default search action
Google
Google Scholar
Semantic Scholar
Internet Archive Scholar
CiteSeerX
ORCIDRoberto Carbone
Person information
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
2020 – today
- 2024
[j11]Marco Pernpruner
, Roberto Carbone, Giada Sciarretta, Silvio Ranise:
An Automated Multi-Layered Methodology to Assist the Secure and Risk-Aware Design of Multi-Factor Authentication Protocols. IEEE Trans. Dependable Secur. Comput. 21(4): 1935-1950 (2024)- [c44]Andrea Bisegna, Matteo Bitussi, Roberto Carbone, Luca Compagna, Silvio Ranise, Avinash Sudhodanan:
CSRFing the SSO Waves: Security Testing of SSO-Based Account Linking Process. EuroS&P 2024: 139-154 - [c43]Stefano Berlato, Matteo Rizzi, Matteo Franzil, Silvio Cretti, Pietro De Matteis, Roberto Carbone:
Work-in-Progress: A Sidecar Proxy for Usable and Performance-Adaptable End-to-End Protection of Communications in Cloud Native Applications. EuroS&P Workshops 2024: 706-711 - [c42]Majid Mollaeefar, Eleonora Marchesini, Roberto Carbone, Silvio Ranise:
A Risk-based Approach to Trustworthy AI Systems for Judicial Procedures. Ital-IA 2024: 95-100 - 2023
- [c41]Amir Sharif, Francesco Antonio Marino, Giada Sciarretta, Giuseppe De Marco, Roberto Carbone, Silvio Ranise:
Cross-Domain Sharing of User Claims: A Design Proposal for OpenID Connect Attribute Authorities. ARES 2023: 20:1-20:11 - [c40]Zahra Ebadi Ansaroudi, Roberto Carbone, Giada Sciarretta, Silvio Ranise:
Control is Nothing Without Trust a First Look into Digital Identity Wallet Trends. DBSec 2023: 113-132 - [c39]Gianluca Sassetti, Amir Sharif, Giada Sciarretta, Roberto Carbone, Silvio Ranise:
Assurance, Consent and Access Control for Privacy-Aware OIDC Deployments. DBSec 2023: 203-222 - [c38]Luca Verderame, Luca Caviglione, Roberto Carbone, Alessio Merlo:
SecCo: Automated Services to Secure Containers in the DevOps Paradigm. RACS 2023: 10:1-10:6 - [e1]Silvio Ranise, Roberto Carbone, Daniel Takabi:
Proceedings of the 28th ACM Symposium on Access Control Models and Technologies, SACMAT 2023, Trento, Italy, June 7-9, 2023. ACM 2023 [contents] - 2022
- [j10]Amir Sharif, Roberto Carbone, Giada Sciarretta, Silvio Ranise:
Best current practices for OAuth/OIDC Native Apps: A study of their adoption in popular providers and top-ranked Android clients. J. Inf. Secur. Appl. 65: 103097 (2022) - [j9]Stefano Berlato, Roberto Carbone, Adam J. Lee, Silvio Ranise:
Formal Modelling and Automated Trade-off Analysis of Enforcement Architectures for Cryptographic Access Control in the Cloud. ACM Trans. Priv. Secur. 25(1): 2:1-2:37 (2022) - [c37]Amir Sharif, Matteo Ranzi, Roberto Carbone, Giada Sciarretta, Silvio Ranise:
SoK: A Survey on Technological Trends for (pre)Notified eIDAS Electronic Identity Schemes. ARES 2022: 85:1-85:10 - [c36]Stefano Berlato, Umberto Morelli, Roberto Carbone, Silvio Ranise:
End-to-End Protection of IoT Communications Through Cryptographic Enforcement of Access Control Policies. DBSec 2022: 236-255 - 2021
- [j8]Marco Centenaro, Stefano Berlato, Roberto Carbone, Gianfranco Burzio, Giuseppe Faranda Cordella, Roberto Riggio, Silvio Ranise:
