Seaver Wesley Thorn

College of Engineering

Works (4)

Updated: September 10th, 2024 05:02

2024 article

5GAC-Analyzer: Identifying Over-Privilege Between 5G Core Network Functions

PROCEEDINGS OF THE 17TH ACM CONFERENCE ON SECURITY AND PRIVACY IN WIRELESS AND MOBILE NETWORKS, WISEC 2024, pp. 66–77.

By: S. Thorn n, K. English n, K. Butler* & W. Enck n

author keywords: 5G Core; OAuth; Access Control
Sources: Web Of Science, ORCID, NC State University Libraries
Added: May 22, 2024

2024 article

Examining Cryptography and Randomness Failures in Open-Source Cellular Cores

PROCEEDINGS OF THE FOURTEENTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY, CODASPY 2024, pp. 43–54.

By: K. English n, N. Bennett*, S. Thorn n, K. Butler*, W. Enck n & P. Traynor*

author keywords: cellular core security; cryptography misuse; static analysis
Sources: Web Of Science, ORCID, NC State University Libraries
Added: June 15, 2024

2023 article

Finding Fixed Vulnerabilities with Off-the-Shelf Static Analysis

2023 IEEE 8TH EUROPEAN SYMPOSIUM ON SECURITY AND PRIVACY, EUROS&P, pp. 489–505.

By: T. Dunlap n, S. Thorn n, W. Enck n & B. Reaves n

Event: IEEE Computer Society

TL;DR: Differential Alert Analysis is introduced to discover vulnerability fixes in software projects and provides a powerful, accurate primitive for software projects, code analysis tools, vulnerability databases, and researchers to characterize and enhance the security of software supply chains. (via Semantic Scholar)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: September 11, 2023

2022 article

Analysis of Payment Service Provider SDKs in Android

PROCEEDINGS OF THE 38TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE, ACSAC 2022, pp. 576–590.

By: S. Mahmud n, K. English n, S. Thorn n, W. Enck n, A. Oest* & M. Saad*

TL;DR: The proposed AARDroid is proposed for statically assessing payment SDKs against OWASP’s MASVS industry standard for mobile application security, and the value of applying security analysis at the SDK granularity is demonstrated to prevent the widespread deployment of insecure code. (via Semantic Scholar)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: October 16, 2023

Citation Index includes data from a number of different sources. If you have questions about the sources of data in the Citation Index or need a set of data which is free to re-distribute, please contact us.

Certain data included herein are derived from the Web of Science© and InCites© (2024) of Clarivate Analytics. All rights reserved. You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.