default search action
Google
Google Scholar
Semantic Scholar
Internet Archive Scholar
CiteSeerX
ORCIDSantiago Torres-Arias
Person information
SPARQL queries 
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
2020 – today
- 2024
[c15]Austen Knapp, Emmanuel Wamuo, Minhajul Alam Rahat
, Santiago Torres-Arias, Gedare Bloom, Yanyan Zhuang:
Should Smart Homes Be Afraid of Evil Maids? : Identifying Vulnerabilities in IoT Device Firmware. CCWC 2024: 467-473- [c14]Taylor R. Schorlemmer, Kelechi G. Kalu, Luke Chigges, Kyung Myung Ko, Eman Abu Ishgair, Saurabh Bagchi, Santiago Torres-Arias, James C. Davis:
Signing in Four Public Software Package Registries: Quantity, Quality, and Influencing Factors. SP 2024: 1160-1178 - [i9]Taylor R. Schorlemmer, Kelechi G. Kalu, Luke Chigges, Kyung Myung Ko, Eman Abdul-Muhd Abu Isghair, Saurabh Baghi, Santiago Torres-Arias, James C. Davis:
Signing in Four Public Software Package Registries: Quantity, Quality, and Influencing Factors. CoRR abs/2401.14635 (2024) - [i8]Eman Abu Ishgair, Marcela S. Melara, Santiago Torres-Arias:
SoK: A Defense-Oriented Evaluation of Software Supply Chain Security. CoRR abs/2405.14993 (2024) - [i7]Kelechi G. Kalu, Tanya Singla, Chinenye Okafor, Santiago Torres-Arias, James C. Davis:
An Industry Interview Study of Software Signing for Supply Chain Security. CoRR abs/2406.08198 (2024) - [i6]Chinenye Okafor, Taylor R. Schorlemmer, Santiago Torres-Arias, James C. Davis:
SoK: Analysis of Software Supply Chain Security by Establishing Secure Design Properties. CoRR abs/2406.10109 (2024) - [i5]Chinenye L. Okafor, James C. Davis, Santiago Torres-Arias:
DiVerify: Diversifying Identity Verification in Next-Generation Software Signing. CoRR abs/2406.15596 (2024) - [i4]Taylor R. Schorlemmer, Ethan H. Burmane, Kelechi G. Kalu, Santiago Torres-Arias, James C. Davis:
Establishing Provenance Before Coding: Traditional and Next-Gen Signing. CoRR abs/2407.03949 (2024) - 2023
- [j5]Santiago Torres-Arias, Daniel E. Geer, John Speed Meyers:
A Viewpoint on Knowing Software: Bill of Materials Quality When You See It. IEEE Secur. Priv. 21(6): 50-54 (2023) - [j4]Marcela S. Melara, Santiago Torres-Arias:
A Viewpoint on Software Supply Chain Security: Are We Getting Lost in Translation? IEEE Secur. Priv. 21(6): 55-58 (2023) - [j3]Hammad Afzali, Santiago Torres-Arias, Reza Curtmola, Justin Cappos:
Towards verifiable web-based code review systems. J. Comput. Secur. 31(2): 153-184 (2023) - [c13]Kelsey Merrill, Zachary Newman, Santiago Torres-Arias, Karen R. Sollins:
Speranza: Usable, Privacy-friendly Software Signing. CCS 2023: 3388-3402 - [c12]Marcela S. Melara, Santiago Torres-Arias, Laurent Simon:
SCORED '23: Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses. CCS 2023: 3671-3672 - [c11]Hongying Dong, Hao Shu, Vijay Prakash, Yizhe Zhang, Muhammad Talha Paracha, David R. Choffnes, Santiago Torres-Arias, Danny Yuxing Huang, Yixin Sun:
Behind the Scenes: Uncovering TLS and Server Certificate Practice of IoT Device Vendors in the Wild. IMC 2023: 457-477 - [e3]Santiago Torres-Arias, Marcela S. Melara, Laurent Simon, Nikos Vasilakis, Kathleen Moriarty:
Proceedings of the 2023 Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED 2023, Copenhagen, Denmark, 30 November 2023. ACM 2023 [contents] - [e2]Santiago Torres-Arias, Lorenzo De Carli, Yuchen Zhang:
Proceedings of the 2024 Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED 2024, Salt Lake City, UT, USA, October 14-18, 2024. ACM 2023, ISBN 979-8-4007-1240-1 [contents] - [i3]Kelsey Merrill, Zachary Newman, Santiago Torres-Arias, Karen R. Sollins:
Speranza: Usable, privacy-friendly software signing. CoRR abs/2305.06463 (2023) - [i2]Paschal C. Amusuo, Kyle A. Robinson, Santiago Torres-Arias, Laurent Simon, James C. Davis:
Preventing Supply Chain Vulnerabilities in Java with a Fine-Grained Permission Manager. CoRR abs/2310.14117 (2023) - [i1]Ayushi Sharma, Shashank Sharma, Santiago Torres-Arias, Aravind Machiry:
Rust for Embedded Systems: Current State, Challenges and Open Problems. CoRR abs/2311.05063 (2023) - 2022
- [c10]Zachary Newman, John Speed Meyers, Santiago Torres-Arias:
Sigstore: Software Signing for Everybody. CCS 2022: 2353-2367 - [c9]Santiago Torres-Arias, Marcela S. Melara, Laurent Simon:
SCORED '22: ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses. CCS 2022: 3555-3556 - [c8]Chinenye Okafor, Taylor R. Schorlemmer, Santiago Torres-Arias, James C. Davis:
SoK: Analysis of Software Supply Chain Security by Establishing Secure Design Properties. SCORED@CCS 2022: 15-24 - [c7]Sangat Vaidya, Santiago Torres-Arias, Justin Cappos, Reza Curtmola:
Bootstrapping Trust in Community Repository Projects. SecureComm 2022: 450-469 - [e1]Santiago Torres-Arias, Marcela S. Melara, Laurent Simon:
Proceedings of the 2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED2022, Los Angeles, CA, USA, 7 November 2022. ACM 2022, ISBN 978-1-4503-9885-5 [contents] - 2021
- [c6]Kevin Gallagher, Santiago Torres-Arias, Nasir D. Memon, Jessica Feldman:
COLBAC: Shifting Cybersecurity from Hierarchical to Horizontal Designs. NSPW 2021: 13-27 - 2020
- [j2]Hammad Afzali, Santiago Torres-Arias, Reza Curtmola, Justin Cappos:
Towards adding verifiability to web-based Git repositories. J. Comput. Secur. 28(4): 405-436 (2020)
2010 – 2019
- 2019
- [c5]Sangat Vaidya, Santiago Torres-Arias, Reza Curtmola, Justin Cappos:
Commit Signatures for Centralized Version Control Systems. SEC 2019: 359-373 - [c4]Santiago Torres-Arias, Hammad Afzali, Trishank Karthik Kuppusamy, Reza Curtmola, Justin Cappos:
in-toto: Providing farm-to-table guarantees for bits and bytes. USENIX Security Symposium 2019: 1393-1410 - 2018
- [c3]Hammad Afzali, Santiago Torres-Arias, Reza Curtmola, Justin Cappos:
le-git-imate: Towards Verifiable Web-based Git Repositories. AsiaCCS 2018: 469-482 - 2016
- [c2]Trishank Karthik Kuppusamy, Santiago Torres-Arias, Vladimir Diaz, Justin Cappos:
Diplomat: Using Delegations to Protect Community Repositories. NSDI 2016: 567-581 - [c1]Santiago Torres-Arias, Anil Kumar Ammula, Reza Curtmola, Justin Cappos:
On Omitting Commits and Committing Omissions: Preventing Git Metadata Tampering That (Re)introduces Software Vulnerabilities. USENIX Security Symposium 2016: 379-395 - 2014
- [j1]Santiago Torres-Arias, Justin Cappos:
PolyPasswordHasher: Improving Password Storage Security. login Usenix Mag. 39(6) (2014)
Coauthor Index
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
Unpaywalled article links
Add open access links from 
to the list of external document links (if available).
Privacy notice: By enabling the option above, your browser will contact the API of unpaywall.org to load hyperlinks to open access articles. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Unpaywall privacy policy.
Archived links via Wayback Machine
For web page which are no longer available, try to retrieve content from the 
of the Internet Archive (if available).
Privacy notice: By enabling the option above, your browser will contact the API of archive.org to check for archived content of web pages that are no longer available. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Internet Archive privacy policy.
Reference lists
Add a list of references from 
, 
, and 
to record detail pages.
load references from crossref.org and opencitations.net
Privacy notice: By enabling the option above, your browser will contact the APIs of crossref.org, opencitations.net, and semanticscholar.org to load article reference information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Crossref privacy policy and the OpenCitations privacy policy, as well as the AI2 Privacy Policy covering Semantic Scholar.
Citation data
Add a list of citing articles from and to record detail pages.
load citations from opencitations.net
Privacy notice: By enabling the option above, your browser will contact the API of opencitations.net and semanticscholar.org to load citation information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the OpenCitations privacy policy as well as the AI2 Privacy Policy covering Semantic Scholar.
OpenAlex data
Load additional information about publications from 
.
Privacy notice: By enabling the option above, your browser will contact the API of openalex.org to load additional information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the information given by OpenAlex.
last updated on 2024-11-22 19:46 CET by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
dblp was originally created in 1993 at:
since 2018, dblp has been operated and maintained by:
the dblp computer science bibliography is funded and supported by:
