Signing in Four Public Software Package Registries: Quantity, Quality, and Influencing Factors

26 January 2024

Papers citing "Signing in Four Public Software Package Registries: Quantity, Quality, and Influencing Factors"

9 / 9 papers shown

Title
Why Johnny Signs with Sigstore: Examining Tooling as a Factor in Software Signing Adoption in the Sigstore Ecosystem Kelechi G. Kalu Sofia Okorafor Tanmay Singla Santiago Torres-Arias James C. Davis 24 0 0 01 Mar 2025
ConfuGuard: Using Metadata to Detect Active and Stealthy Package Confusion Attacks Accurately and at Scale Wenxin Jiang Berk Çakar Mikola Lysenko James C. Davis 31 0 0 27 Feb 2025
Establishing Provenance Before Coding: Traditional and Next-Gen Software Signing Taylor R. Schorlemmer Ethan H. Burmane Kelechi G. Kalu Santiago Torres-Arias James C. Davis 26 0 0 04 Jul 2024
A Method to Facilitate Membership Inference Attacks in Deep Learning Models Zitao Chen Karthik Pattabiraman MIACV MLAU AAML MIALM 56 1 0 02 Jul 2024
DiVerify: Diversifying Identity Verification in Next-Generation Software Signing C. Okafor James C. Davis Santiago Torres-Arias 18 1 0 21 Jun 2024
An Industry Interview Study of Software Signing for Supply Chain Security Kelechi G. Kalu Tanya Singla C. Okafor Santiago Torres-Arias James C. Davis 13 4 0 12 Jun 2024
Do Software Security Practices Yield Fewer Vulnerabilities? Nusrat Zahan S. Shohan Dan Harris Laurie A. Williams 16 14 0 20 Oct 2022
Poster: The Unintended Consequences of Algorithm Agility in DNSSEC Elias Heftrig Haya Schulmann Michael Waidner 12 5 0 21 May 2022
Secure Email -- A Usability Study A. Reuter K. Boudaoud M. Winckler Ahmed Abdelmaksoud Wadie Lemrazzeq 13 10 0 12 Oct 2021