{"id":"https://openalex.org/W2101036808","doi":"https://doi.org/10.1109/csac.2003.1254324","title":"How to unwittingly sign non-repudiable documents with Java applications","display_name":"How to unwittingly sign non-repudiable documents with Java applications","publication_year":2004,"publication_date":"2004-07-08","ids":{"openalex":"https://openalex.org/W2101036808","doi":"https://doi.org/10.1109/csac.2003.1254324","mag":"2101036808"},"language":"en","primary_location":{"id":"doi:10.1109/csac.2003.1254324","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csac.2003.1254324","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"19th Annual Computer Security Applications Conference, 2003. Proceedings.","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5058151309","display_name":"Danilo Bruschi","orcid":"https://orcid.org/0000-0002-5905-5976"},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"D. Bruschi","raw_affiliation_strings":["Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]},{"raw_affiliation_string":"Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076177690","display_name":"Daniele Fabris","orcid":"https://orcid.org/0000-0003-0786-1578"},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"D. Fabris","raw_affiliation_strings":["Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]},{"raw_affiliation_string":"Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5083534355","display_name":"V. Glave","orcid":null},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"V. Glave","raw_affiliation_strings":["Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]},{"raw_affiliation_string":"Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5005281186","display_name":"E. Rosti","orcid":null},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"E. Rosti","raw_affiliation_strings":["Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Dipartimento di Informatica e Comunicazione, Universit\u00e0 degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]},{"raw_affiliation_string":"Dipt. di Informatica e Comunicazione, Univ. degli Studi di Milano, Italy","institution_ids":["https://openalex.org/I189158943"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5058151309"],"corresponding_institution_ids":["https://openalex.org/I189158943"],"apc_list":null,"apc_paid":null,"fwci":0.8573,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.73907589,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"192","last_page":"196"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8097423315048218},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6501200199127197},{"id":"https://openalex.org/keywords/nobody","display_name":"nobody","score":0.6473278403282166},{"id":"https://openalex.org/keywords/single-sign-on","display_name":"Single sign-on","score":0.64597487449646},{"id":"https://openalex.org/keywords/java","display_name":"Java","score":0.6153957843780518},{"id":"https://openalex.org/keywords/sign","display_name":"Sign (mathematics)","score":0.5551794767379761},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.533771276473999},{"id":"https://openalex.org/keywords/verifiable-secret-sharing","display_name":"Verifiable secret sharing","score":0.5064212083816528},{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.495190292596817},{"id":"https://openalex.org/keywords/digital-signature","display_name":"Digital signature","score":0.4812436103820801},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4411606192588806},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3446570932865143},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.28940877318382263},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.25308144092559814},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.11859345436096191}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8097423315048218},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6501200199127197},{"id":"https://openalex.org/C36914074","wikidata":"https://www.wikidata.org/wiki/Q1940501","display_name":"nobody","level":2,"score":0.6473278403282166},{"id":"https://openalex.org/C2776362682","wikidata":"https://www.wikidata.org/wiki/Q568494","display_name":"Single sign-on","level":3,"score":0.64597487449646},{"id":"https://openalex.org/C548217200","wikidata":"https://www.wikidata.org/wiki/Q251","display_name":"Java","level":2,"score":0.6153957843780518},{"id":"https://openalex.org/C139676723","wikidata":"https://www.wikidata.org/wiki/Q1193832","display_name":"Sign (mathematics)","level":2,"score":0.5551794767379761},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.533771276473999},{"id":"https://openalex.org/C85847156","wikidata":"https://www.wikidata.org/wiki/Q59015987","display_name":"Verifiable secret sharing","level":3,"score":0.5064212083816528},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.495190292596817},{"id":"https://openalex.org/C118463975","wikidata":"https://www.wikidata.org/wiki/Q220849","display_name":"Digital signature","level":3,"score":0.4812436103820801},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4411606192588806},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3446570932865143},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.28940877318382263},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.25308144092559814},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.11859345436096191},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C99138194","wikidata":"https://www.wikidata.org/wiki/Q183427","display_name":"Hash function","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/csac.2003.1254324","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csac.2003.1254324","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"19th Annual Computer Security Applications Conference, 2003. Proceedings.","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.522.4249","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.522.4249","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.acsa-admin.org/2003/papers/115.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.800000011920929}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W1521442410","https://openalex.org/W2089098100","https://openalex.org/W2149386838","https://openalex.org/W2156186849","https://openalex.org/W2611023804","https://openalex.org/W6737150818"],"related_works":["https://openalex.org/W2350215162","https://openalex.org/W2382634619","https://openalex.org/W3082967883","https://openalex.org/W254439514","https://openalex.org/W2017125388","https://openalex.org/W328824506","https://openalex.org/W2117915469","https://openalex.org/W4387407403","https://openalex.org/W3170748431","https://openalex.org/W2130871907"],"abstract_inverted_index":{"Digital":[0],"signatures":[1],"allow":[2],"us":[3,44],"to":[4,22,93,122],"produce":[5],"documents":[6,31],"whose":[7],"integrity":[8],"and":[9],"authenticity,":[10],"as":[11,32],"we":[12,27,34],"generated":[13],"them,":[14],"is":[15,65],"verifiable":[16],"by":[17],"anybody":[18],"who":[19],"has":[20],"access":[21,46],"our":[23,47],"public":[24],"key.":[25,49],"Furthermore,":[26],"cannot":[28],"repudiate":[29],"those":[30],"something":[33],"never":[35],"saw,":[36],"let":[37],"alone":[38],"signed,":[39],"since":[40],"nobody":[41],"else":[42],"but":[43],"could":[45],"private":[48],"We":[50],"show":[51],"how":[52],"the":[53,89,109,113,134],"previous":[54],"statement":[55],"can":[56],"be":[57],"proved":[58],"wrong":[59],"when":[60],"carefully":[61],"crafted":[62],"malicious":[63,120,129],"software":[64,121],"installed":[66],"on":[67],"a":[68,71,79,81,98,105],"machine":[69],"running":[70],"Java":[72,114,125],"digital":[73],"signature":[74],"application.":[75],"By":[76],"using":[77],"such":[78],"software,":[80],"user":[82],"may":[83],"unwittingly":[84],"sign":[85,95,97],"another":[86],"document":[87,100],"besides":[88],"one":[90],"he/she":[91],"intends":[92],"digitally":[94],"or":[96],"different":[99],"altogether.":[101],"Our":[102],"attack":[103],"exploits":[104],"known":[106],"vulnerability":[107],"of":[108,112],"security":[110],"architecture":[111],"run-time":[115],"environment":[116],"that":[117],"allows":[118],"nonJava":[119],"replace":[123],"some":[124],"system":[126],"classes":[127],"with":[128],"ones,":[130],"which":[131],"then":[132],"alter":[133],"victim":[135],"application":[136],"behavior.":[137]},"counts_by_year":[],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}