Safety-Related Cooperative, Connected, and Automated Mobility Services: Interplay Between Functional and Security Requirements. IEEE Veh. Technol. Mag. 16(4): 78-88 (2021) - [c35]Salimeh Dashti, Amir Sharif, Roberto Carbone, Silvio Ranise:
Automated Risk Assessment and What-if Analysis of OpenID Connect and OAuth 2.0 Deployments. DBSec 2021: 325-337 - [c34]Andrea Bisegna, Roberto Carbone, Silvio Ranise:
Integrating a Pentesting Tool for IdM Protocols in a Continuous Delivery Pipeline. ETAA 2021: 94-110 - [c33]Stefano Berlato, Roberto Carbone, Silvio Ranise:
Cryptographic Enforcement of Access Control Policies in the Cloud: Implementation and Experimental Assessment. SECRYPT 2021: 370-381 - [c32]Andreas Heider-Aviet, Danny Roswin Ollik, Stefano Berlato, Silvio Ranise, Roberto Carbone, Van Thanh Le, Nabil El Ioini, Claus Pahl, Hamid R. Barzegar:
Blockchain Based RAN Data Sharing. SMDS 2021: 152-161 - 2020
- [j7]Federico Sinigaglia, Roberto Carbone, Gabriele Costa, Nicola Zannone:
A survey on multi-factor authentication for online banking in the wild. Comput. Secur. 95: 101745 (2020) - [j6]Giada Sciarretta, Roberto Carbone, Silvio Ranise, Luca Viganò:
Formal Analysis of Mobile Multi-Factor Authentication with Single Sign-On Login. ACM Trans. Priv. Secur. 23(3): 13:1-13:37 (2020) - [c31]Marco Centenaro, Stefano Berlato, Roberto Carbone, Gianfranco Burzio, Giuseppe Faranda Cordella, Silvio Ranise, Roberto Riggio:
Security Considerations on 5G-Enabled Back-Situation Awareness for CCAM. 5G World Forum 2020: 245-250 - [c30]Stefano Berlato, Roberto Carbone, Adam J. Lee, Silvio Ranise:
Exploring Architectures for Cryptographic Access Control Enforcement in the Cloud for Fun and Optimization. AsiaCCS 2020: 208-221 - [c29]Marco Pernpruner, Roberto Carbone, Silvio Ranise, Giada Sciarretta:
The Good, the Bad and the (Not So) Ugly of Out-of-Band Authentication with eID Cards and Push Notifications: Design, Formal and Risk Analysis. CODASPY 2020: 223-234 - [c28]Amir Sharif, Roberto Carbone, Giada Sciarretta, Silvio Ranise:
Automated and Secure Integration of the OpenID Connect iGov Profile in Mobile Native Applications. ETAA@ESORICS 2020: 50-70 - [c27]Andrea Bisegna, Roberto Carbone, Giulio Pellizzari, Silvio Ranise:
Micro-Id-Gym: A Flexible Tool for Pentesting Identity Management Protocols in the Wild and in the Laboratory. ETAA@ESORICS 2020: 71-89
2010 – 2019
- 2019
- [c26]Federico Sinigaglia, Roberto Carbone, Gabriele Costa, Silvio Ranise:
MuFASA: A Tool for High-level Specification and Analysis of Multi-factor Authentication Protocols. ETAA@ESORICS 2019: 138-155 - [c25]Amir Sharif, Roberto Carbone, Silvio Ranise, Giada Sciarretta:
A Wizard-based Approach for Secure Code Generation of Single Sign-On and Access Delegation Solutions for Mobile Native Apps. ICETE (2) 2019: 268-275 - 2018
- [c24]Giada Sciarretta, Roberto Carbone, Silvio Ranise, Luca Viganò:
Design, Formal Specification and Analysis of Multi-Factor Authentication Solutions with a Single Sign-On Experience. POST 2018: 188-213 - [c23]Roberto Carbone, Silvio Ranise, Giada Sciarretta:
Design and Security Assessment of Usable Multi-factor Authentication and Single Sign-On Solutions for Mobile Applications - A Workshop Experience Report. Privacy and Identity Management 2018: 51-66 - 2017
