{"id":"https://openalex.org/W7164818185","doi":"https://doi.org/10.1145/3816713.3818804","title":"Vulnerability Analysis for CBT Exam System","display_name":"Vulnerability Analysis for CBT Exam System","publication_year":2026,"publication_date":"2026-06-15","ids":{"openalex":"https://openalex.org/W7164818185","doi":"https://doi.org/10.1145/3816713.3818804"},"language":null,"primary_location":{"id":"doi:10.1145/3816713.3818804","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3816713.3818804","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th International Conference on Advances in Information Technology","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5138671673","display_name":"Chalita Maksakha","orcid":"https://orcid.org/0009-0007-1543-8872"},"institutions":[{"id":"https://openalex.org/I60837268","display_name":"King Mongkut's University of Technology Thonburi","ror":"https://ror.org/0057ax056","country_code":"TH","type":"education","lineage":["https://openalex.org/I60837268"]}],"countries":["TH"],"is_corresponding":false,"raw_author_name":"Chalita Maksakha","raw_affiliation_strings":["King Mongkut's University of Technology Thonburi, Thungkru, Bangkok, Thailand"],"raw_orcid":"https://orcid.org/0009-0007-1543-8872","affiliations":[{"raw_affiliation_string":"King Mongkut's University of Technology Thonburi, Thungkru, Bangkok, Thailand","institution_ids":["https://openalex.org/I60837268"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5001422925","display_name":"Vajirasak Vanijja","orcid":"https://orcid.org/0009-0007-8549-5645"},"institutions":[{"id":"https://openalex.org/I60837268","display_name":"King Mongkut's University of Technology Thonburi","ror":"https://ror.org/0057ax056","country_code":"TH","type":"education","lineage":["https://openalex.org/I60837268"]}],"countries":["TH"],"is_corresponding":false,"raw_author_name":"Vajirasak Vanijja","raw_affiliation_strings":["King Mongkut's University of Technology Thonburi, Thungkru, Bangkok, Thailand"],"raw_orcid":"https://orcid.org/0009-0007-8549-5645","affiliations":[{"raw_affiliation_string":"King Mongkut's University of Technology Thonburi, Thungkru, Bangkok, Thailand","institution_ids":["https://openalex.org/I60837268"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I60837268"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.91145949,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.37290000915527344,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.37290000915527344,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.07980000227689743,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11492","display_name":"Academic integrity and plagiarism","score":0.04839999973773956,"subfield":{"id":"https://openalex.org/subfields/3311","display_name":"Safety Research"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.6549000144004822},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.6323000192642212},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5809000134468079},{"id":"https://openalex.org/keywords/nist","display_name":"NIST","score":0.512499988079071},{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.48429998755455017},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.4805999994277954},{"id":"https://openalex.org/keywords/vulnerability-management","display_name":"Vulnerability management","score":0.46309998631477356},{"id":"https://openalex.org/keywords/corporate-governance","display_name":"Corporate governance","score":0.4607999920845032},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.43230000138282776},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3815999925136566}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6660000085830688},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.6549000144004822},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.6323000192642212},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5809000134468079},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5256999731063843},{"id":"https://openalex.org/C111219384","wikidata":"https://www.wikidata.org/wiki/Q6954384","display_name":"NIST","level":2,"score":0.512499988079071},{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.48429998755455017},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.4805999994277954},{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.46309998631477356},{"id":"https://openalex.org/C39389867","wikidata":"https://www.wikidata.org/wiki/Q380767","display_name":"Corporate governance","level":2,"score":0.4607999920845032},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4357999861240387},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.43230000138282776},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3815999925136566},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.36579999327659607},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.3537999987602234},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.34940001368522644},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.34850001335144043},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.3472000062465668},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.33970001339912415},{"id":"https://openalex.org/C187191949","wikidata":"https://www.wikidata.org/wiki/Q1138496","display_name":"Profiling (computer programming)","level":2,"score":0.3377000093460083},{"id":"https://openalex.org/C2778221768","wikidata":"https://www.wikidata.org/wiki/Q8964474","display_name":"Risk governance","level":3,"score":0.32659998536109924},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.3237999975681305},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.32269999384880066},{"id":"https://openalex.org/C80958533","wikidata":"https://www.wikidata.org/wiki/Q1047174","display_name":"Audit trail","level":3,"score":0.3212999999523163},{"id":"https://openalex.org/C164403151","wikidata":"https://www.wikidata.org/wiki/Q7336280","display_name":"Risk management framework","level":4,"score":0.31679999828338623},{"id":"https://openalex.org/C2777615720","wikidata":"https://www.wikidata.org/wiki/Q11888847","display_name":"Prioritization","level":2,"score":0.2987000048160553},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.28929999470710754},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.2879999876022339},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.28790000081062317},{"id":"https://openalex.org/C184356942","wikidata":"https://www.wikidata.org/wiki/Q830382","display_name":"Best practice","level":2,"score":0.2768000066280365},{"id":"https://openalex.org/C2778137410","wikidata":"https://www.wikidata.org/wiki/Q2732820","display_name":"Government (linguistics)","level":2,"score":0.27469998598098755},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.2732999920845032},{"id":"https://openalex.org/C198783460","wikidata":"https://www.wikidata.org/wiki/Q629173","display_name":"Management system","level":2,"score":0.2721000015735626},{"id":"https://openalex.org/C149091818","wikidata":"https://www.wikidata.org/wiki/Q2429814","display_name":"Software system","level":3,"score":0.2531000077724457}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3816713.3818804","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3816713.3818804","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th International Conference on Advances in Information Technology","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.5776594877243042,"id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":3,"referenced_works":["https://openalex.org/W2618452333","https://openalex.org/W2976189582","https://openalex.org/W4385562826"],"related_works":[],"abstract_inverted_index":{"This":[0],"research":[1],"evaluates":[2],"the":[3,21,39,45,63,86,98,107,118,123],"security":[4,55,148],"of":[5,65,93,126],"Computer-Based":[6],"Testing":[7],"(CBT)":[8],"systems":[9],"through":[10],"a":[11,49,90,113],"comparative":[12],"case":[13],"study":[14,32,133],"between":[15],"Moodle+SEB":[16,99],"and":[17,26,41,68,144],"Testimate.":[18],"By":[19],"integrating":[20],"OWASP":[22],"Top":[23],"10":[24],"(2021)":[25],"NIST":[27],"SP":[28],"800-115":[29],"standards,":[30],"this":[31,82,132],"aims":[33],"to":[34,58,74,122,151],"detect":[35],"architectural":[36],"vulnerabilities":[37,105],"across":[38],"application":[40,108],"infrastructure":[42],"layers.":[43],"Crucially,":[44],"technical":[46],"assessment":[47],"reveals":[48],"high-severity":[50],"risk":[51],"regarding":[52],"campus":[53],"Wi-Fi":[54],"(NET-11)":[56],"common":[57],"both":[59],"deployment":[60],"environments,":[61],"where":[62],"absence":[64],"client":[66],"isolation":[67],"management-frame":[69],"protection":[70],"allows":[71],"on-segment":[72],"attackers":[73],"execute":[75],"opaque":[76],"session-disruption":[77],"or":[78],"man-in-the-middle":[79],"attacks.":[80],"Beyond":[81],"shared":[83],"environmental":[84],"factor,":[85],"dual-framework":[87],"audit":[88],"suggests":[89,134],"candidate":[91],"pattern":[92],"\"Layered":[94],"Risk":[95],"Inversion\".":[96],"While":[97],"configuration":[100],"demonstrates":[101],"slightly":[102],"fewer":[103],"software-centric":[104],"at":[106,117],"layer,":[109],"it":[110],"simultaneously":[111],"exhibits":[112],"wider":[114],"attack":[115],"surface":[116],"network":[119],"layer":[120],"due":[121],"inherent":[124],"complexity":[125],"generic":[127],"learning":[128],"management":[129],"systems.":[130],"Consequently,":[131],"that":[135],"single-framework":[136],"software":[137],"audits":[138],"create":[139],"profound":[140],"governance":[141,149],"blind":[142],"spots":[143],"proposes":[145],"an":[146],"integrated":[147],"framework":[150],"maintain":[152],"examination":[153],"integrity.":[154]},"counts_by_year":[],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2026-06-16T00:00:00"}
