{"id":"https://openalex.org/W4391828054","doi":"https://doi.org/10.1109/soli60636.2023.10425121","title":"ASAP: Application Security Assessment Protocol","display_name":"ASAP: Application Security Assessment Protocol","publication_year":2023,"publication_date":"2023-12-11","ids":{"openalex":"https://openalex.org/W4391828054","doi":"https://doi.org/10.1109/soli60636.2023.10425121"},"language":"en","primary_location":{"id":"doi:10.1109/soli60636.2023.10425121","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/soli60636.2023.10425121","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://figshare.com/articles/conference_contribution/ASAP_Application_Security_Assessment_Protocol/27018712","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5021323754","display_name":"Vivek Balachandran","orcid":"https://orcid.org/0000-0003-4847-7150"},"institutions":[{"id":"https://openalex.org/I168639165","display_name":"Singapore Institute of Technology","ror":"https://ror.org/01v2c2791","country_code":"SG","type":"education","lineage":["https://openalex.org/I168639165"]}],"countries":["SG"],"is_corresponding":true,"raw_author_name":"Vivek Balachandran","raw_affiliation_strings":["Singapore Institute of Technology,Singapore","Singapore Institute of Technology, Singapore"],"affiliations":[{"raw_affiliation_string":"Singapore Institute of Technology,Singapore","institution_ids":["https://openalex.org/I168639165"]},{"raw_affiliation_string":"Singapore Institute of Technology, Singapore","institution_ids":["https://openalex.org/I168639165"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5004877212","display_name":"Ryan Fraser Kirwan","orcid":null},"institutions":[{"id":"https://openalex.org/I168639165","display_name":"Singapore Institute of Technology","ror":"https://ror.org/01v2c2791","country_code":"SG","type":"education","lineage":["https://openalex.org/I168639165"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Ryan Kirwan","raw_affiliation_strings":["Singapore Institute of Technology,Singapore","Singapore Institute of Technology, Singapore"],"affiliations":[{"raw_affiliation_string":"Singapore Institute of Technology,Singapore","institution_ids":["https://openalex.org/I168639165"]},{"raw_affiliation_string":"Singapore Institute of Technology, Singapore","institution_ids":["https://openalex.org/I168639165"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5086584393","display_name":"Peter K. K. Loh","orcid":"https://orcid.org/0000-0002-5785-079X"},"institutions":[{"id":"https://openalex.org/I168639165","display_name":"Singapore Institute of Technology","ror":"https://ror.org/01v2c2791","country_code":"SG","type":"education","lineage":["https://openalex.org/I168639165"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Peter Loh","raw_affiliation_strings":["Singapore Institute of Technology,Singapore","Singapore Institute of Technology, Singapore"],"affiliations":[{"raw_affiliation_string":"Singapore Institute of Technology,Singapore","institution_ids":["https://openalex.org/I168639165"]},{"raw_affiliation_string":"Singapore Institute of Technology, Singapore","institution_ids":["https://openalex.org/I168639165"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5093930945","display_name":"Mohamed Riaz Ebrahim","orcid":null},"institutions":[{"id":"https://openalex.org/I1302135459","display_name":"PayPal (United States)","ror":"https://ror.org/016jadm77","country_code":"US","type":"company","lineage":["https://openalex.org/I1302135459"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mohamed Riaz Ebrahim","raw_affiliation_strings":["PayPal,Singapore","PayPal, Singapore"],"affiliations":[{"raw_affiliation_string":"PayPal,Singapore","institution_ids":["https://openalex.org/I1302135459"]},{"raw_affiliation_string":"PayPal, Singapore","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5111129721","display_name":"Ravishanker Kusuma","orcid":null},"institutions":[{"id":"https://openalex.org/I1302135459","display_name":"PayPal (United States)","ror":"https://ror.org/016jadm77","country_code":"US","type":"company","lineage":["https://openalex.org/I1302135459"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ravishanker Kusuma","raw_affiliation_strings":["PayPal,Singapore","PayPal, Singapore"],"affiliations":[{"raw_affiliation_string":"PayPal,Singapore","institution_ids":["https://openalex.org/I1302135459"]},{"raw_affiliation_string":"PayPal, Singapore","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5021323754"],"corresponding_institution_ids":["https://openalex.org/I168639165"],"apc_list":null,"apc_paid":null,"fwci":0.2001,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.50148644,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"4"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7469564080238342},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.6819679737091064},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6207987666130066},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5197734236717224},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.4748956263065338},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.4735678434371948},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.41504934430122375},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.41018766164779663},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