Stop the war!Остановите войну!
for scientists:
default search action
Google
Google Scholar
Semantic Scholar
Internet Archive Scholar
CiteSeerX
ORCIDBibTeX records: Stefano Calzavara
@article{DBLP:journals/tweb/AhmadCC24,
author = {Zubair Ahmad and
Samuele Casarin and
Stefano Calzavara},
title = {An Empirical Analysis of Web Storage and Its Applications to Web Tracking},
journal = {{ACM} Trans. Web},
volume = {18},
number = {1},
pages = {7:1--7:28},
year = {2024},
url = {https://doi.org/10.1145/3623382},
doi = {10.1145/3623382},
timestamp = {Sat, 10 Feb 2024 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/tweb/AhmadCC24.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2402-14988,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Claudio Lucchese and
Giulio Ermanno Pibiri},
title = {Verifiable Boosted Tree Ensembles},
journal = {CoRR},
volume = {abs/2402.14988},
year = {2024},
url = {https://doi.org/10.48550/arXiv.2402.14988},
doi = {10.48550/ARXIV.2402.14988},
eprinttype = {arXiv},
eprint = {2402.14988},
timestamp = {Fri, 22 Mar 2024 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/corr/abs-2402-14988.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/jcs/CalzavaraFL23,
author = {Stefano Calzavara and
Pietro Ferrara and
Claudio Lucchese},
title = {Certifying machine learning models against evasion attacks by program
analysis},
journal = {J. Comput. Secur.},
volume = {31},
number = {1},
pages = {57--84},
year = {2023},
url = {https://doi.org/10.3233/JCS-210133},
doi = {10.3233/JCS-210133},
timestamp = {Sun, 12 Nov 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/jcs/CalzavaraFL23.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/jcs/CalzavaraN23,
author = {Stefano Calzavara and
David A. Naumann},
title = {Special issue: 35th {IEEE} Computer Security Symposium - {CSF} 2022},
journal = {J. Comput. Secur.},
volume = {31},
number = {5},
pages = {419--420},
year = {2023},
url = {https://doi.org/10.3233/JCS-230950},
doi = {10.3233/JCS-230950},
timestamp = {Fri, 03 Nov 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/jcs/CalzavaraN23.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/ccs/CalzavaraCPP23,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Giulio Ermanno Pibiri and
Nicola Prezza},
editor = {Weizhi Meng and
Christian Damsgaard Jensen and
Cas Cremers and
Engin Kirda},
title = {Verifiable Learning for Robust Tree Ensembles},
booktitle = {Proceedings of the 2023 {ACM} {SIGSAC} Conference on Computer and
Communications Security, {CCS} 2023, Copenhagen, Denmark, November
26-30, 2023},
pages = {1850--1864},
publisher = {{ACM}},
year = {2023},
url = {https://doi.org/10.1145/3576915.3623100},
doi = {10.1145/3576915.3623100},
timestamp = {Tue, 28 Nov 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/ccs/CalzavaraCPP23.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/ccs/HantkeCWRS23,
author = {Florian Hantke and
Stefano Calzavara and
Moritz Wilhelm and
Alvise Rabitti and
Ben Stock},
editor = {Weizhi Meng and
Christian Damsgaard Jensen and
Cas Cremers and
Engin Kirda},
title = {You Call This Archaeology? Evaluating Web Archives for Reproducible
Web Security Measurements},
booktitle = {Proceedings of the 2023 {ACM} {SIGSAC} Conference on Computer and
Communications Security, {CCS} 2023, Copenhagen, Denmark, November
26-30, 2023},
pages = {3168--3182},
publisher = {{ACM}},
year = {2023},
url = {https://doi.org/10.1145/3576915.3616688},
doi = {10.1145/3576915.3616688},
timestamp = {Tue, 28 Nov 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/ccs/HantkeCWRS23.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@incollection{DBLP:books/crc/23/BugliesiCR23,
author = {Michele Bugliesi and
Stefano Calzavara and
Alvise Rabitti},
editor = {Sedat Akleylek and
Besik Dundua},
title = {Cryptographic Web Applications: from Security Engineering to Formal
Analysis},
booktitle = {Handbook of Formal Analysis and Verification in Cryptography},
pages = {275--318},
publisher = {{CRC} Press},
year = {2023},
url = {https://doi.org/10.1201/9781003090052-6},
doi = {10.1201/9781003090052-6},
timestamp = {Mon, 25 Sep 2023 12:19:41 +0200},
biburl = {https://dblp.org/rec/books/crc/23/BugliesiCR23.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2305-03626,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Giulio Ermanno Pibiri and
Nicola Prezza},
title = {Verifiable Learning for Robust Tree Ensembles},
journal = {CoRR},
volume = {abs/2305.03626},
year = {2023},
url = {https://doi.org/10.48550/arXiv.2305.03626},
doi = {10.48550/ARXIV.2305.03626},
eprinttype = {arXiv},
eprint = {2305.03626},
timestamp = {Mon, 26 Jun 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/abs-2305-03626.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/compsec/CalzavaraCLMO22,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Claudio Lucchese and
Federico Marcuzzi and
Salvatore Orlando},
title = {Beyond robustness: Resilience verification of tree-based classifiers},
journal = {Comput. Secur.},
volume = {121},
pages = {102843},
year = {2022},
url = {https://doi.org/10.1016/j.cose.2022.102843},
doi = {10.1016/J.COSE.2022.102843},
timestamp = {Mon, 28 Aug 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/compsec/CalzavaraCLMO22.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/uss/RothCWRS22,
author = {Sebastian Roth and
Stefano Calzavara and
Moritz Wilhelm and
Alvise Rabitti and
Ben Stock},
editor = {Kevin R. B. Butler and
Kurt Thomas},
title = {The Security Lottery: Measuring Client-Side Web Security Inconsistencies},
booktitle = {31st {USENIX} Security Symposium, {USENIX} Security 2022, Boston,
