{"id":"https://openalex.org/W3209824883","doi":"https://doi.org/10.1109/pst52912.2021.9647786","title":"Dazed and Confused: What\u2019s Wrong with Crypto Libraries?","display_name":"Dazed and Confused: What\u2019s Wrong with Crypto Libraries?","publication_year":2021,"publication_date":"2021-12-13","ids":{"openalex":"https://openalex.org/W3209824883","doi":"https://doi.org/10.1109/pst52912.2021.9647786","mag":"3209824883"},"language":"en","primary_location":{"id":"doi:10.1109/pst52912.2021.9647786","is_oa":false,"landing_page_url":"https://doi.org/10.1109/pst52912.2021.9647786","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 18th International Conference on Privacy, Security and Trust (PST)","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2111.01406","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5010528690","display_name":"Mohammadreza Hazhirpasand","orcid":null},"institutions":[{"id":"https://openalex.org/I118564535","display_name":"University of Bern","ror":"https://ror.org/02k7v4d05","country_code":"CH","type":"education","lineage":["https://openalex.org/I118564535"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Mohammadreza Hazhirpasand","raw_affiliation_strings":["University of Bern, Bern, Switzerland"],"affiliations":[{"raw_affiliation_string":"University of Bern, Bern, Switzerland","institution_ids":["https://openalex.org/I118564535"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041096019","display_name":"Oscar Nierstrasz","orcid":"https://orcid.org/0000-0002-9975-9791"},"institutions":[{"id":"https://openalex.org/I118564535","display_name":"University of Bern","ror":"https://ror.org/02k7v4d05","country_code":"CH","type":"education","lineage":["https://openalex.org/I118564535"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Oscar Nierstrasz","raw_affiliation_strings":["University of Bern, Bern, Switzerland"],"affiliations":[{"raw_affiliation_string":"University of Bern, Bern, Switzerland","institution_ids":["https://openalex.org/I118564535"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5024783227","display_name":"Mohammad Ghafari","orcid":"https://orcid.org/0000-0002-1986-9668"},"institutions":[{"id":"https://openalex.org/I154130895","display_name":"University of Auckland","ror":"https://ror.org/03b94tp07","country_code":"NZ","type":"education","lineage":["https://openalex.org/I154130895"]}],"countries":["NZ"],"is_corresponding":false,"raw_author_name":"Mohammad Ghafari","raw_affiliation_strings":["University of Auckland, Auckland, New Zealand"],"affiliations":[{"raw_affiliation_string":"University of Auckland, Auckland, New Zealand","institution_ids":["https://openalex.org/I154130895"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5010528690"],"corresponding_institution_ids":["https://openalex.org/I118564535"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.14379303,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"3","issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.7312814593315125},{"id":"https://openalex.org/keywords/interoperability","display_name":"Interoperability","score":0.5757454633712769},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5623119473457336},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5514331459999084},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.4946748912334442},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4715576171875},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.4215157926082611},{"id":"https://openalex.org/keywords/domain","display_name":"Domain (mathematical analysis)","score":0.4107154309749603},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.1416366696357727}],"concepts":[{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.7312814593315125},{"id":"https://openalex.org/C20136886","wikidata":"https://www.wikidata.org/wiki/Q749647","display_name":"Interoperability","level":2,"score":0.5757454633712769},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5623119473457336},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5514331459999084},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.4946748912334442},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4715576171875},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.4215157926082611},{"id":"https://openalex.org/C36503486","wikidata":"https://www.wikidata.org/wiki/Q11235244","display_name":"Domain (mathematical analysis)","level":2,"score":0.4107154309749603},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.1416366696357727},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.1109/pst52912.2021.9647786","is_oa":false,"landing_page_url":"https://doi.org/10.1109/pst52912.2021.9647786","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 18th International Conference on Privacy, Security and Trust (PST)","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2111.01406","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2111.01406","pdf_url":"https://arxiv.org/pdf/2111.01406","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"pmh:oai:boris.unibe.ch:165145","is_oa":true,"landing_page_url":"https://boris.unibe.ch/165145/","pdf_url":"https://boris.unibe.ch/165145/1/Hazh21b.pdf","source":{"id":"https://openalex.org/S4306401086","display_name":"Bern Open Repository and Information System (University of Bern)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I118564535","host_organization_name":"University of Bern","host_organization_lineage":["https://openalex.org/I118564535"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Hazhirpasand, Mohammadreza; Nierstrasz, Oscar; Ghafari, Mohammad (December 2021). Dazed and Confused: What's Wrong with Crypto Libraries? In: 18th International Conference on Privacy, Security and Trust (PST). Auckland, New Zealand. December 13-15, 2021. 