{"id":"https://openalex.org/W2090850439","doi":"https://doi.org/10.1108/09685229810225038","title":"Security pitfalls in cryptographic design","display_name":"Security pitfalls in cryptographic design","publication_year":1998,"publication_date":"1998-08-01","ids":{"openalex":"https://openalex.org/W2090850439","doi":"https://doi.org/10.1108/09685229810225038","mag":"2090850439"},"language":"en","primary_location":{"id":"doi:10.1108/09685229810225038","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685229810225038","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5037770347","display_name":"Bruce Schneier","orcid":"https://orcid.org/0000-0003-1453-1083"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Bruce Schneier","raw_affiliation_strings":["President, Counterpane Systems, Minneapolis, MI, USA","(President, Counterpane Systems, Minneapolis, MI, USA)"],"affiliations":[{"raw_affiliation_string":"President, Counterpane Systems, Minneapolis, MI, USA","institution_ids":[]},{"raw_affiliation_string":"(President, Counterpane Systems, Minneapolis, MI, USA)","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5037770347"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":31,"citation_normalized_percentile":{"value":0.25811037,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":"6","issue":"3","first_page":"133","last_page":"137"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.8083999752998352,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.8083999752998352,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.6916000247001648,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7657599449157715},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7516716122627258},{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.6655022501945496},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.6620643138885498},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.5931803584098816},{"id":"https://openalex.org/keywords/cryptographic-primitive","display_name":"Cryptographic primitive","score":0.5417088270187378},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.4890969395637512},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.33325016498565674},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.1061582863330841}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7657599449157715},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7516716122627258},{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.6655022501945496},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.6620643138885498},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5931803584098816},{"id":"https://openalex.org/C15927051","wikidata":"https://www.wikidata.org/wiki/Q246593","display_name":"Cryptographic primitive","level":4,"score":0.5417088270187378},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.4890969395637512},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.33325016498565674},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.1061582863330841},{"id":"https://openalex.org/C121955636","wikidata":"https://www.wikidata.org/wiki/Q4116214","display_name":"Accounting","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1108/09685229810225038","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685229810225038","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.75}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2156596755","https://openalex.org/W2582166094","https://openalex.org/W2005404261","https://openalex.org/W3094747019","https://openalex.org/W3169205486","https://openalex.org/W2486883293","https://openalex.org/W2090850439","https://openalex.org/W121290600","https://openalex.org/W3089544408","https://openalex.org/W2395251829"],"abstract_inverted_index":{"Highlights":[0],"the":[1,19,26,44,69,80],"common":[2],"security":[3],"pitfalls":[4],"in":[5,25,49,79,89],"cryptographic":[6],"design.":[7],"States":[8],"that":[9,55,71],"even":[10],"strong":[11],"encryption":[12],"algorithms":[13,20],"can":[14,72],"be":[15,60,73],"circumvented":[16],"by":[17],"bypassing":[18],"altogether":[21],"and":[22,41,75],"exploiting":[23],"errors":[24],"design,":[27],"implementation,":[28],"or":[29],"installation.":[30],"Examines":[31],"attacks":[32],"against":[33],"passwords,":[34],"hardware,":[35],"trust":[36],"models,":[37],"failure":[38],"recovery":[39],"systems":[40],"users.":[42],"Discusses":[43],"importance":[45],"of":[46,82],"attack":[47,52],"detection":[48],"addition":[50],"to":[51,67,76],"prevention.":[53],"Concludes":[54],"eventually,":[56],"every":[57],"system":[58],"may":[59],"successfully":[61],"attacked":[62],"so":[63],"it":[64],"is":[65],"essential":[66],"limit":[68],"damage":[70],"done":[74],"capture":[77],"evidence":[78],"form":[81],"an":[83],"audit":[84],"trail":[85],"for":[86],"later":[87],"use":[88],"a":[90],"prosecution.":[91]},"counts_by_year":[{"year":2025,"cited_by_count":22},{"year":2015,"cited_by_count":1},{"year":2013,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}