MA, USA, August 10-12, 2022},
pages = {2047--2064},
publisher = {{USENIX} Association},
year = {2022},
url = {https://www.usenix.org/conference/usenixsecurity22/presentation/roth},
timestamp = {Tue, 18 Oct 2022 17:10:36 +0200},
biburl = {https://dblp.org/rec/conf/uss/RothCWRS22.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2209-13179,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Claudio Lucchese and
Federico Marcuzzi},
title = {Explainable Global Fairness Verification of Tree-Based Classifiers},
journal = {CoRR},
volume = {abs/2209.13179},
year = {2022},
url = {https://doi.org/10.48550/arXiv.2209.13179},
doi = {10.48550/ARXIV.2209.13179},
eprinttype = {arXiv},
eprint = {2209.13179},
timestamp = {Mon, 26 Jun 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/abs-2209-13179.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/compsec/CalzavaraJKR21,
author = {Stefano Calzavara and
Hugo Jonker and
Benjamin Krumnow and
Alvise Rabitti},
title = {Measuring Web Session Security at Scale},
journal = {Comput. Secur.},
volume = {111},
pages = {102472},
year = {2021},
url = {https://doi.org/10.1016/j.cose.2021.102472},
doi = {10.1016/J.COSE.2021.102472},
timestamp = {Mon, 28 Aug 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/compsec/CalzavaraJKR21.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/ejisec/CalzavaraLMO21,
author = {Stefano Calzavara and
Claudio Lucchese and
Federico Marcuzzi and
Salvatore Orlando},
title = {Feature partitioning for robust tree ensembles and their certification
in adversarial scenarios},
journal = {{EURASIP} J. Inf. Secur.},
volume = {2021},
number = {1},
pages = {12},
year = {2021},
url = {https://doi.org/10.1186/s13635-021-00127-0},
doi = {10.1186/S13635-021-00127-0},
timestamp = {Sat, 08 Jan 2022 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/ejisec/CalzavaraLMO21.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/asiaccs/CalzavaraCL21,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Claudio Lucchese},
editor = {Jiannong Cao and
Man Ho Au and
Zhiqiang Lin and
Moti Yung},
title = {{AMEBA:} An Adaptive Approach to the Black-Box Evasion of Machine
Learning Models},
booktitle = {{ASIA} {CCS} '21: {ACM} Asia Conference on Computer and Communications
Security, Virtual Event, Hong Kong, June 7-11, 2021},
pages = {292--306},
publisher = {{ACM}},
year = {2021},
url = {https://doi.org/10.1145/3433210.3453114},
doi = {10.1145/3433210.3453114},
timestamp = {Sun, 02 Oct 2022 01:00:00 +0200},
biburl = {https://dblp.org/rec/conf/asiaccs/CalzavaraCL21.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/ndss/CalzavaraUTSS21,
author = {Stefano Calzavara and
Tobias Urban and
Dennis Tatang and
Marius Steffens and
Ben Stock},
title = {Reining in the Web's Inconsistencies with Site Policy},
booktitle = {28th Annual Network and Distributed System Security Symposium, {NDSS}
2021, virtually, February 21-25, 2021},
publisher = {The Internet Society},
year = {2021},
url = {https://www.ndss-symposium.org/ndss-paper/reining-in-the-webs-inconsistencies-with-site-policy/},
timestamp = {Thu, 17 Jun 2021 15:42:26 +0200},
biburl = {https://dblp.org/rec/conf/ndss/CalzavaraUTSS21.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/sp/SquarcinaCM21,
author = {Marco Squarcina and
Stefano Calzavara and
Matteo Maffei},
title = {The Remote on the Local: Exacerbating Web Attacks Via Service Workers
Caches},
booktitle = {{IEEE} Security and Privacy Workshops, {SP} Workshops 2021, San Francisco,
CA, USA, May 27, 2021},
pages = {432--443},
publisher = {{IEEE}},
year = {2021},
url = {https://doi.org/10.1109/SPW53761.2021.00062},
doi = {10.1109/SPW53761.2021.00062},
timestamp = {Thu, 21 Sep 2023 16:11:08 +0200},
biburl = {https://dblp.org/rec/conf/sp/SquarcinaCM21.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/uss/SquarcinaTVCM21,
author = {Marco Squarcina and
Mauro Tempesta and
Lorenzo Veronese and
Stefano Calzavara and
Matteo Maffei},
editor = {Michael D. Bailey and
Rachel Greenstadt},
title = {Can {I} Take Your Subdomain? Exploring Same-Site Attacks in the Modern
Web},
booktitle = {30th {USENIX} Security Symposium, {USENIX} Security 2021, August 11-13,
2021},
pages = {2917--2934},
publisher = {{USENIX} Association},
year = {2021},
url = {https://www.usenix.org/conference/usenixsecurity21/presentation/squarcina},
timestamp = {Mon, 20 Nov 2023 08:57:49 +0100},
biburl = {https://dblp.org/rec/conf/uss/SquarcinaTVCM21.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2101-06043,
author = {Lorenzo Veronese and
Stefano Calzavara and
Luca Compagna},
title = {Bulwark: Holistic and Verified Security Monitoring of Web Protocols},
journal = {CoRR},
volume = {abs/2101.06043},
year = {2021},
url = {https://arxiv.org/abs/2101.06043},
eprinttype = {arXiv},
eprint = {2101.06043},
timestamp = {Fri, 22 Jan 2021 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/corr/abs-2101-06043.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2112-02705,
author = {Stefano Calzavara and
Lorenzo Cazzaro and
Claudio Lucchese and
Federico Marcuzzi and
Salvatore Orlando},
title = {Beyond Robustness: Resilience Verification of Tree-Based Classifiers},
journal = {CoRR},
volume = {abs/2112.02705},
year = {2021},
url = {https://arxiv.org/abs/2112.02705},
eprinttype = {arXiv},
eprint = {2112.02705},
timestamp = {Wed, 08 Dec 2021 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/corr/abs-2112-02705.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/datamine/CalzavaraLTAO20,
author = {Stefano Calzavara and
Claudio Lucchese and
Gabriele Tolomei and
Seyum Assefa Abebe and
Salvatore Orlando},
