{"id":"https://openalex.org/W4223898035","doi":"https://doi.org/10.1145/3508398.3511525","title":"Hardening with Scapolite","display_name":"Hardening with Scapolite","publication_year":2022,"publication_date":"2022-04-14","ids":{"openalex":"https://openalex.org/W4223898035","doi":"https://doi.org/10.1145/3508398.3511525"},"language":"en","primary_location":{"id":"doi:10.1145/3508398.3511525","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3508398.3511525","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Twelfth ACM Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2209.08824","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5065650079","display_name":"Patrick St\u00f6ckle","orcid":"https://orcid.org/0000-0003-0193-5871"},"institutions":[{"id":"https://openalex.org/I62916508","display_name":"Technical University of Munich","ror":"https://ror.org/02kkvpp62","country_code":"DE","type":"education","lineage":["https://openalex.org/I62916508"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Patrick St\u00f6ckle","raw_affiliation_strings":["Technical University of Munich (TUM), Munich, Germany"],"affiliations":[{"raw_affiliation_string":"Technical University of Munich (TUM), Munich, Germany","institution_ids":["https://openalex.org/I62916508"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075206072","display_name":"Ionu\u021b Pruteanu","orcid":null},"institutions":[{"id":"https://openalex.org/I4210095246","display_name":"Siemens (Romania)","ror":"https://ror.org/00sexkk33","country_code":"RO","type":"company","lineage":["https://openalex.org/I1325886976","https://openalex.org/I4210095246"]}],"countries":["RO"],"is_corresponding":false,"raw_author_name":"Ionu\u021b Pruteanu","raw_affiliation_strings":["Siemens AG, Bucharest, Romania"],"affiliations":[{"raw_affiliation_string":"Siemens AG, Bucharest, Romania","institution_ids":["https://openalex.org/I4210095246"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033472525","display_name":"Bernd Grobauer","orcid":"https://orcid.org/0000-0003-0792-3935"},"institutions":[{"id":"https://openalex.org/I1325886976","display_name":"Siemens (Germany)","ror":"https://ror.org/059mq0909","country_code":"DE","type":"company","lineage":["https://openalex.org/I1325886976"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Bernd Grobauer","raw_affiliation_strings":["Siemens AG, Munich, Germany"],"affiliations":[{"raw_affiliation_string":"Siemens AG, Munich, Germany","institution_ids":["https://openalex.org/I1325886976"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002011805","display_name":"Alexander Pretschner","orcid":"https://orcid.org/0000-0002-5573-1201"},"institutions":[{"id":"https://openalex.org/I62916508","display_name":"Technical University of Munich","ror":"https://ror.org/02kkvpp62","country_code":"DE","type":"education","lineage":["https://openalex.org/I62916508"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Alexander Pretschner","raw_affiliation_strings":["Technical University of Munich (TUM), Munich, Germany"],"affiliations":[{"raw_affiliation_string":"Technical University of Munich (TUM), Munich, Germany","institution_ids":["https://openalex.org/I62916508"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5065650079"],"corresponding_institution_ids":["https://openalex.org/I62916508"],"apc_list":null,"apc_paid":null,"fwci":1.5943,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.86298818,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"137","last_page":"142"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9204000234603882,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9204000234603882,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/geology","display_name":"Geology","score":0.5462888479232788}],"concepts":[{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.5462888479232788}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3508398.3511525","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3508398.3511525","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Twelfth