{"id":"https://openalex.org/W4389724487","doi":"https://doi.org/10.1109/clei60451.2023.10346164","title":"A Security Analysis of a Referential Architecture of the FIWARE Platform","display_name":"A Security Analysis of a Referential Architecture of the FIWARE Platform","publication_year":2023,"publication_date":"2023-10-16","ids":{"openalex":"https://openalex.org/W4389724487","doi":"https://doi.org/10.1109/clei60451.2023.10346164"},"language":"en","primary_location":{"id":"doi:10.1109/clei60451.2023.10346164","is_oa":false,"landing_page_url":"https://doi.org/10.1109/clei60451.2023.10346164","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 XLIX Latin American Computer Conference (CLEI)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5093489158","display_name":"Juan Pablo Perata","orcid":null},"institutions":[{"id":"https://openalex.org/I180910786","display_name":"Universidad de la Rep\u00fablica","ror":"https://ror.org/030bbe882","country_code":"UY","type":"education","lineage":["https://openalex.org/I180910786"]}],"countries":["UY"],"is_corresponding":true,"raw_author_name":"Juan Pablo Perata","raw_affiliation_strings":["Universidad de la Rep&#x00FA;blica,Facultad de Ingenier&#x00ED;a,Montevideo,Uruguay"],"affiliations":[{"raw_affiliation_string":"Universidad de la Rep&#x00FA;blica,Facultad de Ingenier&#x00ED;a,Montevideo,Uruguay","institution_ids":["https://openalex.org/I180910786"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5003957275","display_name":"Gustavo Betarte","orcid":"https://orcid.org/0000-0002-6863-1082"},"institutions":[{"id":"https://openalex.org/I180910786","display_name":"Universidad de la Rep\u00fablica","ror":"https://ror.org/030bbe882","country_code":"UY","type":"education","lineage":["https://openalex.org/I180910786"]}],"countries":["UY"],"is_corresponding":false,"raw_author_name":"Gustavo Betarte","raw_affiliation_strings":["Universidad de la Rep&#x00FA;blica,InCo, Facultad de Ingenier&#x00ED;a,Montevideo,Uruguay"],"affiliations":[{"raw_affiliation_string":"Universidad de la Rep&#x00FA;blica,InCo, Facultad de Ingenier&#x00ED;a,Montevideo,Uruguay","institution_ids":["https://openalex.org/I180910786"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5093489158"],"corresponding_institution_ids":["https://openalex.org/I180910786"],"apc_list":null,"apc_paid":null,"fwci":0.4066,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.60130187,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9345999956130981,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9345999956130981,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13382","display_name":"Robotics and Automated Systems","score":0.9214000105857849,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6614072918891907},{"id":"https://openalex.org/keywords/architecture","display_name":"Architecture","score":0.6415057182312012},{"id":"https://openalex.org/keywords/computer-architecture","display_name":"Computer architecture","score":0.3940035402774811},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.32824236154556274},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3246338367462158}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6614072918891907},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.6415057182312012},{"id":"https://openalex.org/C118524514","wikidata":"https://www.wikidata.org/wiki/Q173212","display_name":"Computer architecture","level":1,"score":0.3940035402774811},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.32824236154556274},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3246338367462158},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0},{"id":"https://openalex.org/C153349607","wikidata":"https://www.wikidata.org/wiki/Q36649","display_name":"Visual arts","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/clei60451.2023.10346164","is_oa":false,"landing_page_url":"https://doi.org/10.1109/clei60451.2023.10346164","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 XLIX Latin American Computer Conference (CLEI)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W4402327032","https://openalex.org/W2038503502"],"abstract_inverted_index":{"In":[0],"this":[1],"paper":[2],"we":[3,69],"present":[4],"the":[5,14,23,76,86,100,114,122],"results":[6],"of":[7,13,25,31,47,65,85,102,113,132,143,154,158],"carrying":[8],"out":[9],"a":[10,40,48,54,63,72,89,93,133,152],"security":[11,66],"assessment":[12],"FIWARE":[15,32,49,138],"technology,":[16],"by":[17,127],"adopting":[18],"an":[19,129],"offensive":[20],"perspective":[21],"in":[22,29,34,53,156],"search":[24],"potential":[26],"vulnerabilities":[27],"involved":[28],"deployments":[30],"components":[33,46],"certain":[35],"architecture":[36,160],"configurations.":[37],"We":[38,105],"consider":[39],"referential":[41,87,123],"scenario":[42],"that":[43,79,145],"includes":[44],"core":[45],"platform.":[50],"By":[51],"experimenting":[52],"locally":[55],"controlled":[56],"environment,":[57],"it":[58],"was":[59,125],"possible":[60],"to":[61,108],"identify":[62],"series":[64],"issues.":[67],"Then,":[68],"put":[70],"forward":[71],"threat":[73,95],"model":[74],"following":[75],"OWASP":[77],"methodology":[78],"embodies":[80],"several":[81],"artifacts,":[82],"namely,":[83],"decomposition":[84],"platform,":[88,139],"data":[90],"flow":[91],"diagram,":[92],"STRIDE":[94],"modeling,":[96],"attack":[97,103,116],"analysis":[98,131],"and":[99,136,161],"identification":[101],"objectives.":[104],"were":[106],"able":[107],"implement":[109],"attacks":[110,144],"for":[111,121],"three":[112],"identified":[115],"goals.":[117],"The":[118],"approach":[119],"conducted":[120],"platform":[124],"validated":[126],"performing":[128],"exploratory":[130],"real":[134],"working":[135],"productive":[137],"distinguishing":[140],"different":[141],"types":[142],"could":[146],"be":[147],"implemented,":[148],"ending":[149],"up":[150],"with":[151],"set":[153],"recommendations":[155],"terms":[157],"components,":[159],"access":[162],"control.":[163]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}