title = {Treant: training evasion-aware decision trees},
journal = {Data Min. Knowl. Discov.},
volume = {34},
number = {5},
pages = {1390--1420},
year = {2020},
url = {https://doi.org/10.1007/s10618-020-00694-9},
doi = {10.1007/S10618-020-00694-9},
timestamp = {Tue, 13 Jul 2021 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/datamine/CalzavaraLTAO20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/ieeesp/CalzavaraCFRT20,
author = {Stefano Calzavara and
Mauro Conti and
Riccardo Focardi and
Alvise Rabitti and
Gabriele Tolomei},
title = {Machine Learning for Web Vulnerability Detection: The Case of Cross-Site
Request Forgery},
journal = {{IEEE} Secur. Priv.},
volume = {18},
number = {3},
pages = {8--16},
year = {2020},
url = {https://doi.org/10.1109/MSEC.2019.2961649},
doi = {10.1109/MSEC.2019.2961649},
timestamp = {Mon, 28 Aug 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/ieeesp/CalzavaraCFRT20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/CalzavaraFGMT20,
author = {Stefano Calzavara and
Riccardo Focardi and
Niklas Grimm and
Matteo Maffei and
Mauro Tempesta},
title = {Language-Based Web Session Integrity},
booktitle = {33rd {IEEE} Computer Security Foundations Symposium, {CSF} 2020, Boston,
MA, USA, June 22-26, 2020},
pages = {107--122},
publisher = {{IEEE}},
year = {2020},
url = {https://doi.org/10.1109/CSF49147.2020.00016},
doi = {10.1109/CSF49147.2020.00016},
timestamp = {Mon, 03 Jan 2022 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/CalzavaraFGMT20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/esorics/VeroneseCC20,
author = {Lorenzo Veronese and
Stefano Calzavara and
Luca Compagna},
editor = {Liqun Chen and
Ninghui Li and
Kaitai Liang and
Steve A. Schneider},
title = {Bulwark: Holistic and Verified Security Monitoring of Web Protocols},
booktitle = {Computer Security - {ESORICS} 2020 - 25th European Symposium on Research
in Computer Security, {ESORICS} 2020, Guildford, UK, September 14-18,
2020, Proceedings, Part {I}},
series = {Lecture Notes in Computer Science},
volume = {12308},
pages = {23--41},
publisher = {Springer},
year = {2020},
url = {https://doi.org/10.1007/978-3-030-58951-6\_2},
doi = {10.1007/978-3-030-58951-6\_2},
timestamp = {Fri, 02 Jul 2021 20:12:27 +0200},
biburl = {https://dblp.org/rec/conf/esorics/VeroneseCC20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/esorics/CalzavaraFL20,
author = {Stefano Calzavara and
Pietro Ferrara and
Claudio Lucchese},
editor = {Liqun Chen and
Ninghui Li and
Kaitai Liang and
Steve A. Schneider},
title = {Certifying Decision Trees Against Evasion Attacks by Program Analysis},
booktitle = {Computer Security - {ESORICS} 2020 - 25th European Symposium on Research
in Computer Security, {ESORICS} 2020, Guildford, UK, September 14-18,
2020, Proceedings, Part {II}},
series = {Lecture Notes in Computer Science},
volume = {12309},
pages = {421--438},
publisher = {Springer},
year = {2020},
url = {https://doi.org/10.1007/978-3-030-59013-0\_21},
doi = {10.1007/978-3-030-59013-0\_21},
timestamp = {Mon, 03 Jan 2022 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/esorics/CalzavaraFL20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/eurosp/FouadSKBC20,
author = {Imane Fouad and
Cristiana Santos and
Feras Al Kassar and
Nataliia Bielova and
Stefano Calzavara},
title = {On Compliance of Cookie Purposes with the Purpose Specification Principle},
booktitle = {{IEEE} European Symposium on Security and Privacy Workshops, EuroS{\&}P
Workshops 2020, Genoa, Italy, September 7-11, 2020},
pages = {326--333},
publisher = {{IEEE}},
year = {2020},
url = {https://doi.org/10.1109/EuroSPW51379.2020.00051},
doi = {10.1109/EUROSPW51379.2020.00051},
timestamp = {Mon, 01 May 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/conf/eurosp/FouadSKBC20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/eurosp/CalzavaraS20,
author = {Stefano Calzavara and
Ben Stock},
title = {SecWeb 2020 Preface},
booktitle = {{IEEE} European Symposium on Security and Privacy Workshops, EuroS{\&}P
Workshops 2020, Genoa, Italy, September 7-11, 2020},
pages = {645},
publisher = {{IEEE}},
year = {2020},
url = {https://doi.org/10.1109/EuroSPW51379.2020.00092},
doi = {10.1109/EUROSPW51379.2020.00092},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/eurosp/CalzavaraS20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/itasec/CalzavaraFRS20,
author = {Stefano Calzavara and
Riccardo Focardi and
Alvise Rabitti and
Lorenzo Soligo},
editor = {Michele Loreti and
Luca Spalazzi},
title = {A Hard Lesson: Assessing the {HTTPS} Deployment of Italian University
Websites},
booktitle = {Proceedings of the Fourth Italian Conference on Cyber Security, Ancona,
Italy, February 4th to 7th, 2020},
series = {{CEUR} Workshop Proceedings},
volume = {2597},
pages = {93--104},
publisher = {CEUR-WS.org},
year = {2020},
url = {https://ceur-ws.org/Vol-2597/paper-09.pdf},
timestamp = {Fri, 10 Mar 2023 16:22:11 +0100},
biburl = {https://dblp.org/rec/conf/itasec/CalzavaraFRS20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/ndss/RothBCNS20,
author = {Sebastian Roth and
Timothy Barron and
Stefano Calzavara and
Nick Nikiforakis and
Ben Stock},
title = {Complex Security Policy? {A} Longitudinal Analysis of Deployed Content
Security Policies},
booktitle = {27th Annual Network and Distributed System Security Symposium, {NDSS}
2020, San Diego, California, USA, February 23-26, 2020},
publisher = {The Internet Society},
year = {2020},
url = {https://www.ndss-symposium.org/ndss-paper/complex-security-policy-a-longitudinal-analysis-of-deployed-content-security-policies/},
timestamp = {Mon, 01 Feb 2021 08:42:10 +0100},