ACM Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2209.08824","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2209.08824","pdf_url":"https://arxiv.org/pdf/2209.08824","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":null,"raw_type":"text"},{"id":"pmh:oai:mediatum.ub.tum.de:node/1656785","is_oa":true,"landing_page_url":"https://mediatum.ub.tum.de/1656785","pdf_url":null,"source":{"id":"https://openalex.org/S4377196330","display_name":"mediaTUM  (Technical University of Munich)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I62916508","host_organization_name":"Technical University of Munich","host_organization_lineage":["https://openalex.org/I62916508"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"ConferencePaper"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2209.08824","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2209.08824","pdf_url":"https://arxiv.org/pdf/2209.08824","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W1970017388","https://openalex.org/W2041783719","https://openalex.org/W2066787289","https://openalex.org/W2102436656","https://openalex.org/W2261611353","https://openalex.org/W2522470548","https://openalex.org/W2728910784","https://openalex.org/W2761268990","https://openalex.org/W2889665541","https://openalex.org/W2893249073","https://openalex.org/W2895149331","https://openalex.org/W2901851720","https://openalex.org/W2938295127","https://openalex.org/W2955656327","https://openalex.org/W3016376596","https://openalex.org/W3028909709","https://openalex.org/W3043487928","https://openalex.org/W3047194524","https://openalex.org/W3047848029","https://openalex.org/W3048126111","https://openalex.org/W3086096717","https://openalex.org/W3090109561","https://openalex.org/W3124413751","https://openalex.org/W3203913427","https://openalex.org/W4223898035","https://openalex.org/W4253537957"],"related_works":["https://openalex.org/W2324615561","https://openalex.org/W2086120259","https://openalex.org/W2245170124","https://openalex.org/W2076393078","https://openalex.org/W3186982001","https://openalex.org/W1984402782","https://openalex.org/W2137941439","https://openalex.org/W2004200960","https://openalex.org/W1999891779","https://openalex.org/W2029513011"],"abstract_inverted_index":{"Security":[0],"Hardening":[1],"is":[2],"the":[3,11,14,93,112],"process":[4,20],"of":[5,13,54,72,97,127],"configuring":[6],"IT":[7],"systems":[8,48],"to":[9,151,155],"ensure":[10],"security":[12,35,79,161],"systems'":[15,78,166],"components":[16,44],"and":[17,49,57,63,80,95,116,123,145,163],"data":[18],"they":[19],"or":[21,70],"store.":[22],"In":[23],"many":[24],"cases,":[25],"so-called":[26],"security-configuration":[27,55,86,147],"guides":[28,38,56,74,87,103],"are":[29,65,104],"used":[30],"as":[31,46],"a":[32],"basis":[33],"for":[34,43,60,114,121,142],"hardening.":[36],"These":[37],"describe":[39],"secure":[40],"configuration":[41,100],"settings":[42],"such":[45],"operating":[47],"standard":[50],"applications.":[51],"Rigorous":[52],"testing":[53,126,146],"automated":[58,109],"mechanisms":[59],"their":[61,160,165],"implementation":[62,94,115],"validation":[64,96],"necessary":[66],"since":[67],"erroneous":[68],"implementations":[69],"checks":[71],"hardening":[73,162],"may":[75],"severely":[76],"impact":[77],"functionality.":[81],"At":[82],"Siemens,":[83],"centrally":[84],"maintained":[85,105],"carry":[88,124],"machine-readable":[89],"information":[90],"specifying":[91],"both":[92],"each":[98],"required":[99],"step.":[101],"The":[102],"within":[106],"git":[107],"repositories;":[108],"pipelines":[110],"generate":[111],"artifacts":[113,129],"checking,":[117],"e.g.,":[118],"PowerShell":[119],"scripts":[120],"Windows,":[122],"out":[125],"these":[128,153],"on":[130],"AWS":[131],"images.":[132],"This":[133],"paper":[134],"describes":[135],"our":[136,139],"experiences":[137,154],"with":[138,159],"DevOps-inspired":[140],"approach":[141],"authoring,":[143],"maintaining,":[144],"guides.":[148],"We":[149],"want":[150],"share":[152],"help":[156],"other":[157],"organizations":[158],"increase":[164],"security.":[167]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":2}],"updated_date":"2026-04-03T22:45:19.894376","created_date":"2022-04-19T00:00:00"}