References

Bibliographic references cited across the CWE and CAPEC catalogs

All CWE CAPEC
REF-1207 CWE
A01:2021 - Broken Access Control
· 2021
REF-1208 CWE
A02:2021 - Cryptographic Failures
· 2021
REF-1209 CWE
A03:2021 - Injection
· 2021
REF-1210 CWE
A04:2021 - Insecure Design
· 2021
REF-1211 CWE
A05:2021 - Security Misconfiguration
· 2021
REF-1212 CWE
A06:2021 - Vulnerable and Outdated Components
· 2021
3 citation(s)
REF-1213 CWE
A07:2021 - Identification and Authentication Failures
· 2021
REF-1214 CWE
A08:2021 - Software and Data Integrity Failures
· 2021
REF-1215 CWE
A09:2021 - Security Logging and Monitoring Failures
· 2021
REF-1216 CWE
A10:2021 - Server-Side Request Forgery (SSRF)
· 2021
REF-1217 CWE
Security Engineering
Ross Anderson · 2001
2 citation(s)
REF-1218 CWE
This Black Box Can Brute Force Crack iPhone PIN Passcodes
Graham Cluley · 2015
2 citation(s)
REF-1219 CWE
Blindsight: Blinding EM Side-Channel Leakage using Built-In Fully Integrated Inductive Voltage Regulator
Monodeep Kar, Arvind Singh, Santosh Ghosh, Sanu Mathew, Anand Rajan, Vivek De, Raheem Beyah, Saibal Mukhopadhyay · 2018
1 citation(s)
REF-1220 CWE
Understanding the Security of ARM Debugging Features
Zhenyu Ning, Fengwei Zhang · 2019
1 citation(s)
REF-1221 CWE
A Side Journey to Titan
Victor Lomne, Thomas Roche · 2021
1 citation(s)
REF-1222 CWE
Experimental Analysis of the Electromagnetic Instruction Skip Fault Model
Alexandre Menu, Jean-Max Dutertre, Olivier Potin, Jean-Baptiste Rigaud · 2020
1 citation(s)
REF-1223 CWE
Controlling PC on ARM using Fault Injection
Niek Timmers, Albert Spruyt, Marc Witteman · 2016
1 citation(s)
REF-1224 CWE
Attacking USB Gear with EMFI
Colin O'Flynn · 2019
1 citation(s)
REF-1225 CWE
Exploiting the DRAM rowhammer bug to gain kernel privileges
Project Zero · 2015
1 citation(s)
REF-1227 CWE
Cryptographic primitive
Wikipedia
1 citation(s)
REF-1228 CWE
A testing methodology for side-channel resistance validation
Gilbert Goodwill, Benjamin Jun, Josh Jaffe, Pankaj Rohatgi · 2011
1 citation(s)
REF-1229 CWE
ISO/IEC 17825:2016: Testing methods for the mitigation of non-invasive attack classes against cryptographic modules
ISO/IEC · 2016
1 citation(s)
REF-1230 CWE
Test Vector Leakage Assessment (TVLA) Derived Test Requirements (DTR) with AES
Cryptography Research Inc. · 2015
1 citation(s)
REF-1231 CWE
Towards efficient and automated side-channel evaluations at design time
Danilo Šijaˇci´, Josep Balasch, Bohan Yang, Santosh Ghosh, Ingrid Verbauwhede · 2020
1 citation(s)
REF-1232 CWE
Efficient simulation of EM side-channel attack resilience
Amit Kumar, Cody Scarborough, Ali Yilmaz, Michael Orshansky · 2017
1 citation(s)
REF-1233 CWE
Pre-silicon Architecture Correlation Analysis (PACA): Identifying and Mitigating the Source of Side-channel Leakage at Gate-level
Yuan Yao, Tuna Tufan, Tarun Kathuria, Baris Ege, Ulkuhan Guler, Patrick Schaumont · 2021
1 citation(s)
REF-1234 CWE
Power Analysis Attacks - Revealing the Secrets of Smart Cards
Elisabeth Oswald, Thomas Popp, Stefan Mangard · 2007
1 citation(s)
REF-1235 CWE
Side-Channel Attacks on the Yubikey 2 One-Time Password Generator
David Oswald, Bastian Richter, Christof Paar · 2013
1 citation(s)
REF-1236 CWE
CAVP Testing: Individual Component Testing
NIST
1 citation(s)
REF-1237 CWE
Intel BIOS locking mechanism contains race condition that enables write protection bypass
CERT Coordination Center · 2015
2 citation(s)
REF-1238 CWE
2021 CWE Most Important Hardware Weaknesses
MITRE · 2021
REF-1239 CWE
How (not) to Use Welch's T-test in Side-Channel Security Evaluations
François-Xavier Standaert · 2017
1 citation(s)
REF-1240 CWE
A Critical Analysis of ISO 17825 ('Testing methods for the mitigation of non-invasive attack classes against cryptographic modules')
Carolyn Whitnall, Elisabeth Oswald · 2019
1 citation(s)
REF-1241 CWE
Network on a chip
Wikipedia
1 citation(s)
REF-1242 CWE
A Survey of Network-on-Chip Security Attacks and Countermeasures
Subodha Charles, Prabhat Mishra · 2021
1 citation(s)
REF-1243 CWE
Cryptanalysis of SHA-1
Bruce Schneier · 2005
1 citation(s)
REF-1244 CWE
At death's door for years, widely used SHA1 function is now dead
Dan Goodin · 2017
1 citation(s)
REF-1245 CWE
Design of Secure and Trustworthy Network-on-chip Architectures
Subodha Charles · 2020
1 citation(s)
REF-1246 CWE
SOFTWARE BILL OF MATERIALS
National Telecommunications and Information Administration
1 citation(s)
REF-1247 CWE
Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)
NTIA Multistakeholder Process on Software Component Transparency Framing Working Group · 2021
2 citation(s)
REF-1248 CWE
Categories of Security Vulnerabilities in ICS
Securing Energy Infrastructure Executive Task Force (SEI ETF) · 2022
2 citation(s)
REF-1249 CWE
PHPMailer < 5.2.18 Remote Code Execution [CVE-2016-10033]
Dawid Golunski · 2016
1 citation(s)
REF-1250 CWE
Pwning PHP mail() function For Fun And RCE
Dawid Golunski · 2017
1 citation(s)
REF-1251 CWE
WebSockets not Bound by SOP and CORS? Does this mean...
Drew Branch · 2018
1 citation(s)
REF-1252 CWE
How to secure your WebSocket connections
Mehul Mohan · 2018
1 citation(s)
REF-1253 CWE
Testing for WebSockets security vulnerabilities
PortSwigger
1 citation(s)
REF-1254 CWE
Cybersecurity in Medical Devices: Quality System Considerations and Content of Premarket Submissions Draft Guidance for Industry and Food and Drug Administration Staff (DRAFT GUIDANCE)
FDA · 2022
1 citation(s)
REF-1255 CWE
Semi-invasive attacks - A new approach to hardware security analysis
Sergei P. Skorobogatov · 2005
1 citation(s)
REF-1256 CWE
Cross-Site WebSocket Hijacking (CSWSH)
Vickie Li · 2019
1 citation(s)
REF-1257 CWE
Cross-Site WebSocket Hijacking (CSWSH)
Christian Schneider · 2013
1 citation(s)
« 24 / 30 »