biburl = {https://dblp.org/rec/conf/ndss/RothBCNS20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/uss/CalzavaraRR0S20,
author = {Stefano Calzavara and
Sebastian Roth and
Alvise Rabitti and
Michael Backes and
Ben Stock},
editor = {Srdjan Capkun and
Franziska Roesner},
title = {A Tale of Two Headers: {A} Formal Analysis of Inconsistent Click-Jacking
Protection on the Web},
booktitle = {29th {USENIX} Security Symposium, {USENIX} Security 2020, August 12-14,
2020},
pages = {683--697},
publisher = {{USENIX} Association},
year = {2020},
url = {https://www.usenix.org/conference/usenixsecurity20/presentation/calzavara},
timestamp = {Fri, 29 Jan 2021 22:08:55 +0100},
biburl = {https://dblp.org/rec/conf/uss/CalzavaraRR0S20.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2001-10405,
author = {Stefano Calzavara and
Riccardo Focardi and
Niklas Grimm and
Matteo Maffei and
Mauro Tempesta},
title = {Language-Based Web Session Integrity},
journal = {CoRR},
volume = {abs/2001.10405},
year = {2020},
url = {https://arxiv.org/abs/2001.10405},
eprinttype = {arXiv},
eprint = {2001.10405},
timestamp = {Thu, 30 Jan 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/corr/abs-2001-10405.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2004-03295,
author = {Stefano Calzavara and
Claudio Lucchese and
Federico Marcuzzi and
Salvatore Orlando},
title = {Feature Partitioning for Robust Tree Ensembles and their Certification
in Adversarial Scenarios},
journal = {CoRR},
volume = {abs/2004.03295},
year = {2020},
url = {https://arxiv.org/abs/2004.03295},
eprinttype = {arXiv},
eprint = {2004.03295},
timestamp = {Wed, 08 Apr 2020 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/abs-2004-03295.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2007-02771,
author = {Stefano Calzavara and
Pietro Ferrara and
Claudio Lucchese},
title = {Certifying Decision Trees Against Evasion Attacks by Program Analysis},
journal = {CoRR},
volume = {abs/2007.02771},
year = {2020},
url = {https://arxiv.org/abs/2007.02771},
eprinttype = {arXiv},
eprint = {2007.02771},
timestamp = {Tue, 24 Aug 2021 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/abs-2007-02771.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-2012-01946,
author = {Marco Squarcina and
Mauro Tempesta and
Lorenzo Veronese and
Stefano Calzavara and
Matteo Maffei},
title = {Can {I} Take Your Subdomain? Exploring Related-Domain Attacks in the
Modern Web},
journal = {CoRR},
volume = {abs/2012.01946},
year = {2020},
url = {https://arxiv.org/abs/2012.01946},
eprinttype = {arXiv},
eprint = {2012.01946},
timestamp = {Fri, 04 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/corr/abs-2012-01946.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/jcs/CalzavaraRB19,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
title = {Sub-session hijacking on the web: Root causes and prevention},
journal = {J. Comput. Secur.},
volume = {27},
number = {2},
pages = {233--257},
year = {2019},
url = {https://doi.org/10.3233/JCS-181149},
doi = {10.3233/JCS-181149},
timestamp = {Mon, 28 Aug 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/jcs/CalzavaraRB19.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/cikm/CalzavaraLT19,
author = {Stefano Calzavara and
Claudio Lucchese and
Gabriele Tolomei},
editor = {Wenwu Zhu and
Dacheng Tao and
Xueqi Cheng and
Peng Cui and
Elke A. Rundensteiner and
David Carmel and
Qi He and
Jeffrey Xu Yu},
title = {Adversarial Training of Gradient-Boosted Decision Trees},
booktitle = {Proceedings of the 28th {ACM} International Conference on Information
and Knowledge Management, {CIKM} 2019, Beijing, China, November 3-7,
2019},
pages = {2429--2432},
publisher = {{ACM}},
year = {2019},
url = {https://doi.org/10.1145/3357384.3358149},
doi = {10.1145/3357384.3358149},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/cikm/CalzavaraLT19.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/esorics/CalzavaraRRB19,
author = {Stefano Calzavara and
Alvise Rabitti and
Alessio Ragazzo and
Michele Bugliesi},
editor = {Kazue Sako and
Steve A. Schneider and
Peter Y. A. Ryan},
title = {Testing for Integrity Flaws in Web Sessions},
booktitle = {Computer Security - {ESORICS} 2019 - 24th European Symposium on Research
in Computer Security, Luxembourg, September 23-27, 2019, Proceedings,
Part {II}},
series = {Lecture Notes in Computer Science},
volume = {11736},
pages = {606--624},
publisher = {Springer},
year = {2019},
url = {https://doi.org/10.1007/978-3-030-29962-0\_29},
doi = {10.1007/978-3-030-29962-0\_29},
timestamp = {Mon, 05 Feb 2024 20:29:41 +0100},
biburl = {https://dblp.org/rec/conf/esorics/CalzavaraRRB19.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/eurosp/CalzavaraCFRT19,
author = {Stefano Calzavara and
Mauro Conti and
Riccardo Focardi and
Alvise Rabitti and
Gabriele Tolomei},
title = {Mitch: {A} Machine Learning Approach to the Black-Box Detection of
{CSRF} Vulnerabilities},
booktitle = {{IEEE} European Symposium on Security and Privacy, EuroS{\&}P
2019, Stockholm, Sweden, June 17-19, 2019},
pages = {528--543},
publisher = {{IEEE}},
year = {2019},
url = {https://doi.org/10.1109/EuroSP.2019.00045},
doi = {10.1109/EUROSP.2019.00045},
timestamp = {Sun, 12 Nov 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/eurosp/CalzavaraCFRT19.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/forte/CalzavaraRB19,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
editor = {Jorge A. P{\'{e}}rez and
Nobuko Yoshida},
title = {Semantically Sound Analysis of Content Security Policies},
booktitle = {Formal Techniques for Distributed Objects, Components, and Systems
