Loading [MathJax]/extensions/tex2jax.js

The Sound of Silence: Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects

Publikation: Beitrag in Buch/Bericht/Sammelwerk/KonferenzbandAufsatz in KonferenzbandForschungPeer-Review

Autorschaft

  • Ralf Ramsauer
  • Lukas Bulwahn
  • Daniel Lohmann
  • Wolfgang Mauerer

Organisationseinheiten

Externe Organisationen

  • Universität Regensburg
  • Bayerische Motoren Werke AG
  • Siemens AG

Details

OriginalspracheEnglisch
Titel des SammelwerksCCSW'20
UntertitelProceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop
Herausgeber (Verlag)Association for Computing Machinery (ACM)
Seiten147-157
ISBN (Print)978-1-4503-8084-3
PublikationsstatusVeröffentlicht - Nov. 2020
Veranstaltung11th ACM SIGSAC Conference on Cloud Computing Security Workshop - Virtual, Online
Dauer: 9 Nov. 20209 Nov. 2020

Zitieren

The Sound of Silence: Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects. / Ramsauer, Ralf; Bulwahn, Lukas; Lohmann, Daniel et al.
CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop. Association for Computing Machinery (ACM), 2020. S. 147-157.

Publikation: Beitrag in Buch/Bericht/Sammelwerk/KonferenzbandAufsatz in KonferenzbandForschungPeer-Review

Ramsauer, R, Bulwahn, L, Lohmann, D & Mauerer, W 2020, The Sound of Silence: Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects. in CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop. Association for Computing Machinery (ACM), S. 147-157, 11th ACM SIGSAC Conference on Cloud Computing Security Workshop, 9 Nov. 2020. https://doi.org/10.48550/arXiv.2009.01694, https://doi.org/10.1145/3411495.3421360
Ramsauer, R., Bulwahn, L., Lohmann, D., & Mauerer, W. (2020). The Sound of Silence: Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects. In CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop (S. 147-157). Association for Computing Machinery (ACM). https://doi.org/10.48550/arXiv.2009.01694, https://doi.org/10.1145/3411495.3421360
Ramsauer R, Bulwahn L, Lohmann D, Mauerer W. The Sound of Silence: Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects. in CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop. Association for Computing Machinery (ACM). 2020. S. 147-157 Epub 2020 Nov 9. doi: 10.48550/arXiv.2009.01694, 10.1145/3411495.3421360
Ramsauer, Ralf ; Bulwahn, Lukas ; Lohmann, Daniel et al. / The Sound of Silence : Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects. CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop. Association for Computing Machinery (ACM), 2020. S. 147-157
Download
@inproceedings{08657218eef349e38eb8a24e7f04db2e,
title = "The Sound of Silence: Mining Security Vulnerabilities from Secret Integration Channels in Open-Source Projects",
author = "Ralf Ramsauer and Lukas Bulwahn and Daniel Lohmann and Wolfgang Mauerer",
note = "Funding Information: This work was supported by the iDev40 project and the German Research Council (DFG) under grant no. LO 1719/3-1. The iDev40 project has received funding from the ECSEL Joint Undertaking (JU) under grant no. 783163. The JU receives support from the European Union{\textquoteright}s Horizon 2020 research and innovation programme. It is co- funded by the consortium members, grants from Austria, Germany, Belgium, Italy, Spain and Romania. Acknowledgments: We thank Greg Kroah-Hartman for giving us the opportunity to discuss the topic with Linux kernel security officers. We also thank authors of off-list patches for their detailed answers, discussions on their patches and fruitful conversation. We do not mention them by name. We also thank Christian Weber and Florian Loher for their assis- tance with creating figures and illustrations.; 11th ACM SIGSAC Conference on Cloud Computing Security Workshop ; Conference date: 09-11-2020 Through 09-11-2020",
year = "2020",
month = nov,
doi = "10.48550/arXiv.2009.01694",
language = "English",
isbn = "978-1-4503-8084-3",
pages = "147--157",
booktitle = "CCSW'20",
publisher = "Association for Computing Machinery (ACM)",
address = "United States",

}

Download

TY - GEN

T1 - The Sound of Silence

T2 - 11th ACM SIGSAC Conference on Cloud Computing Security Workshop

AU - Ramsauer, Ralf

AU - Bulwahn, Lukas

AU - Lohmann, Daniel

AU - Mauerer, Wolfgang

N1 - Funding Information: This work was supported by the iDev40 project and the German Research Council (DFG) under grant no. LO 1719/3-1. The iDev40 project has received funding from the ECSEL Joint Undertaking (JU) under grant no. 783163. The JU receives support from the European Union’s Horizon 2020 research and innovation programme. It is co- funded by the consortium members, grants from Austria, Germany, Belgium, Italy, Spain and Romania. Acknowledgments: We thank Greg Kroah-Hartman for giving us the opportunity to discuss the topic with Linux kernel security officers. We also thank authors of off-list patches for their detailed answers, discussions on their patches and fruitful conversation. We do not mention them by name. We also thank Christian Weber and Florian Loher for their assis- tance with creating figures and illustrations.

PY - 2020/11

Y1 - 2020/11

UR - https://www.scopus.com/record/display.uri?eid=2-s2.0-85097445718&origin=inward&txGid=d2c23412f366aec3fdf5fe9be7ae8c59

U2 - 10.48550/arXiv.2009.01694

DO - 10.48550/arXiv.2009.01694

M3 - Conference contribution

SN - 978-1-4503-8084-3

SP - 147

EP - 157

BT - CCSW'20

PB - Association for Computing Machinery (ACM)

Y2 - 9 November 2020 through 9 November 2020

ER -