{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,11]],"date-time":"2025-11-11T10:35:59Z","timestamp":1762857359238,"version":"build-2065373602"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,5,4]]},"DOI":"10.1145\/3757348.3757351","type":"proceedings-article","created":{"date-parts":[[2025,11,11]],"date-time":"2025-11-11T10:07:33Z","timestamp":1762855653000},"page":"19-26","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Experimenting with Security Compliance Checking using ReFrame"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0003-4796-611X","authenticated-orcid":false,"given":"Victor","family":"Holanda Rusu","sequence":"first","affiliation":[{"name":"Swiss National Supercomputing Centre, Lugano, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0000-6525-4931","authenticated-orcid":false,"given":"Matteo","family":"Basso","sequence":"additional","affiliation":[{"name":"Swiss National Supercomputing Centre, Lugano, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-3208-4412","authenticated-orcid":false,"given":"Chris","family":"Gamboni","sequence":"additional","affiliation":[{"name":"Swiss National Supercomputing Centre, Lugano, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-9153-0145","authenticated-orcid":false,"given":"Fabio","family":"Zambrino","sequence":"additional","affiliation":[{"name":"Swiss National Supercomputing Centre, Lugano, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1294-0052","authenticated-orcid":false,"given":"Massimo","family":"Benini","sequence":"additional","affiliation":[{"name":"Swiss National Supercomputing Centre, Lugano, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,11,11]]},"reference":[{"key":"e_1_3_3_1_2_2","unstructured":"Ansible Project Contributors. 2025. Ansible Documentation. https:\/\/docs.ansible.com. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_3_2","unstructured":"ANSSI. 2022. Configuration recommendations of a GNU\/Linux system. https:\/\/cyber.gouv.fr\/publications\/configuration-recommendations-gnulinux-system. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_4_2","unstructured":"Center for Internet Security. 2025. CIS Benchmarks. https:\/\/www.cisecurity.org\/cis-benchmarks. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_5_2","doi-asserted-by":"publisher","DOI":"10.5555\/3265138"},{"key":"e_1_3_3_1_6_2","unstructured":"Chef Software Inc.2025. Chef: Infrastructure Automation. https:\/\/www.chef.io. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_7_2","unstructured":"CISOfy. 2025. Lynis: Security Auditing Tool for UNIX-based Systems. https:\/\/github.com\/CISOfy\/lynis. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_8_2","unstructured":"ComplianceAsCode Contributors. 2025. ComplianceAsCode Content. https:\/\/github.com\/ComplianceAsCode\/content. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_9_2","unstructured":"Peter\u00a0F. Edemekong Pavan Annamaraju Muriam Afzal and Micelle\u00a0J. Haydel. 2024. Health Insurance Portability and Accountability Act (HIPAA) Compliance. https:\/\/www.ncbi.nlm.nih.gov\/books\/NBK500019\/. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_10_2","unstructured":"Florian Roth. 2025. Loki: Simple IOC and YARA Scanner. https:\/\/github.com\/Neo23x0\/Loki. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_11_2","unstructured":"GNU Project. 2025. Bash - GNU Project - Free Software Foundation. https:\/\/www.gnu.org\/software\/bash\/. Accessed: 2025-04-09."},{"key":"e_1_3_3_1_12_2","unstructured":"Goss Contributors. 2025. Goss: A Simple Fast and Lightweight Open Source Test Framework for Infrastructure. https:\/\/github.com\/goss-org\/goss. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_13_2","unstructured":"International Organization for Standardization. 2025. ISO - International Organization for Standardization. https:\/\/www.iso.org. Accessed: 2025-02-30."},{"volume-title":"Information security, cybersecurity and privacy protection \u2014 Information security management systems","year":"2022","key":"e_1_3_3_1_14_2","unstructured":"ISO 27001:2022(EN) 2022. Information security, cybersecurity and privacy protection \u2014 Information security management systems. Standard. International Organization for Standardization, Geneva, CH."},{"key":"e_1_3_3_1_15_2","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-126r3"},{"key":"e_1_3_3_1_16_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-44728-1_3"},{"key":"e_1_3_3_1_17_2","unstructured":"National Institute of Standards and Technology. 2025. NIST - National Institute of Standards and Technology. https:\/\/www.nist.gov. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_18_2","unstructured":"Nextron Systems GmbH. 2025. THOR Lite - Nextron Systems. https:\/\/www.nextron-systems.com\/thor-lite\/. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_19_2","unstructured":"OpenSCAP Project. 2025. Security Compliance - OpenSCAP. https:\/\/www.open-scap.org\/features\/security-compliance\/. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_20_2","unstructured":"Pavilion 2 Contributors. 2025. Pavilion 2 Documentation. https:\/\/pavilion2.readthedocs.io\/en\/latest\/. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_21_2","unstructured":"PCI Security Standards Council. 2025. PCI Security Standards Council. https:\/\/www.pcisecuritystandards.org. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_22_2","unstructured":"Puppet Inc.2025. Puppet: IT Automation and Orchestration. https:\/\/www.puppet.com. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_23_2","unstructured":"pytest Contributors. 2025. Pytest Documentation. https:\/\/docs.pytest.org. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_24_2","unstructured":"RSpec Contributors. 2025. RSpec: Behaviour-Driven Development for Ruby. https:\/\/rspec.info. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_25_2","unstructured":"Ruby Contributors. 2025. Ruby Programming Language. https:\/\/www.ruby-lang.org. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_26_2","unstructured":"Serverspec Project Contributors. 2025. Serverspec: RSpec Tests for Your Servers. https:\/\/serverspec.org. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_27_2","unstructured":"Testinfra Contributors. 2025. Testinfra Documentation. https:\/\/testinfra.readthedocs.io\/en\/latest\/index.html. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_28_2","unstructured":"U.S. Department of Defense. 2025. Security Technical Implementation Guides (STIGs). https:\/\/public.cyber.mil\/stigs\/. Accessed: 2025-02-30."},{"key":"e_1_3_3_1_29_2","unstructured":"YAML Core Team. 2025. YAML Ain\u2019t Markup Language (YAML). https:\/\/yaml.org. Accessed: 2025-02-30."}],"event":{"name":"CUG 2025: Cray User Group","acronym":"CUG '25","location":"Jersey City USA"},"container-title":["Proceedings of the Cray User Group"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3757348.3757351","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,11]],"date-time":"2025-11-11T10:28:36Z","timestamp":1762856916000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3757348.3757351"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,5,4]]},"references-count":28,"alternative-id":["10.1145\/3757348.3757351","10.1145\/3757348"],"URL":"https:\/\/doi.org\/10.1145\/3757348.3757351","relation":{},"subject":[],"published":{"date-parts":[[2025,5,4]]},"assertion":[{"value":"2025-11-11","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}