- 39th {IFIP} {WG} 6.1 International Conference, {FORTE} 2019, Held
as Part of the 14th International Federated Conference on Distributed
Computing Techniques, DisCoTec 2019, Kongens Lyngby, Denmark, June
17-21, 2019, Proceedings},
series = {Lecture Notes in Computer Science},
volume = {11535},
pages = {293--297},
publisher = {Springer},
year = {2019},
url = {https://doi.org/10.1007/978-3-030-21759-4\_18},
doi = {10.1007/978-3-030-21759-4\_18},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/forte/CalzavaraRB19.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/sp/CalzavaraFNRS19,
author = {Stefano Calzavara and
Riccardo Focardi and
Mat{\'{u}}s Nemec and
Alvise Rabitti and
Marco Squarcina},
title = {Postcards from the Post-HTTP World: Amplification of {HTTPS} Vulnerabilities
in the Web Ecosystem},
booktitle = {2019 {IEEE} Symposium on Security and Privacy, {SP} 2019, San Francisco,
CA, USA, May 19-23, 2019},
pages = {281--298},
publisher = {{IEEE}},
year = {2019},
url = {https://doi.org/10.1109/SP.2019.00053},
doi = {10.1109/SP.2019.00053},
timestamp = {Mon, 03 Jan 2022 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/sp/CalzavaraFNRS19.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-1907-01197,
author = {Stefano Calzavara and
Claudio Lucchese and
Gabriele Tolomei and
Seyum Assefa Abebe and
Salvatore Orlando},
title = {Treant: Training Evasion-Aware Decision Trees},
journal = {CoRR},
volume = {abs/1907.01197},
year = {2019},
url = {http://arxiv.org/abs/1907.01197},
eprinttype = {arXiv},
eprint = {1907.01197},
timestamp = {Mon, 08 Jul 2019 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/abs-1907-01197.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/tweb/CalzavaraRB18,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
title = {Semantics-Based Analysis of Content Security Policy Deployment},
journal = {{ACM} Trans. Web},
volume = {12},
number = {2},
pages = {10:1--10:36},
year = {2018},
url = {https://doi.org/10.1145/3149408},
doi = {10.1145/3149408},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/tweb/CalzavaraRB18.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/itasec/CalzavaraRB18,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
editor = {Elena Ferrari and
Marco Baldi and
Roberto Baldoni},
title = {Dr Cookie and Mr Token - Web Session Implementations and How to Live
with Them},
booktitle = {Proceedings of the Second Italian Conference on Cyber Security, Milan,
Italy, February 6th - to - 9th, 2018},
series = {{CEUR} Workshop Proceedings},
volume = {2058},
publisher = {CEUR-WS.org},
year = {2018},
url = {https://ceur-ws.org/Vol-2058/paper-02.pdf},
timestamp = {Fri, 10 Mar 2023 16:22:11 +0100},
biburl = {https://dblp.org/rec/conf/itasec/CalzavaraRB18.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/uss/CalzavaraFMSST18,
author = {Stefano Calzavara and
Riccardo Focardi and
Matteo Maffei and
Clara Schneidewind and
Marco Squarcina and
Mauro Tempesta},
editor = {William Enck and
Adrienne Porter Felt},
title = {{WPSE:} Fortifying Web Protocols via Browser-Side Security Monitoring},
booktitle = {27th {USENIX} Security Symposium, {USENIX} Security 2018, Baltimore,
MD, USA, August 15-17, 2018},
pages = {1493--1510},
publisher = {{USENIX} Association},
year = {2018},
url = {https://www.usenix.org/conference/usenixsecurity18/presentation/calzavara},
timestamp = {Mon, 01 Feb 2021 08:43:20 +0100},
biburl = {https://dblp.org/rec/conf/uss/CalzavaraFMSST18.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/www/CalzavaraFST18,
author = {Stefano Calzavara and
Riccardo Focardi and
Marco Squarcina and
Mauro Tempesta},
editor = {Pierre{-}Antoine Champin and
Fabien Gandon and
Mounia Lalmas and
Panagiotis G. Ipeirotis},
title = {Surviving the Web: {A} Journey into Web Session Security},
booktitle = {Companion of the The Web Conference 2018 on The Web Conference 2018,
{WWW} 2018, Lyon , France, April 23-27, 2018},
pages = {451--455},
publisher = {{ACM}},
year = {2018},
url = {https://doi.org/10.1145/3184558.3186232},
doi = {10.1145/3184558.3186232},
timestamp = {Mon, 03 Jan 2022 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/www/CalzavaraFST18.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/abs-1806-09111,
author = {Stefano Calzavara and
Riccardo Focardi and
Matteo Maffei and
Clara Schneidewind and
Marco Squarcina and
Mauro Tempesta},
title = {{WPSE:} Fortifying Web Protocols via Browser-Side Security Monitoring},
journal = {CoRR},
volume = {abs/1806.09111},
year = {2018},
url = {http://arxiv.org/abs/1806.09111},
eprinttype = {arXiv},
eprint = {1806.09111},
timestamp = {Mon, 13 Aug 2018 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/abs-1806-09111.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/csur/CalzavaraFST17,
author = {Stefano Calzavara and
Riccardo Focardi and
Marco Squarcina and
Mauro Tempesta},
title = {Surviving the Web: {A} Journey into Web Session Security},
journal = {{ACM} Comput. Surv.},
volume = {50},
number = {1},
pages = {13:1--13:34},
year = {2017},
url = {https://doi.org/10.1145/3038923},
doi = {10.1145/3038923},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/csur/CalzavaraFST17.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/jlp/BugliesiCF17,
author = {Michele Bugliesi and
Stefano Calzavara and
Riccardo Focardi},
title = {Formal methods for web security},
journal = {J. Log. Algebraic Methods Program.},
volume = {87},
pages = {110--126},
year = {2017},
url = {https://doi.org/10.1016/j.jlamp.2016.08.006},
doi = {10.1016/J.JLAMP.2016.08.006},
