{"id":"https://openalex.org/W2050775268","doi":"https://doi.org/10.1145/2699026.2699127","title":"One Thing Leads to Another","display_name":"One Thing Leads to Another","publication_year":2015,"publication_date":"2015-02-23","ids":{"openalex":"https://openalex.org/W2050775268","doi":"https://doi.org/10.1145/2699026.2699127","mag":"2050775268"},"language":"en","primary_location":{"id":"doi:10.1145/2699026.2699127","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2699026.2699127","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th ACM Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067856099","display_name":"Peter Snyder","orcid":"https://orcid.org/0000-0001-7880-2503"},"institutions":[{"id":"https://openalex.org/I39422238","display_name":"University of Illinois Chicago","ror":"https://ror.org/02mpq6x41","country_code":"US","type":"education","lineage":["https://openalex.org/I39422238"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Peter Snyder","raw_affiliation_strings":["University of Illinois at Chicago, Chicago, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Chicago, Chicago, IL, USA","institution_ids":["https://openalex.org/I39422238"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5070578895","display_name":"Chris Kanich","orcid":"https://orcid.org/0000-0002-3836-2168"},"institutions":[{"id":"https://openalex.org/I39422238","display_name":"University of Illinois Chicago","ror":"https://ror.org/02mpq6x41","country_code":"US","type":"education","lineage":["https://openalex.org/I39422238"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Chris Kanich","raw_affiliation_strings":["University of Illinois at Chicago, Chicago, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Chicago, Chicago, IL, USA","institution_ids":["https://openalex.org/I39422238"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5067856099"],"corresponding_institution_ids":["https://openalex.org/I39422238"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.09180153,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"135","last_page":"137"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/credential","display_name":"Credential","score":0.855969250202179},{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.7493867874145508},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7222711443901062},{"id":"https://openalex.org/keywords/privilege","display_name":"Privilege (computing)","score":0.6690673828125},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.6517268419265747},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6047199368476868},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.589119553565979},{"id":"https://openalex.org/keywords/harm","display_name":"Harm","score":0.537890613079071},{"id":"https://openalex.org/keywords/reset","display_name":"Reset (finance)","score":0.5269078612327576},{"id":"https://openalex.org/keywords/point","display_name":"Point (geometry)","score":0.47866329550743103},{"id":"https://openalex.org/keywords/single-point-of-failure","display_name":"Single point of failure","score":0.4133756160736084},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.09915941953659058}],"concepts":[{"id":"https://openalex.org/C2777810591","wikidata":"https://www.wikidata.org/wiki/Q16861606","display_name":"Credential","level":2,"score":0.855969250202179},{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.7493867874145508},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7222711443901062},{"id":"https://openalex.org/C2780138299","wikidata":"https://www.wikidata.org/wiki/Q3404265","display_name":"Privilege (computing)","level":2,"score":0.6690673828125},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.6517268419265747},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6047199368476868},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.589119553565979},{"id":"https://openalex.org/C2777363581","wikidata":"https://www.wikidata.org/wiki/Q15098235","display_name":"Harm","level":2,"score":0.537890613079071},{"id":"https://openalex.org/C2779795794","wikidata":"https://www.wikidata.org/wiki/Q7315343","display_name":"Reset (finance)","level":2,"score":0.5269078612327576},{"id":"https://openalex.org/C28719098","wikidata":"https://www.wikidata.org/wiki/Q44946","display_name":"Point (geometry)","level":2,"score":0.47866329550743103},{"id":"https://openalex.org/C165136773","wikidata":"https://www.wikidata.org/wiki/Q1363179","display_name":"Single point of failure","level":2,"score":0.4133756160736084},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.09915941953659058},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2699026.2699127","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2699026.2699127","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th ACM Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":7,"referenced_works":["https://openalex.org/W1412796528","https://openalex.org/W1634470931","https://openalex.org/W2103487156","https://openalex.org/W2132280055","https://openalex.org/W2161020477","https://openalex.org/W2522120027","https://openalex.org/W4239223658"],"related_works":["https://openalex.org/W2389256677","https://openalex.org/W2013502867","https://openalex.org/W2353766896","https://openalex.org/W1986630940","https://openalex.org/W1859642347","https://openalex.org/W2123415650","https://openalex.org/W4387081478","https://openalex.org/W4285327239","https://openalex.org/W2611670505","https://openalex.org/W4250612415"],"abstract_inverted_index":{"A":[0],"user's":[1,125],"primary":[2,67,126],"email":[3,68,127,133],"account,":[4],"in":[5,14,142,154],"addition":[6],"to":[7,58,88,111],"being":[8,20],"an":[9,59,77],"easy":[10],"point":[11,25],"of":[12,26,49,102,115,162],"contact":[13],"our":[15],"online":[16,116],"world,":[17],"is":[18,70,146],"increasingly":[19,71],"used":[21],"as":[22],"a":[23,86,100,112,124,143],"single":[24],"failure":[27],"for":[28,93],"all":[29,55],"web":[30,97],"security.":[31],"Features":[32],"like":[33],"unlimited":[34],"message":[35],"storage,":[36],"numerous":[37],"weak":[38],"password":[39],"reset":[40],"features":[41],"and":[42,73,85,159],"economically":[43],"enticing":[44],"spoils":[45],"(in":[46],"the":[47,132,139,157],"form":[48],"financial":[50],"accounts":[51,117],"or":[52],"personal":[53],"photos)":[54],"add":[56],"up":[57],"environment":[60],"where":[61],"overthrowing":[62],"someone's":[63],"life":[64],"via":[65],"their":[66],"account":[69,128,145],"likely":[72],"damaging.":[74],"We":[75,149],"describe":[76,151],"attack":[78],"we":[79,106],"call":[80],"credential":[81,163],"based":[82,164],"privilege":[83,165],"escalation,":[84],"methodology":[87],"evaluate":[89],"this":[90],"attack's":[91],"potential":[92],"user":[94],"harm":[95],"at":[96],"scale.":[98],"In":[99],"study":[101],"over":[103],"9,000":[104],"users":[105],"find":[107],"that,":[108],"unsurprisingly,":[109],"access":[110],"vast":[113],"number":[114],"can":[118],"be":[119],"gained":[120],"by":[121],"breaking":[122],"into":[123],"(even":[129],"without":[130],"knowing":[131],"account's":[134],"password),":[135],"but":[136],"even":[137],"then":[138],"monetizable":[140],"value":[141],"typical":[144],"relatively":[147],"low.":[148],"also":[150],"future":[152],"directions":[153],"understanding":[155],"both":[156],"technical":[158],"human":[160],"aspects":[161],"escalation.":[166]},"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}