{"id":"https://openalex.org/W2296591490","doi":"https://doi.org/10.1109/icoin.2016.7427064","title":"Papering over the cracks: The effects of introducing best practices on the web security ecosystem","display_name":"Papering over the cracks: The effects of introducing best practices on the web security ecosystem","publication_year":2016,"publication_date":"2016-01-01","ids":{"openalex":"https://openalex.org/W2296591490","doi":"https://doi.org/10.1109/icoin.2016.7427064","mag":"2296591490"},"language":"en","primary_location":{"id":"doi:10.1109/icoin.2016.7427064","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icoin.2016.7427064","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 International Conference on Information Networking (ICOIN)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067254910","display_name":"Emil Larsson","orcid":"https://orcid.org/0009-0008-2442-4058"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Emil Larsson","raw_affiliation_strings":["Schibsted Media Group, Stockholm, Sweden"],"affiliations":[{"raw_affiliation_string":"Schibsted Media Group, Stockholm, Sweden","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5004675497","display_name":"Johan Sigholm","orcid":"https://orcid.org/0000-0002-4376-9800"},"institutions":[{"id":"https://openalex.org/I101466613","display_name":"Swedish Defence University","ror":"https://ror.org/04mj8af82","country_code":"SE","type":"education","lineage":["https://openalex.org/I101466613"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Johan Sigholm","raw_affiliation_strings":["Department of Military Studies, Swedish Defence University, Stockholm, Sweden"],"affiliations":[{"raw_affiliation_string":"Department of Military Studies, Swedish Defence University, Stockholm, Sweden","institution_ids":["https://openalex.org/I101466613"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5067254910"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.3609,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.85391855,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":"12","issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9966999888420105,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5871076583862305},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5772168040275574},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.5688183903694153},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.5617689490318298},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5403218269348145},{"id":"https://openalex.org/keywords/incentive","display_name":"Incentive","score":0.5392993092536926},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5274258852005005},{"id":"https://openalex.org/keywords/best-practice","display_name":"Best practice","score":0.4657258689403534},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.37663859128952026},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.3308771252632141},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.2837221026420593},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.1212921142578125},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.10175585746765137}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5871076583862305},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5772168040275574},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.5688183903694153},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.5617689490318298},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5403218269348145},{"id":"https://openalex.org/C29122968","wikidata":"https://www.wikidata.org/wiki/Q1414816","display_name":"Incentive","level":2,"score":0.5392993092536926},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5274258852005005},{"id":"https://openalex.org/C184356942","wikidata":"https://www.wikidata.org/wiki/Q830382","display_name":"Best practice","level":2,"score":0.4657258689403534},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.37663859128952026},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.3308771252632141},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.2837221026420593},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.1212921142578125},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.10175585746765137},{"id":"https://openalex.org/C175444787","wikidata":"https://www.wikidata.org/wiki/Q39072","display_name":"Microeconomics","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icoin.2016.7427064","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icoin.2016.7427064","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 International Conference on Information Networking (ICOIN)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W189766157","https://openalex.org/W1511654854","https://openalex.org/W1527629881","https://openalex.org/W1947736446","https://openalex.org/W1976413307","https://openalex.org/W1976898684","https://openalex.org/W2009884847","https://openalex.org/W2013433855","https://openalex.org/W2045591401","https://openalex.org/W2055784661","https://openalex.org/W2066252163","https://openalex.org/W2109026747","https://openalex.org/W2112736324","https://openalex.org/W2117065827","https://openalex.org/W2156109180","https://openalex.org/W2189153846","https://openalex.org/W2238866705","https://openalex.org/W2274779708","https://openalex.org/W2294242399","https://openalex.org/W2797426705","https://openalex.org/W3137604898","https://openalex.org/W3138574159","https://openalex.org/W4254322683","https://openalex.org/W6607788392","https://openalex.org/W6676734387","https://openalex.org/W6689810000","https://openalex.org/W6694349614"],"related_works":["https://openalex.org/W2002383399","https://openalex.org/W2156201195","https://openalex.org/W2613374639","https://openalex.org/W2187625726","https://openalex.org/W2371044121","https://openalex.org/W1967778478","https://openalex.org/W4313139008","https://openalex.org/W99446231","https://openalex.org/W186778346","https://openalex.org/W2027150799"],"abstract_inverted_index":{"Hypertext":[0],"Transfer":[1],"Protocol":[2],"Secure":[3],"(HTTPS)":[4],"is":[5,75],"the":[6,34,39,42,54,78,92,115,121],"de":[7],"facto":[8],"standard":[9],"for":[10,110,141],"secure":[11,146],"end-to-end":[12],"web":[13,45,63,88],"communication.":[14],"However,":[15],"numerous":[16],"flaws":[17,132],"discovered":[18],"during":[19],"recent":[20],"years,":[21],"such":[22,151],"as":[23,31,156],"Apple's":[24],"\"goto":[25],"fail\"":[26],"bug,":[27],"and":[28,83,137],"cryptographic":[29],"weaknesses":[30],"illustrated":[32],"by":[33],"Poodlebleed":[35],"vulnerability,":[36],"have":[37,86,133],"brought":[38],"efficiency":[40],"of":[41,69,80,94,117,123,154,160],"mostly":[43],"self-regulated":[44],"security":[46,90,131],"market":[47],"into":[48],"question.":[49],"In":[50],"this":[51],"cross-disciplinary":[52],"paper,":[53],"authors":[55],"survey":[56],"some":[57],"160.000":[58],"HTTPS-enabled":[59],"servers":[60],"among":[61],"popular":[62],"sites":[64],"over":[65,111],"a":[66,112,134],"time":[67],"period":[68],"three":[70],"years.":[71],"The":[72],"research":[73],"question":[74],"what":[76],"effect":[77],"introduction":[79,116],"best":[81,118],"practices":[82,119],"vulnerability":[84],"publication":[85],"on":[87],"server":[89],"in":[91],"form":[93],"protocol":[95],"support.":[96],"Main":[97],"findings":[98],"include":[99],"that":[100],"(i)":[101],"insecure":[102,124],"configurations,":[103],"although":[104],"well":[105],"known,":[106],"can":[107],"remain":[108],"widespread":[109],"decade,":[113],"(ii)":[114],"affect":[120],"decline":[122],"configurations":[125],"only":[126],"moderately,":[127],"whereas":[128],"highly":[129],"publicized":[130],"significant":[135],"impact,":[136],"(iii)":[138],"economic":[139],"incentives":[140],"website":[142],"owners":[143],"to":[144],"provide":[145],"services":[147],"are":[148],"weak,":[149],"motivating":[150],"other":[152],"levers":[153],"influence":[155],"legislation":[157],"or":[158],"blocking":[159],"noncompliant":[161],"sites.":[162]},"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}