10.1109/PST52912.2021.9647786 &lt;http://dx.doi.org/10.1109/PST52912.2021.9647786&gt;","raw_type":"info:eu-repo/semantics/conferenceObject"},{"id":"mag:3209824883","is_oa":true,"landing_page_url":"https://arxiv.org/pdf/2111.01406","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"arXiv (Cornell University)","raw_type":null},{"id":"doi:10.48550/arxiv.2111.01406","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2111.01406","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2111.01406","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2111.01406","pdf_url":"https://arxiv.org/pdf/2111.01406","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1441312571","display_name":null,"funder_award_id":"00020","funder_id":"https://openalex.org/F4320320924","funder_display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung"},{"id":"https://openalex.org/G4663965864","display_name":"Agile Software Assistance","funder_award_id":"181973","funder_id":"https://openalex.org/F4320320924","funder_display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung"},{"id":"https://openalex.org/G4836148144","display_name":null,"funder_award_id":"20002","funder_id":"https://openalex.org/F4320320924","funder_display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung"},{"id":"https://openalex.org/G5599649393","display_name":null,"funder_award_id":"200020","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G628552264","display_name":null,"funder_award_id":"200020","funder_id":"https://openalex.org/F4320320924","funder_display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung"},{"id":"https://openalex.org/G7279557691","display_name":null,"funder_award_id":"200020-181973","funder_id":"https://openalex.org/F4320320924","funder_display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320320924","display_name":"Schweizerischer Nationalfonds zur F\u00f6rderung der Wissenschaftlichen Forschung","ror":"https://ror.org/00yjd3n13"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W1979290264","https://openalex.org/W2053154970","https://openalex.org/W2092115639","https://openalex.org/W2146889309","https://openalex.org/W2149868499","https://openalex.org/W2532335977","https://openalex.org/W2541261609","https://openalex.org/W2548788256","https://openalex.org/W2586555532","https://openalex.org/W2952447725","https://openalex.org/W2980753794","https://openalex.org/W2985320478","https://openalex.org/W3094062523","https://openalex.org/W3203709202","https://openalex.org/W3215012555","https://openalex.org/W3216124687","https://openalex.org/W6802181934"],"related_works":["https://openalex.org/W1590069634","https://openalex.org/W2185569743","https://openalex.org/W2898174077","https://openalex.org/W205658136","https://openalex.org/W2647318290","https://openalex.org/W169243621","https://openalex.org/W244282404","https://openalex.org/W293959071","https://openalex.org/W2798888873","https://openalex.org/W1971645743","https://openalex.org/W2736560207","https://openalex.org/W2071401720","https://openalex.org/W40588503","https://openalex.org/W321596021","https://openalex.org/W2095056590","https://openalex.org/W343585560","https://openalex.org/W2102119402","https://openalex.org/W2039543174","https://openalex.org/W2072331513","https://openalex.org/W3111359191"],"abstract_inverted_index":{"Recent":[0],"studies":[1],"have":[2,6],"shown":[3],"that":[4,110],"developers":[5,77,136],"difficulties":[7],"in":[8,33,57,75,117,143],"using":[9],"cryptographic":[10],"APIs,":[11],"which":[12,76],"often":[13],"led":[14],"to":[15,21,67,137],"security":[16],"flaws.":[17],"We":[18,37,51,124],"are":[19,54,114],"interested":[20],"tackle":[22],"this":[23],"matter":[24],"by":[25],"looking":[26],"into":[27],"what":[28],"types":[29],"of":[30,91,104,122,146,155],"problems":[31,97,156],"exist":[32],"various":[34],"crypto":[35,49,87,105,112,163],"libraries.":[36,50,106,164],"manually":[38],"studied":[39],"500":[40],"posts":[41,92],"on":[42],"Stack":[43],"Overflow":[44],"associated":[45],"with":[46,83],"20":[47],"popular":[48,162],"realized":[52],"there":[53,61],"10":[55],"themes":[56,121],"the":[58,111,126,140,144,153,158],"discussions.":[59,123],"Interestingly,":[60],"were":[62,72,94,100],"only":[63],"two":[64],"questions":[65],"related":[66],"attacks":[68],"against":[69],"cryptography.":[70,147],"There":[71],"63":[73],"discussions":[74],"had":[78],"interoperability":[79],"issues":[80,103],"when":[81],"working":[82],"more":[84,118],"than":[85,119],"a":[86],"library.":[88],"The":[89],"majority":[90],"(112)":[93],"about":[95,101],"encryption/decryption":[96],"and":[98,134],"111":[99],"installation/compilation":[102],"Overall,":[107],"we":[108],"realize":[109],"libraries":[113],"frequently":[115],"involved":[116],"five":[120],"believe":[125],"current":[127],"initial":[128],"findings":[129],"can":[130],"help":[131],"team":[132,141],"leaders":[133],"experienced":[135],"correctly":[138],"guide":[139],"members":[142],"domain":[145],"Moreover,":[148],"future":[149],"research":[150],"should":[151],"investigate":[152],"similarity":[154],"at":[157],"API":[159],"level":[160],"among":[161]},"counts_by_year":[],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2025-10-10T00:00:00"}