{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,18]],"date-time":"2025-10-18T10:42:48Z","timestamp":1760784168746,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":14,"publisher":"ACM","license":[{"start":{"date-parts":[[2016,9,28]],"date-time":"2016-09-28T00:00:00Z","timestamp":1475020800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2016,9,28]]},"DOI":"10.1145\/2978178.2978183","type":"proceedings-article","created":{"date-parts":[[2016,9,9]],"date-time":"2016-09-09T14:28:57Z","timestamp":1473431337000},"page":"13-18","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Architecture-Driven Penetration Testing against an Identity Access Management (IAM) System"],"prefix":"10.1145","author":[{"given":"Sam","family":"Chung","sequence":"first","affiliation":[{"name":"Southern Illinois University, CARBONDALE, IL, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sky","family":"Moon","sequence":"additional","affiliation":[{"name":"Expedia, Bellevue, WA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Barbara","family":"Endicott-Popovsky","sequence":"additional","affiliation":[{"name":"University of Washington, Bothell, WA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2016,9,28]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.23"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/52.43044"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"crossref","unstructured":"Chung S. Crompton C. Bai Y. Endicott-Popovsky B. and Park S. 2012. Analyses of Evolving Legacy Software into Secure Service-Oriented Software using Scrum and a Visual Model. Agile and Lean Service-Oriented Development: Foundations Theory and Practice. Edited by Wang X. Ali N. Ramos I. & Vidgen R. Information Science Reference Hershey PA.  Chung S. Crompton C. Bai Y. Endicott-Popovsky B. and Park S. 2012. Analyses of Evolving Legacy Software into Secure Service-Oriented Software using Scrum and a Visual Model. Agile and Lean Service-Oriented Development: Foundations Theory and Practice. Edited by Wang X. Ali N. Ramos I. & Vidgen R. Information Science Reference Hershey PA.","DOI":"10.4018\/978-1-4666-2503-7.ch010"},{"key":"e_1_3_2_1_4_1","volume-title":"Proceedings of the IEEE International Conference on Service-Oriented Computing and Applications","author":"Chung S.","year":"2009","unstructured":"Chung , S. , Won , D. , Baeg , S. , and Park , S . 2009. Service-Oriented Reverse Reengineering: 5W1H Model Driven Re-documentation and Candidate Services Identification . In Proceedings of the IEEE International Conference on Service-Oriented Computing and Applications ( Taipei, Taiwan , Jan. 14-15, 2009 ). SOCA '09. IEEE, Piscataway, NJ. DOI = 10.1109\/SOCA.2009.5410445 Chung, S., Won, D., Baeg, S., and Park, S. 2009. Service-Oriented Reverse Reengineering: 5W1H Model Driven Re-documentation and Candidate Services Identification. In Proceedings of the IEEE International Conference on Service-Oriented Computing and Applications (Taipei, Taiwan, Jan. 14-15, 2009). SOCA '09. IEEE, Piscataway, NJ. DOI = 10.1109\/SOCA.2009.5410445"},{"key":"e_1_3_2_1_5_1","unstructured":"Cser A. and Maxim M. 2016. IAM is the future for managing data security (Mar. 2016) ComputerWeekly.com http:\/\/www.computerweekly.com\/feature\/IAM-is-the-future-for-managing-data-security retrieved June 6 2016.  Cser A. and Maxim M. 2016. IAM is the future for managing data security (Mar. 2016) ComputerWeekly.com http:\/\/www.computerweekly.com\/feature\/IAM-is-the-future-for-managing-data-security retrieved June 6 2016."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/52.469759"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSECP.2004.1281254"},{"key":"e_1_3_2_1_8_1","volume-title":"https:\/\/tools.ietf.org\/html\/rfc6749, retrieved","author":"Auth Documentation","year":"2016","unstructured":"O Auth Documentation . https:\/\/tools.ietf.org\/html\/rfc6749, retrieved June 6, 2016 . OAuth Documentation. https:\/\/tools.ietf.org\/html\/rfc6749, retrieved June 6, 2016."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2004.84"},{"key":"e_1_3_2_1_10_1","unstructured":"Rouse M. 2015. Identity Access Management (IAM) System. http:\/\/searchsecurity.techtarget.com\/definition\/identity-access-management-IAM-system retrieved June 6 2016.  Rouse M. 2015. Identity Access Management (IAM) System. http:\/\/searchsecurity.techtarget.com\/definition\/identity-access-management-IAM-system retrieved June 6 2016."},{"key":"e_1_3_2_1_11_1","volume-title":"Proceedings of International Conference on Computer, Networks and Communication Engineering","author":"Shin J.","year":"2013","unstructured":"Shin , J. , Son , H. , and Heo G . 2013. Cyber Security Risk Analysis Model Composed with Activity-quality and Architecture Model . In Proceedings of International Conference on Computer, Networks and Communication Engineering ( 2013 ). ICCNCE '13. 609--612. Atlantis Press. Shin, J., Son, H., and Heo G. 2013. Cyber Security Risk Analysis Model Composed with Activity-quality and Architecture Model. In Proceedings of International Conference on Computer, Networks and Communication Engineering (2013). ICCNCE '13. 609--612. Atlantis Press."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.3"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2004.55"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/PST.2010.5593250"}],"event":{"name":"SIGITE\/RIIT 2016: The 17th Annual Conference on Information Technology Education and the 5th Annual Conference on Research in Information Technology","sponsor":["SIGITE ACM Special Interest Group on Information Technology Education"],"location":"Boston Massachusetts USA","acronym":"SIGITE\/RIIT 2016"},"container-title":["Proceedings of the 5th Annual Conference on Research in Information Technology"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2978178.2978183","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2978178.2978183","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:39:29Z","timestamp":1750217969000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2978178.2978183"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,9,28]]},"references-count":14,"alternative-id":["10.1145\/2978178.2978183","10.1145\/2978178"],"URL":"https:\/\/doi.org\/10.1145\/2978178.2978183","relation":{},"subject":[],"published":{"date-parts":[[2016,9,28]]},"assertion":[{"value":"2016-09-28","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}