timestamp = {Tue, 16 Feb 2021 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/jlp/BugliesiCF17.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/CalzavaraGKM17,
author = {Stefano Calzavara and
Ilya Grishchenko and
Adrien Koutsos and
Matteo Maffei},
title = {A Sound Flow-Sensitive Heap Abstraction for the Static Analysis of
Android Applications},
booktitle = {30th {IEEE} Computer Security Foundations Symposium, {CSF} 2017, Santa
Barbara, CA, USA, August 21-25, 2017},
pages = {22--36},
publisher = {{IEEE} Computer Society},
year = {2017},
url = {https://doi.org/10.1109/CSF.2017.19},
doi = {10.1109/CSF.2017.19},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/CalzavaraGKM17.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/uss/CalzavaraRB17,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
editor = {Engin Kirda and
Thomas Ristenpart},
title = {{CCSP:} Controlled Relaxation of Content Security Policies by Runtime
Policy Composition},
booktitle = {26th {USENIX} Security Symposium, {USENIX} Security 2017, Vancouver,
BC, Canada, August 16-18, 2017},
pages = {695--712},
publisher = {{USENIX} Association},
year = {2017},
url = {https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/calzavara},
timestamp = {Mon, 01 Feb 2021 08:42:59 +0100},
biburl = {https://dblp.org/rec/conf/uss/CalzavaraRB17.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/CalzavaraGKM17,
author = {Stefano Calzavara and
Ilya Grishchenko and
Adrien Koutsos and
Matteo Maffei},
title = {A Sound Flow-Sensitive Heap Abstraction for the Static Analysis of
Android Applications},
journal = {CoRR},
volume = {abs/1705.10482},
year = {2017},
url = {http://arxiv.org/abs/1705.10482},
eprinttype = {arXiv},
eprint = {1705.10482},
timestamp = {Mon, 13 Aug 2018 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/CalzavaraGKM17.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/corr/CalzavaraGM17,
author = {Stefano Calzavara and
Ilya Grishchenko and
Matteo Maffei},
title = {HornDroid: Practical and Sound Static Analysis of Android Applications
by {SMT} Solving},
journal = {CoRR},
volume = {abs/1707.07866},
year = {2017},
url = {http://arxiv.org/abs/1707.07866},
eprinttype = {arXiv},
eprint = {1707.07866},
timestamp = {Mon, 13 Aug 2018 01:00:00 +0200},
biburl = {https://dblp.org/rec/journals/corr/CalzavaraGM17.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/istr/BugliesiCMM16,
author = {Michele Bugliesi and
Stefano Calzavara and
Sebastian M{\"{o}}dersheim and
Paolo Modesti},
title = {Security protocol specification and verification with AnBx},
journal = {J. Inf. Secur. Appl.},
volume = {30},
pages = {46--63},
year = {2016},
url = {https://doi.org/10.1016/j.jisa.2016.05.004},
doi = {10.1016/J.JISA.2016.05.004},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/istr/BugliesiCMM16.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/ccs/CalzavaraRB16,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
editor = {Edgar R. Weippl and
Stefan Katzenbeisser and
Christopher Kruegel and
Andrew C. Myers and
Shai Halevi},
title = {Content Security Problems?: Evaluating the Effectiveness of Content
Security Policy in the Wild},
booktitle = {Proceedings of the 2016 {ACM} {SIGSAC} Conference on Computer and
Communications Security, Vienna, Austria, October 24-28, 2016},
pages = {1365--1375},
publisher = {{ACM}},
year = {2016},
url = {https://doi.org/10.1145/2976749.2978338},
doi = {10.1145/2976749.2978338},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/ccs/CalzavaraRB16.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/CalzavaraFGM16,
author = {Stefano Calzavara and
Riccardo Focardi and
Niklas Grimm and
Matteo Maffei},
title = {Micro-policies for Web Session Security},
booktitle = {{IEEE} 29th Computer Security Foundations Symposium, {CSF} 2016, Lisbon,
Portugal, June 27 - July 1, 2016},
pages = {179--193},
publisher = {{IEEE} Computer Society},
year = {2016},
url = {https://doi.org/10.1109/CSF.2016.20},
doi = {10.1109/CSF.2016.20},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/CalzavaraFGM16.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/CalzavaraRSB16,
author = {Stefano Calzavara and
Alvise Rabitti and
Enrico Steffinlongo and
Michele Bugliesi},
title = {Static Detection of Collusion Attacks in ARBAC-Based Workflow Systems},
booktitle = {{IEEE} 29th Computer Security Foundations Symposium, {CSF} 2016, Lisbon,
Portugal, June 27 - July 1, 2016},
pages = {458--470},
publisher = {{IEEE} Computer Society},
year = {2016},
url = {https://doi.org/10.1109/CSF.2016.39},
doi = {10.1109/CSF.2016.39},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/CalzavaraRSB16.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/eurosp/CalzavaraGM16,
author = {Stefano Calzavara and
Ilya Grishchenko and
Matteo Maffei},
title = {HornDroid: Practical and Sound Static Analysis of Android Applications
by {SMT} Solving},
booktitle = {{IEEE} European Symposium on Security and Privacy, EuroS{\&}P
2016, Saarbr{\"{u}}cken, Germany, March 21-24, 2016},
pages = {47--62},
publisher = {{IEEE}},
year = {2016},
url = {https://doi.org/10.1109/EuroSP.2016.16},
doi = {10.1109/EUROSP.2016.16},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/eurosp/CalzavaraGM16.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/jcs/BugliesiCFK15,
author = {Michele Bugliesi and
Stefano Calzavara and
Riccardo Focardi and
Wilayat Khan},
title = {CookiExt: Patching the browser against session hijacking attacks},
journal = {J. Comput. Secur.},
volume = {23},
number = {4},
pages = {509--537},
year = {2015},
url = {https://doi.org/10.3233/JCS-150529},