.40164586901664734},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3137246072292328},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.2941547930240631},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.2888507544994354},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.07934170961380005}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7469564080238342},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.6819679737091064},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6207987666130066},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5197734236717224},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.4748956263065338},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.4735678434371948},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.41504934430122375},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.41018766164779663},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.40164586901664734},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3137246072292328},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.2941547930240631},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.2888507544994354},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.07934170961380005},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/soli60636.2023.10425121","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/soli60636.2023.10425121","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)","raw_type":"proceedings-article"},{"id":"pmh:oai:figshare.com:article/27018712","is_oa":true,"landing_page_url":"https://figshare.com/articles/conference_contribution/ASAP_Application_Security_Assessment_Protocol/27018712","pdf_url":null,"source":{"id":"https://openalex.org/S4377196282","display_name":"Figshare","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210132348","host_organization_name":"Figshare (United Kingdom)","host_organization_lineage":["https://openalex.org/I4210132348"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text"}],"best_oa_location":{"id":"pmh:oai:figshare.com:article/27018712","is_oa":true,"landing_page_url":"https://figshare.com/articles/conference_contribution/ASAP_Application_Security_Assessment_Protocol/27018712","pdf_url":null,"source":{"id":"https://openalex.org/S4377196282","display_name":"Figshare","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210132348","host_organization_name":"Figshare (United Kingdom)","host_organization_lineage":["https://openalex.org/I4210132348"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text"},"sustainable_development_goals":[{"score":0.5600000023841858,"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":4,"referenced_works":["https://openalex.org/W2748369307","https://openalex.org/W3039344911","https://openalex.org/W3132421653","https://openalex.org/W4210962885"],"related_works":["https://openalex.org/W2540919174","https://openalex.org/W2376521939","https://openalex.org/W2913452075","https://openalex.org/W2361960050","https://openalex.org/W2094754363","https://openalex.org/W3005817867","https://openalex.org/W4385770215","https://openalex.org/W2016596278","https://openalex.org/W2159174455","https://openalex.org/W2495229164"],"abstract_inverted_index":{"Web":[0],"application":[1],"attacks":[2],"are":[3,28,37,94,150],"increasing":[4,38],"in":[5,9,30,39,115],"number":[6,31],"and":[7,20,25,32,62,69,73,82,89,110,122,138],"growing":[8,29],"sophistication.":[10],"Due":[11],"to":[12,15,76,127,158,193],"various":[13,106],"needs":[14],"support":[16],"today's":[17],"digital":[18],"world":[19],"business":[21],"process,":[22],"web,":[23],"APIs":[24,81],"mobile":[26,83],"apps":[27,130],"scale.":[33],"In":[34,146],"particular,":[35],"cyber-attacks":[36],"the":[40,105,143,187,191,195],"web":[41,58,79,91,129,200],"layer,":[42],"posing":[43],"an":[44,63,152,181],"easy":[45],"target":[46],"for":[47,56,131,155],"attackers.":[48],"Currently,":[49],"there":[50],"is":[51],"no":[52],"common":[53,164],"industry":[54],"standard":[55,98,136],"a":[57,96,135,163,173,199],"security":[59,66,92,132,144,156,169,196],"payload":[60],"template":[61],"approach":[64,137],"that":[65,166,184],"community,":[67],"researchers":[68,157],"companies":[70],"can":[71,103,117,167,185],"contribute":[72],"rely":[74],"on":[75],"test":[77],"any":[78],"applications,":[80],"apps.":[84],"Although":[85],"different":[86],"open":[87,99,124],"source":[88,100,125],"commercial":[90],"scanners":[93],"available,":[95],"single":[97],"collaboration":[101],"project":[102],"benefit":[104],"IT":[107],"industries.":[108],"Start-ups":[109],"Small":[111],"Medium":[112],"Enterprises":[113],"(SMEs)":[114],"particular":[116],"use":[118,186],"this":[119,147],"readily":[120],"available":[121],"validated":[123],"tool":[126],"scan":[128],"vulnerabilities":[133],"using":[134],"with":[139,172],"updated":[140],"payloads":[141],"from":[142,190],"community.":[145],"work":[148],"we":[149],"designing":[151],"intuitive":[153],"framework":[154,178],"translate":[159],"attack":[160,170,188],"vectors":[161,171,189],"into":[162],"language,":[165],"represent":[168],"minimal":[174],"learning":[175],"curve.":[176],"The":[177],"also":[179],"has":[180],"assessment":[182],"engine":[183],"repository":[192],"assess":[194],"vulnerability":[197],"of":[198],"application.":[201]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}