A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2015; you can also visit the original URL.
The file type is application/pdf
.
Why does cryptographic software fail?
2014
Proceedings of 5th Asia-Pacific Workshop on Systems - APSys '14
Mistakes in cryptographic software implementations often undermine the strong security guarantees offered by cryptography. This paper presents a systematic study of cryptographic vulnerabilities in practice, an examination of state-of-the-art techniques to prevent such vulnerabilities, and a discussion of open problems and possible future research directions. Our study covers 269 cryptographic vulnerabilities reported in the CVE database from January 2011 to May 2014. The results show that just
doi:10.1145/2637166.2637237
dblp:conf/apsys/LazarCWZ14
fatcat:upwjoelmfbhxnketl7jjazgiwe