doi = {10.3233/JCS-150529},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/jcs/BugliesiCFK15.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/toplas/BugliesiCEM15,
author = {Michele Bugliesi and
Stefano Calzavara and
Fabienne Eigner and
Matteo Maffei},
title = {Affine Refinement Types for Secure Distributed Programming},
journal = {{ACM} Trans. Program. Lang. Syst.},
volume = {37},
number = {4},
pages = {11:1--11:66},
year = {2015},
url = {https://doi.org/10.1145/2743018},
doi = {10.1145/2743018},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/toplas/BugliesiCEM15.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@article{DBLP:journals/tweb/CalzavaraTCBO15,
author = {Stefano Calzavara and
Gabriele Tolomei and
Andrea Casini and
Michele Bugliesi and
Salvatore Orlando},
title = {A Supervised Learning Approach to Protect Client Authentication on
the Web},
journal = {{ACM} Trans. Web},
volume = {9},
number = {3},
pages = {15:1--15:30},
year = {2015},
url = {https://doi.org/10.1145/2754933},
doi = {10.1145/2754933},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/journals/tweb/CalzavaraTCBO15.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/CalzavaraRB15,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
editor = {C{\'{e}}dric Fournet and
Michael W. Hicks and
Luca Vigan{\`{o}}},
title = {Compositional Typed Analysis of {ARBAC} Policies},
booktitle = {{IEEE} 28th Computer Security Foundations Symposium, {CSF} 2015, Verona,
Italy, 13-17 July, 2015},
pages = {33--45},
publisher = {{IEEE} Computer Society},
year = {2015},
url = {https://doi.org/10.1109/CSF.2015.10},
doi = {10.1109/CSF.2015.10},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/CalzavaraRB15.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/esop/CalzavaraBCS15,
author = {Stefano Calzavara and
Michele Bugliesi and
Silvia Crafa and
Enrico Steffinlongo},
editor = {Jan Vitek},
title = {Fine-Grained Detection of Privilege Escalation Attacks on Browser
Extensions},
booktitle = {Programming Languages and Systems - 24th European Symposium on Programming,
{ESOP} 2015, Held as Part of the European Joint Conferences on Theory
and Practice of Software, {ETAPS} 2015, London, UK, April 11-18, 2015.
Proceedings},
series = {Lecture Notes in Computer Science},
volume = {9032},
pages = {510--534},
publisher = {Springer},
year = {2015},
url = {https://doi.org/10.1007/978-3-662-46669-8\_21},
doi = {10.1007/978-3-662-46669-8\_21},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/esop/CalzavaraBCS15.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/essos/CalzavaraRB15,
author = {Stefano Calzavara and
Alvise Rabitti and
Michele Bugliesi},
editor = {Frank Piessens and
Juan Caballero and
Nataliia Bielova},
title = {Formal Verification of Liferay {RBAC}},
booktitle = {Engineering Secure Software and Systems - 7th International Symposium,
ESSoS 2015, Milan, Italy, March 4-6, 2015. Proceedings},
series = {Lecture Notes in Computer Science},
volume = {8978},
pages = {1--16},
publisher = {Springer},
year = {2015},
url = {https://doi.org/10.1007/978-3-319-15618-7\_1},
doi = {10.1007/978-3-319-15618-7\_1},
timestamp = {Mon, 01 May 2023 13:01:13 +0200},
biburl = {https://dblp.org/rec/conf/essos/CalzavaraRB15.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/BugliesiCFKT14,
author = {Michele Bugliesi and
Stefano Calzavara and
Riccardo Focardi and
Wilayat Khan and
Mauro Tempesta},
title = {Provably Sound Browser-Based Enforcement of Web Session Integrity},
booktitle = {{IEEE} 27th Computer Security Foundations Symposium, {CSF} 2014, Vienna,
Austria, 19-22 July, 2014},
pages = {366--380},
publisher = {{IEEE} Computer Society},
year = {2014},
url = {https://doi.org/10.1109/CSF.2014.33},
doi = {10.1109/CSF.2014.33},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/BugliesiCFKT14.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/essos/BugliesiCFK14,
author = {Michele Bugliesi and
Stefano Calzavara and
Riccardo Focardi and
Wilayat Khan},
editor = {Jan J{\"{u}}rjens and
Frank Piessens and
Nataliia Bielova},
title = {Automatic and Robust Client-Side Protection for Cookie-Based Sessions},
booktitle = {Engineering Secure Software and Systems - 6th International Symposium,
ESSoS 2014, Munich, Germany, February 26-28, 2014, Proceedings},
series = {Lecture Notes in Computer Science},
volume = {8364},
pages = {161--178},
publisher = {Springer},
year = {2014},
url = {https://doi.org/10.1007/978-3-319-04897-0\_11},
doi = {10.1007/978-3-319-04897-0\_11},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/essos/BugliesiCFK14.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/iciss/KhanCBGP14,
author = {Wilayat Khan and
Stefano Calzavara and
Michele Bugliesi and
Willem De Groef and
Frank Piessens},
editor = {Atul Prakash and
Rudrapatna K. Shyamasundar},
title = {Client Side Web Session Integrity as a Non-interference Property},
booktitle = {Information Systems Security - 10th International Conference, {ICISS}
2014, Hyderabad, India, December 16-20, 2014, Proceedings},
series = {Lecture Notes in Computer Science},
volume = {8880},
pages = {89--108},
publisher = {Springer},
year = {2014},
url = {https://doi.org/10.1007/978-3-319-13841-1\_6},
doi = {10.1007/978-3-319-13841-1\_6},
timestamp = {Wed, 12 May 2021 16:44:21 +0200},
biburl = {https://dblp.org/rec/conf/iciss/KhanCBGP14.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/www/CalzavaraTBO14,
author = {Stefano Calzavara and
Gabriele Tolomei and
Michele Bugliesi and
Salvatore Orlando},
editor = {Chin{-}Wan Chung and
Andrei Z. Broder and
Kyuseok Shim and
Torsten Suel},
title = {Quite a mess in my cookie jar!: leveraging machine learning to protect
web authentication},
