426857699000},"page":"59-63","source":"Crossref","is-referenced-by-count":7,"title":["A survey of common security vulnerabilities and corresponding countermeasures for SaaS"],"prefix":"10.1109","author":[{"given":"Donghoon","family":"Kim","sequence":"first","affiliation":[]},{"given":"Mladen A.","family":"Vouk","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref39","first-page":"21","article-title":"On breaking saml: Be whoever you want to be","author":"somorovsky","year":"2012","journal-title":"Proceedings of the 21st USENIX Conference on Security Symposium Ser Security'12"},{"key":"ref38","article-title":"Cloud-based enterprise mashup integration services for b2b scenarios","author":"siebeck","year":"2009","journal-title":"The 2nd Workshop on Mashups Enterprise Mashups and Lightweight Composition on the Web"},{"key":"ref33","article-title":"Challenges of security issues in cloud computing layers","volume":"1","author":"panah","year":"2012"},{"year":"2013","key":"ref32","article-title":"Account lockout attack"},{"journal-title":"The the Most Critical Web Application Security Risks","year":"2013","key":"ref31"},{"year":"2010","key":"ref30","article-title":"Top 10 2010-a8-failure to restrict url access"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/SERVICES.2011.20"},{"key":"ref36","volume":"1","author":"sanjay","year":"2010","journal-title":"A Survey of the State of Cloud Security"},{"journal-title":"Search More Securely with Encrypted Google Web Search","year":"2010","author":"roseman","key":"ref35"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/2383276.2383314"},{"journal-title":"The Notorious Nine Cloud Computing Top Threats in","year":"2013","key":"ref10"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2010.07.006"},{"year":"2010","key":"ref11","article-title":"Domain 12: Guidance for identity & access management v2.1"},{"year":"2014","key":"ref12","article-title":"heartbleed openssl bug cve-2014-0160"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/2220352.2220353"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCA.2012.6179130"},{"key":"ref15","first-page":"1","article-title":"Security issues in cloud environments: a survey","author":"fernandes","year":"2013","journal-title":"International Journal of Information Security"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-89762-0_9"},{"year":"0","key":"ref17","article-title":"2-step verification"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2010.115"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2012.162"},{"journal-title":"Android Best Practices","year":"2013","author":"nolan","key":"ref28"},{"journal-title":"On the Security of rc4 in Tls and Wpa","year":"2013","author":"alfardan","key":"ref4"},{"journal-title":"CWE\/SANS TOP 25 Most Dangerous Software Errors","year":"2011","key":"ref27"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.42"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-10366-7_14"},{"journal-title":"The Growing Importance of Robust Identity Management","year":"2014","author":"osterman","key":"ref29"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/1456396.1456397"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/1655008.1655020"},{"journal-title":"arXiv preprint arXiv 1109 5388","year":"2011","author":"bhadauria","key":"ref7"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/ICC.2009.5199363"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/MITP.2013.37"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4471-2236-4_6"},{"journal-title":"How to Test for Account Lockout Vulnerabilities","year":"2013","author":"truth","key":"ref46"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(09)70141-1"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2010.186"},{"key":"ref48","article-title":"How does your password measure up? the effect of strength meters on password creation","author":"ur","year":"0","journal-title":"USENIX Security Symposium 2012"},{"journal-title":"Enable bring-your-own-identity authentication","year":"2013","author":"hockings","key":"ref22"},{"journal-title":"CAPTCHA Telling Humans and Computers Apart Automatically","year":"2010","author":"university","key":"ref47"},{"key":"ref21","article-title":"Mining your ps and qs: Detection of widespread weak keys in network devices","volume":"2","author":"heninger","year":"2012","journal-title":"Proceedings of the 21st USENIX Security Symposium"},{"year":"2012","key":"ref42","article-title":"Internet explorer zero-day used in watering hole attack: Q&a"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/s00450-009-0092-6"},{"article-title":"Security profile of fedora","year":"0","author":"subramani","key":"ref41"},{"year":"2014","key":"ref23","article-title":"Ibm security systems: Manage identities and access for continuous compliance and reduced risk"},{"journal-title":"Internet Security Threat Report 2014","year":"2014","key":"ref44"},{"journal-title":"The NIST Definition of Cloud Computing","year":"2011","author":"mell","key":"ref26"},{"journal-title":"New Internet Explorer 10 Zero-day Discovered in Watering Hole Attack","year":"2014","key":"ref43"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD.2009.60"}],"event":{"name":"2014 IEEE Globecom Workshops (GC Wkshps)","start":{"date-parts":[[2014,12,8]]},"location":"Austin, TX, USA","end":{"date-parts":[[2014,12,12]]}},"container-title":["2014 IEEE Globecom Workshops (GC Wkshps)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/7050532\/7063320\/07063386.pdf?arnumber=7063386","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,3,23]],"date-time":"2017-03-23T19:15:24Z","timestamp":1490296524000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7063386\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,12]]},"references-count":48,"URL":"https:\/\/doi.org\/10.1109\/glocomw.2014.7063386","relation":{},"subject":[],"published":{"date-parts":[[2014,12]]}}}