{"id":"https://openalex.org/W2114016378","doi":"https://doi.org/10.1145/1866307.1866315","title":"Survivable key compromise in software update systems","display_name":"Survivable key compromise in software update systems","publication_year":2010,"publication_date":"2010-10-04","ids":{"openalex":"https://openalex.org/W2114016378","doi":"https://doi.org/10.1145/1866307.1866315","mag":"2114016378"},"language":"en","primary_location":{"id":"doi:10.1145/1866307.1866315","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1866307.1866315","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 17th ACM conference on Computer and communications security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5037929124","display_name":"Justin Samuel","orcid":"https://orcid.org/0009-0004-6170-5220"},"institutions":[{"id":"https://openalex.org/I134446601","display_name":"Berkeley College","ror":"https://ror.org/02xewxa75","country_code":"US","type":"education","lineage":["https://openalex.org/I134446601"]},{"id":"https://openalex.org/I95457486","display_name":"University of California, Berkeley","ror":"https://ror.org/01an7q238","country_code":"US","type":"education","lineage":["https://openalex.org/I95457486"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Justin Samuel","raw_affiliation_strings":["UC Berkeley, Berkeley, CA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"UC Berkeley, Berkeley, CA, USA","institution_ids":["https://openalex.org/I134446601","https://openalex.org/I95457486"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023855268","display_name":"Nick Mathewson","orcid":null},"institutions":[{"id":"https://openalex.org/I2800217829","display_name":"The Tor Project","ror":"https://ror.org/01m3r9s26","country_code":"US","type":"nonprofit","lineage":["https://openalex.org/I2800217829"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nick Mathewson","raw_affiliation_strings":["The Tor Project, Cambridge, MA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"The Tor Project, Cambridge, MA, USA","institution_ids":["https://openalex.org/I2800217829"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5030900037","display_name":"Justin Cappos","orcid":"https://orcid.org/0000-0003-1926-8544"},"institutions":[{"id":"https://openalex.org/I201448701","display_name":"University of Washington","ror":"https://ror.org/00cvxb145","country_code":"US","type":"education","lineage":["https://openalex.org/I201448701"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Justin Cappos","raw_affiliation_strings":["University of Washington, Seattle, WA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Washington, Seattle, WA, USA","institution_ids":["https://openalex.org/I201448701"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074119993","display_name":"Roger Dingledine","orcid":null},"institutions":[{"id":"https://openalex.org/I2800217829","display_name":"The Tor Project","ror":"https://ror.org/01m3r9s26","country_code":"US","type":"nonprofit","lineage":["https://openalex.org/I2800217829"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Roger Dingledine","raw_affiliation_strings":["The Tor Project, Cambridge, MA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"The Tor Project, Cambridge, MA, USA","institution_ids":["https://openalex.org/I2800217829"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":4.6614,"has_fulltext":false,"cited_by_count":101,"citation_normalized_percentile":{"value":0.94800738,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"61","last_page":"72"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.996999979019165,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.9255427122116089},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7523459196090698},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.644555926322937},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.638015866279602},{"id":"https://openalex.org/keywords/resilience","display_name":"Resilience (materials science)","score":0.5422085523605347},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5006594657897949},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.4840918779373169},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.464619517326355},{"id":"https://openalex.org/keywords/software-system","display_name":"Software system","score":0.4365938901901245},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3124406933784485},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.26949644088745117},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.13838377594947815},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.08944240212440491}],"concepts":[{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.9255427122116089},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7523459196090698},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.644555926322937},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.638015866279602},{"id":"https://openalex.org/C2779585090","wikidata":"https://www.wikidata.org/wiki/Q3457762","display_name":"Resilience (materials science)","level":2,"score":0.5422085523605347},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5006594657897949},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.4840918779373169},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.464619517326355},{"id":"https://openalex.org/C149091818","wikidata":"https://www.wikidata.org/wiki/Q2429814","display_name":"Software system","level":3,"score":0.4365938901901245},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3124406933784485},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.26949644088745117},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.13838377594947815},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.08944240212440491},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0},{"id":"https://openalex.org/C97355855","wikidata":"https://www.wikidata.org/wiki/Q11473","display_name":"Thermodynamics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/1866307.1866315","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1866307.1866315","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 17th ACM conference on Computer and communications security","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.175.6938","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.175.6938","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://freehaven.net/%7Earma/tuf-ccs2010.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W1532140623","https://openalex.org/W1534774240","https://openalex.org/W1552100577","https://openalex.org/W1560720671","https://openalex.org/W1567409052","https://openalex.org/W1585096027","https://openalex.org/W1598325486","https://openalex.org/W1730634423","https://openalex.org/W2008524185","https://openalex.org/W2089934546","https://openalex.org/W2099147968","https://openalex.org/W2111712517","https://openalex.org/W2112138431","https://openalex.org/W2116876232","https://openalex.org/W2122742966","https://openalex.org/W2125749614","https://openalex.org/W2147832797","https://openalex.org/W2148542607","https://openalex.org/W2162260997","https://openalex.org/W2164736940","https://openalex.org/W2488547546","https://openalex.org/W6635748211"],"related_works":["https://openalex.org/W2801622120","https://openalex.org/W2164141394","https://openalex.org/W1967649051","https://openalex.org/W3036524962","https://openalex.org/W4240977217","https://openalex.org/W2508088450","https://openalex.org/W4214750239","https://openalex.org/W2389434635","https://openalex.org/W2279908259","https://openalex.org/W2347476215"],"abstract_inverted_index":{"Today's":[0],"software":[1,21,41,45,81,98,114],"update":[2,22,46,82,99,115],"systems":[3,47,83,100],"have":[4,17],"little":[5],"or":[6,70],"no":[7],"defense":[8],"against":[9],"key":[10,15,65,103,121],"compromise.":[11,104,122],"As":[12],"a":[13,64,113],"result,":[14],"compromises":[16],"put":[18],"millions":[19],"of":[20,31,63],"clients":[23],"at":[24],"risk.":[25],"Here":[26],"we":[27,51,108],"identify":[28,92],"three":[29],"classes":[30],"information":[32,58],"whose":[33],"authenticity":[34],"and":[35,110],"integrity":[36],"are":[37,84],"critical":[38],"for":[39],"secure":[40],"updates.":[42],"Analyzing":[43],"existing":[44],"with":[48],"our":[49],"framework,":[50],"find":[52,74],"their":[53],"ability":[54],"to":[55,67,101,120],"communicate":[56],"this":[57],"securely":[59],"in":[60,79],"the":[61,76],"event":[62],"compromise":[66],"be":[68],"weak":[69],"nonexistent.":[71],"We":[72,91],"also":[73],"that":[75,96,117],"security":[77,94],"problems":[78],"current":[80],"compounded":[85],"by":[86],"inadequate":[87],"trust":[88],"revocation":[89],"mechanisms.":[90],"core":[93],"principles":[95],"allow":[97],"survive":[102],"Using":[105],"these":[106],"ideas,":[107],"design":[109],"implement":[111],"TUF,":[112],"framework":[116],"increases":[118],"resilience":[119]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":9},{"year":2023,"cited_by_count":13},{"year":2022,"cited_by_count":8},{"year":2021,"cited_by_count":6},{"year":2020,"cited_by_count":12},{"year":2019,"cited_by_count":12},{"year":2018,"cited_by_count":3},{"year":2017,"cited_by_count":5},{"year":2016,"cited_by_count":5},{"year":2015,"cited_by_count":4},{"year":2014,"cited_by_count":3},{"year":2013,"cited_by_count":3},{"year":2012,"cited_by_count":6}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}