{"id":"https://openalex.org/W4387298186","doi":"https://doi.org/10.1145/3607199.3607216","title":"Security Analysis of the 3MF Data Format","display_name":"Security Analysis of the 3MF Data Format","publication_year":2023,"publication_date":"2023-10-03","ids":{"openalex":"https://openalex.org/W4387298186","doi":"https://doi.org/10.1145/3607199.3607216"},"language":"en","primary_location":{"id":"doi:10.1145/3607199.3607216","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3607199.3607216","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5007354859","display_name":"J. Rossel","orcid":"https://orcid.org/0000-0002-3182-4059"},"institutions":[{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Jost Rossel","raw_affiliation_strings":["Paderborn University, Germany"],"raw_orcid":"https://orcid.org/0000-0002-3182-4059","affiliations":[{"raw_affiliation_string":"Paderborn University, Germany","institution_ids":["https://openalex.org/I206945453"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022274272","display_name":"Vladislav Mladenov","orcid":"https://orcid.org/0000-0001-9208-9281"},"institutions":[{"id":"https://openalex.org/I904495901","display_name":"Ruhr University Bochum","ror":"https://ror.org/04tsk2644","country_code":"DE","type":"education","lineage":["https://openalex.org/I904495901"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Vladislav Mladenov","raw_affiliation_strings":["Ruhr University Bochum, Germany"],"raw_orcid":"https://orcid.org/0000-0001-9208-9281","affiliations":[{"raw_affiliation_string":"Ruhr University Bochum, Germany","institution_ids":["https://openalex.org/I904495901"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5091741421","display_name":"Juraj Somorovsky","orcid":"https://orcid.org/0000-0002-3593-7720"},"institutions":[{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Juraj Somorovsky","raw_affiliation_strings":["Paderborn University, Germany"],"raw_orcid":"https://orcid.org/0000-0002-3593-7720","affiliations":[{"raw_affiliation_string":"Paderborn University, Germany","institution_ids":["https://openalex.org/I206945453"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5007354859"],"corresponding_institution_ids":["https://openalex.org/I206945453"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.15280692,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"179","last_page":"194"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11181","display_name":"Advanced Data Storage Technologies","score":0.9832000136375427,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11181","display_name":"Advanced Data Storage Technologies","score":0.9832000136375427,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9793000221252441,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13999","display_name":"Digital Rights Management and Security","score":0.9696000218391418,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6852838397026062},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.412163645029068},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.3386971652507782},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.32331377267837524}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6852838397026062},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.412163645029068},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.3386971652507782},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.32331377267837524}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3607199.3607216","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3607199.3607216","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6200000047683716,"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":21,"referenced_works":["https://openalex.org/W1976327390","https://openalex.org/W2015159529","https://openalex.org/W2133665775","https://openalex.org/W2351765604","https://openalex.org/W2418806285","https://openalex.org/W2522987309","https://openalex.org/W2534681634","https://openalex.org/W2535058934","https://openalex.org/W2587059979","https://openalex.org/W2619263430","https://openalex.org/W2792451387","https://openalex.org/W2792761021","https://openalex.org/W2899781671","https://openalex.org/W2947109320","https://openalex.org/W3116706230","https://openalex.org/W3136874162","https://openalex.org/W3137481294","https://openalex.org/W3180202404","https://openalex.org/W4241915324","https://openalex.org/W4245444791","https://openalex.org/W4289038676"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W4402327032","https://openalex.org/W2382290278"],"abstract_inverted_index":{"3D":[0,22,35,42,57,71,132],"printing":[1,23,58],"is":[2,118],"a":[3,77],"well-established":[4],"technology":[5],"with":[6],"rapidly":[7],"increasing":[8],"usage":[9],"scenarios":[10],"both":[11],"in":[12],"the":[13,51,67,70,113,121],"industry":[14],"and":[15,49,103,127,144],"consumer":[16],"context.":[17],"The":[18],"growing":[19],"popularity":[20],"of":[21,56,69,80,101,115],"has":[24],"also":[25],"attracted":[26],"security":[27,54],"researchers,":[28],"who":[29],"have":[30],"analyzed":[31],"possibilities":[32],"for":[33],"weakening":[34],"models":[36],"or":[37],"stealing":[38],"intellectual":[39],"property":[40],"from":[41],"models.":[43,133],"We":[44,61,107],"extend":[45],"these":[46,109,146],"important":[47],"aspects":[48],"provide":[50],"first":[52],"comprehensive":[53],"analysis":[55,137],"data":[59],"formats.":[60],"performed":[62],"our":[63,136],"systematic":[64],"study":[65],"on":[66,89,120],"example":[68],"Manufacturing":[72],"Format":[73],"(3MF),":[74],"which":[75,117,158],"offers":[76],"large":[78],"variety":[79],"features":[81],"that":[82],"could":[83],"lead":[84],"to":[85,130,139],"critical":[86],"attacks.":[87],"Based":[88],"3MF\u2019s":[90],"features,":[91],"we":[92,149],"systematized":[93],"three":[94],"attack":[95],"goals:":[96],"Data":[97],"Exfiltration":[98],"(dex),":[99],"Denial":[100],"Service,":[102],"UI":[104],"Spoofing":[105],"(uis).":[106],"achieve":[108],"goals":[110],"by":[111],"exploiting":[112],"complexity":[114],"3MF,":[116],"based":[119],"Open":[122],"Packaging":[123],"Conventions":[124],"(OPC)":[125],"format":[126],"uses":[128],"XML":[129],"define":[131],"In":[134],"total,":[135],"led":[138],"352":[140],"tests.":[141],"To":[142],"create":[143],"run":[145],"tests":[147],"automatically,":[148],"implemented":[150],"an":[151],"open-source":[152],"tool":[153],"named":[154],"3MF":[155],"Analyzer":[156],"(tool),":[157],"helped":[159],"us":[160],"evaluate":[161],"20":[162],"applications.":[163]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}