booktitle = {23rd International World Wide Web Conference, {WWW} '14, Seoul, Republic
of Korea, April 7-11, 2014},
pages = {189--200},
publisher = {{ACM}},
year = {2014},
url = {https://doi.org/10.1145/2566486.2568047},
doi = {10.1145/2566486.2568047},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/www/CalzavaraTBO14.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@phdthesis{DBLP:phd/it/Calzavara13,
author = {Stefano Calzavara},
title = {Static verification and enforcement of authorization policies},
school = {Ca' Foscari University of Venice, Italy},
year = {2013},
url = {https://opac.bncf.firenze.sbn.it/bncf-prod/resource?uri=TD13022160},
timestamp = {Wed, 29 Mar 2023 01:00:00 +0200},
biburl = {https://dblp.org/rec/phd/it/Calzavara13.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/forte/BugliesiCS13,
author = {Michele Bugliesi and
Stefano Calzavara and
Alvise Span{\`{o}}},
editor = {Dirk Beyer and
Michele Boreale},
title = {Lintent: Towards Security Type-Checking of Android Applications},
booktitle = {Formal Techniques for Distributed Systems - Joint {IFIP} {WG} 6.1
International Conference, {FMOODS/FORTE} 2013, Held as Part of the
8th International Federated Conference on Distributed Computing Techniques,
DisCoTec 2013, Florence, Italy, June 3-5, 2013. Proceedings},
series = {Lecture Notes in Computer Science},
volume = {7892},
pages = {289--304},
publisher = {Springer},
year = {2013},
url = {https://doi.org/10.1007/978-3-642-38592-6\_20},
doi = {10.1007/978-3-642-38592-6\_20},
timestamp = {Sun, 02 Oct 2022 01:00:00 +0200},
biburl = {https://dblp.org/rec/conf/forte/BugliesiCS13.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/post/BugliesiCEM13,
author = {Michele Bugliesi and
Stefano Calzavara and
Fabienne Eigner and
Matteo Maffei},
editor = {David A. Basin and
John C. Mitchell},
title = {Logical Foundations of Secure Resource Management in Protocol Implementations},
booktitle = {Principles of Security and Trust - Second International Conference,
{POST} 2013, Held as Part of the European Joint Conferences on Theory
and Practice of Software, {ETAPS} 2013, Rome, Italy, March 16-24,
2013. Proceedings},
series = {Lecture Notes in Computer Science},
volume = {7796},
pages = {105--125},
publisher = {Springer},
year = {2013},
url = {https://doi.org/10.1007/978-3-642-36830-1\_6},
doi = {10.1007/978-3-642-36830-1\_6},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/post/BugliesiCEM13.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/BugliesiCFS12,
author = {Michele Bugliesi and
Stefano Calzavara and
Riccardo Focardi and
Marco Squarcina},
editor = {Stephen Chong},
title = {Gran: Model Checking Grsecurity {RBAC} Policies},
booktitle = {25th {IEEE} Computer Security Foundations Symposium, {CSF} 2012, Cambridge,
MA, USA, June 25-27, 2012},
pages = {126--138},
publisher = {{IEEE} Computer Society},
year = {2012},
url = {https://doi.org/10.1109/CSF.2012.29},
doi = {10.1109/CSF.2012.29},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/BugliesiCFS12.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/tgc/BugliesiCEM12,
author = {Michele Bugliesi and
Stefano Calzavara and
Fabienne Eigner and
Matteo Maffei},
editor = {Catuscia Palamidessi and
Mark Dermot Ryan},
title = {Affine Refinement Types for Authentication and Authorization},
booktitle = {Trustworthy Global Computing - 7th International Symposium, {TGC}
2012, Newcastle upon Tyne, UK, September 7-8, 2012, Revised Selected
Papers},
series = {Lecture Notes in Computer Science},
volume = {8191},
pages = {19--33},
publisher = {Springer},
year = {2012},
url = {https://doi.org/10.1007/978-3-642-41157-1\_2},
doi = {10.1007/978-3-642-41157-1\_2},
timestamp = {Wed, 07 Dec 2022 23:14:04 +0100},
biburl = {https://dblp.org/rec/conf/tgc/BugliesiCEM12.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/csfw/BugliesiCEM11,
author = {Michele Bugliesi and
Stefano Calzavara and
Fabienne Eigner and
Matteo Maffei},
title = {Resource-Aware Authorization Policies for Statically Typed Cryptographic
Protocols},
booktitle = {Proceedings of the 24th {IEEE} Computer Security Foundations Symposium,
{CSF} 2011, Cernay-la-Ville, France, 27-29 June, 2011},
pages = {83--98},
publisher = {{IEEE} Computer Society},
year = {2011},
url = {https://doi.org/10.1109/CSF.2011.13},
doi = {10.1109/CSF.2011.13},
timestamp = {Fri, 24 Mar 2023 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/csfw/BugliesiCEM11.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@inproceedings{DBLP:conf/ifip1-7/BugliesiCM10,
author = {Michele Bugliesi and
Stefano Calzavara and
Damiano Macedonio},
editor = {Alessandro Armando and
Gavin Lowe},
title = {Secrecy and Authenticity Types for Secure Distributed Messaging},
booktitle = {Automated Reasoning for Security Protocol Analysis and Issues in the
Theory of Security - Joint Workshop, {ARSPA-WITS} 2010, Paphos, Cyprus,
March 27-28, 2010. Revised Selected Papers},
series = {Lecture Notes in Computer Science},
volume = {6186},
pages = {23--40},
publisher = {Springer},
year = {2010},
url = {https://doi.org/10.1007/978-3-642-16074-5\_3},
doi = {10.1007/978-3-642-16074-5\_3},
timestamp = {Tue, 29 Dec 2020 00:00:00 +0100},
biburl = {https://dblp.org/rec/conf/ifip1-7/BugliesiCM10.bib},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
a service of 
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
last updated on 2024-03-24 00:05 CET by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
dblp was originally created in 1993 at:
since 2018, dblp has been operated and maintained by:
the dblp computer science bibliography is funded and supported by:
