| Formal analysis of SAML 2.0 web browser single sign-on: breaking the SAML-based single sign-on for google apps A Armando, R Carbone, L Compagna, J Cuellar, L Tobarra Proceedings of the 6th ACM workshop on Formal methods in security …, 2008 | 383 | 2008 |
| The AVANTSSAR platform for the automated validation of trust and security of service-oriented architectures A Armando, W Arsac, T Avanesov, M Barletta, A Calvi, A Cappai, ... Tools and Algorithms for the Construction and Analysis of Systems: 18th …, 2012 | 138 | 2012 |
| LTL model checking for security protocols A Armando, R Carbone, L Compagna Journal of Applied Non-Classical Logics 19 (4), 403-429, 2009 | 125 | 2009 |
| LTL Model Checking for Security Protocols A Armando, R Carbone, L Compagna 20th IEEE Computer Security Foundations Symposium (CSF'07), pp. 385-396, 2007 | 125 | 2007 |
| An authentication flaw in browser-based single sign-on protocols: Impact and remediations A Armando, R Carbone, L Compagna, J Cuéllar, G Pellegrino, A Sorniotti Computers & Security 33, 41-58, 2013 | 90 | 2013 |
| A survey on multi-factor authentication for online banking in the wild F Sinigaglia, R Carbone, G Costa, N Zannone Computers & Security 95, 101745, 2020 | 53 | 2020 |
| Large-scale analysis & detection of authentication cross-site request forgeries A Sudhodanan, R Carbone, L Compagna, N Dolgin, A Armando, ... 2017 IEEE European symposium on security and privacy (EuroS&P), 350-365, 2017 | 51 | 2017 |
| SATMC: a SAT-based Model Checker for Security-critical Systems A Armando, R Carbone, L Compagna Tools and Algorithms for the Construction and Analysis of Systems: 20th …, 2014 | 51 | 2014 |
| Attack Patterns for Black-Box Security Testing of Multi-Party Web Applications. A Sudhodanan, A Armando, R Carbone, L Compagna NDSS, 2016 | 47 | 2016 |
| From multiple credentials to browser-based single sign-on: Are we more secure? A Armando, R Carbone, L Compagna, J Cuellar, G Pellegrino, A Sorniotti IFIP International Information Security Conference, 68-79, 2011 | 43 | 2011 |
| Model-checking driven security testing of web-based applications A Armando, R Carbone, L Compagna, K Li, G Pellegrino 2010 Third International Conference on Software Testing, Verification, and …, 2010 | 40 | 2010 |
| From model-checking to automated testing of security protocols: Bridging the gap A Armando, G Pellegrino, R Carbone, A Merlo, D Balzarotti International Conference on Tests and Proofs, 3-18, 2012 | 38 | 2012 |
| SATMC: a SAT-based model checker for security protocols, business processes, and security APIs A Armando, R Carbone, L Compagna International Journal on Software Tools for Technology Transfer 18, 187-204, 2016 | 27 | 2016 |
| Android permissions unleashed A Armando, R Carbone, G Costa, A Merlo 2015 IEEE 28th Computer Security Foundations Symposium, 320-333, 2015 | 23 | 2015 |
| Attribute based access control for apis in spring security A Armando, R Carbone, EG Chekole, S Ranise Proceedings of the 19th ACM symposium on Access control models and …, 2014 | 20 | 2014 |
| Design, formal specification and analysis of multi-factor authentication solutions with a single sign-on experience G Sciarretta, R Carbone, S Ranise, L Viganò International Conference on Principles of Security and Trust, 188-213, 2018 | 16 | 2018 |
| LTL model-checking for security protocols R Carbone AI communications 24 (3), 281-283, 2011 | 15 | 2011 |
| Anatomy of the Facebook solution for mobile single sign-on: Security assessment and improvements G Sciarretta, R Carbone, S Ranise, A Armando Computers & Security 71, 71-86, 2017 | 14 | 2017 |
| Deploy, adjust and readjust: Supporting dynamic reconfiguration of policy enforcement G Gheorghe, B Crispo, R Carbone, L Desmet, W Joosen Middleware 2011: ACM/IFIP/USENIX 12th International Middleware Conference …, 2011 | 13 | 2011 |
| Formal modeling and automatic security analysis of two-factor and two-channel authentication protocols A Armando, R Carbone, L Zanetti International Conference on Network and System Security, 728-734, 2013 | 12 | 2013 |
