{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,15]],"date-time":"2026-06-15T10:56:52Z","timestamp":1781521012162,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":14,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,6,17]]},"DOI":"10.1145\/3816713.3818804","type":"proceedings-article","created":{"date-parts":[[2026,6,15]],"date-time":"2026-06-15T10:34:51Z","timestamp":1781519691000},"page":"1-9","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Vulnerability Analysis for CBT Exam System"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0007-1543-8872","authenticated-orcid":false,"given":"Chalita","family":"Maksakha","sequence":"first","affiliation":[{"name":"King Mongkut's University of Technology Thonburi, Thungkru, Bangkok, Thailand"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-8549-5645","authenticated-orcid":false,"given":"Vajirasak","family":"Vanijja","sequence":"additional","affiliation":[{"name":"King Mongkut's University of Technology Thonburi, Thungkru, Bangkok, Thailand"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2026,6,16]]},"reference":[{"issue":"2","key":"e_1_3_3_1_1_2","first-page":"415","article-title":"The vulnerability of online proctoring and lockdown browsers: A network-level analysis of circumvention techniques","volume":"61","author":"Al-Ansi A. M.","year":"2023","unstructured":"Al-Ansi, A. M., Jamil, R., & Al-Ansi, A. (2023). The vulnerability of online proctoring and lockdown browsers: A network-level analysis of circumvention techniques. Journal of Educational Computing Research, 61(2), 415\u2013438 .","journal-title":"Journal of Educational Computing Research"},{"issue":"4","key":"e_1_3_3_1_2_2","first-page":"889","article-title":"Beyond physical cheating: The evolution of digital impersonation and data exfiltration in online assessments","volume":"21","author":"Hossain M. S.","year":"2022","unstructured":"Hossain, M. S., Rahman, M. M., & Islam, M. N. (2022). Beyond physical cheating: The evolution of digital impersonation and data exfiltration in online assessments. International Journal of Information Security, 21(4), 889\u2013912 .","journal-title":"International Journal of Information Security"},{"key":"e_1_3_3_1_3_2","volume-title":"Infrastructure Vulnerabilities in Digital Assessment","author":"Jones A.","year":"2023","unstructured":"Jones, A., & Lee, B. (2023). Infrastructure Vulnerabilities in Digital Assessment. Educational Technology Press."},{"key":"e_1_3_3_1_4_2","first-page":"103","article-title":"Analysis of TLS vulnerabilities and residual risks in modern learning management systems","volume":"125","author":"Lee S. H.","year":"2026","unstructured":"Lee, S. H., & Kim, J. H. (2026). Analysis of TLS vulnerabilities and residual risks in modern learning management systems. Computers & Security, 125, 103\u2013118.","journal-title":"Computers & Security"},{"key":"e_1_3_3_1_5_2","volume-title":"The STRIDE Threat Model","author":"Microsoft","year":"2003","unstructured":"Microsoft. (2003). The STRIDE Threat Model. MSDN Library."},{"key":"e_1_3_3_1_6_2","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-115"},{"key":"e_1_3_3_1_7_2","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-207"},{"key":"e_1_3_3_1_8_2","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.CSWP.29"},{"key":"e_1_3_3_1_9_2","first-page":"2021","volume":"10","author":"Foundation","year":"2021","unstructured":"OWASP Foundation. (2021). OWASP Top 10:2021 - The next generation of web application security . https:\/\/owasp.org\/www-project-top-ten\/","journal-title":"OWASP Top"},{"issue":"1","key":"e_1_3_3_1_10_2","first-page":"45","article-title":"The critical role of network misconfiguration in enterprise-level online exam failures","volume":"8","author":"Patel K.","year":"2025","unstructured":"Patel, K. (2025). The critical role of network misconfiguration in enterprise-level online exam failures. Security and Privacy in Education, 8(1), 45\u201362.","journal-title":"Security and Privacy in Education"},{"key":"e_1_3_3_1_11_2","first-page":"111","article-title":"Security trade-offs in open-source LMS: A case study of Moodle's attack surface","volume":"198","author":"Silva J. P.","year":"2023","unstructured":"Silva, J. P., Costa, R., & Martins, L. (2023). Security trade-offs in open-source LMS: A case study of Moodle's attack surface. Journal of Systems and Software, 198, 111\u2013125 .","journal-title":"Journal of Systems and Software"},{"key":"e_1_3_3_1_12_2","volume-title":"Digital transformation in higher education assessment","author":"Smith J.","year":"2022","unstructured":"Smith, J., et al. (2022). Digital transformation in higher education assessment. Academic Publishers."},{"key":"e_1_3_3_1_13_2","volume-title":"Minimalist security design: Strategies for purpose-built examination architectures","author":"Thompson R.","year":"2024","unstructured":"Thompson, R. (2024). Minimalist security design: Strategies for purpose-built examination architectures. Academic Press."},{"issue":"3","key":"e_1_3_3_1_14_2","first-page":"210","article-title":"Bridging the gap between OWASP standards and infrastructure hardening in CBT environments","volume":"67","author":"Zhang L.","year":"2024","unstructured":"Zhang, L., & Wang, Y. (2024). Bridging the gap between OWASP standards and infrastructure hardening in CBT environments. IEEE Transactions on Education, 67(3), 210\u2013225.","journal-title":"IEEE Transactions on Education"}],"event":{"name":"IAIT 2026: 14th International Conference on Advances in Information Technology","location":"Bangkok Thailand","acronym":"IAIT '26"},"container-title":["Proceedings of the 14th International Conference on Advances in Information Technology"],"original-title":[],"deposited":{"date-parts":[[2026,6,15]],"date-time":"2026-06-15T10:35:24Z","timestamp":1781519724000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3816713.3818804"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,6,16]]},"references-count":14,"alternative-id":["10.1145\/3816713.3818804","10.1145\/3816713"],"URL":"https:\/\/doi.org\/10.1145\/3816713.3818804","relation":{},"subject":[],"published":{"date-parts":[[2026,6,16]]},"assertion":[{"value":"2026-06-16","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}