- [j5]Giada Sciarretta, Roberto Carbone, Silvio Ranise, Alessandro Armando:
Anatomy of the Facebook solution for mobile single sign-on: Security assessment and improvements. Comput. Secur. 71: 71-86 (2017) - [c22]Avinash Sudhodanan, Roberto Carbone, Luca Compagna, Nicolas Dolgin, Alessandro Armando, Umberto Morelli:
Large-Scale Analysis & Detection of Authentication Cross-Site Request Forgeries. EuroS&P 2017: 350-365 - [c21]Gabriele Costa, Federico Sinigaglia, Roberto Carbone:
PolEnA: Enforcing Fine-grained Permission Policies in Android. SAFECOMP Workshops 2017: 407-414 - [c20]Federico Sinigaglia, Roberto Carbone, Gabriele Costa:
Strong Authentication for e-Banking: A Survey on European Regulations and Implementations. SECRYPT 2017: 480-485 - 2016
- [j4]Alessandro Armando, Roberto Carbone, Luca Compagna:
SATMC: a SAT-based model checker for security protocols, business processes, and security APIs. Int. J. Softw. Tools Technol. Transf. 18(2): 187-204 (2016) - [c19]Avinash Sudhodanan, Alessandro Armando, Roberto Carbone, Luca Compagna:
Attack Patterns for Black-Box Security Testing of Multi-Party Web Applications. NDSS 2016 - [c18]Giada Sciarretta, Roberto Carbone, Silvio Ranise:
A delegated authorization solution for smart-city mobile applications. RTSI 2016: 1-6 - [c17]Giada Sciarretta, Alessandro Armando, Roberto Carbone, Silvio Ranise:
Security of Mobile Single Sign-On: A Rational Reconstruction of Facebook Login Solution. SECRYPT 2016: 147-158 - 2015
- [c16]Alessandro Armando, Roberto Carbone, Gabriele Costa, Alessio Merlo:
Android Permissions Unleashed. CSF 2015: 320-333 - [c15]Roberto Carbone, Luca Compagna, Annibale Panichella, Serena Elisa Ponta:
Security Threat Identification and Testing. ICST 2015: 1-8 - 2014
- [c14]Alessandro Armando, Roberto Carbone, Eyasu Getahun Chekole, Silvio Ranise:
Attribute based access control for APIs in spring security. SACMAT 2014: 85-88 - [c13]Alessandro Armando, Roberto Carbone, Eyasu Getahun Chekole, Claudio Petrazzuolo, Andrea Ranalli, Silvio Ranise:
Selective Release of Smart Metering Data in Multi-domain Smart Grids. SmartGridSec 2014: 48-62 - [c12]Alessandro Armando, Roberto Carbone, Luca Compagna:
SATMC: A SAT-Based Model Checker for Security-Critical Systems. TACAS 2014: 31-45 - 2013
- [j3]Alessandro Armando, Roberto Carbone, Luca Compagna, Jorge Cuéllar, Giancarlo Pellegrino, Alessandro Sorniotti:
An authentication flaw in browser-based Single Sign-On protocols: Impact and remediations. Comput. Secur. 33: 41-58 (2013) - [c11]Alessandro Armando, Roberto Carbone, Luca Zanetti:
Formal Modeling and Automatic Security Analysis of Two-Factor and Two-Channel Authentication Protocols. NSS 2013: 728-734 - 2012
- [c10]Alessandro Armando, Roberto Carbone, Alessio Merlo:
Formal Analysis of a Privacy-Preserving Billing Protocol. SmartGridSec 2012: 108-119 - [c9]Alessandro Armando, Wihem Arsac, Tigran Avanesov, Michele Barletta, Alberto Calvi, Alessandro Cappai, Roberto Carbone, Yannick Chevalier, Luca Compagna, Jorge Cuéllar, Gabriel Erzse, Simone Frau, Marius Minea, Sebastian Mödersheim, David von Oheimb, Giancarlo Pellegrino, Serena Elisa Ponta, Marco Rocchetto, Michaël Rusinowitch, Mohammad Torabi Dashti, Mathieu Turuani, Luca Viganò:
The AVANTSSAR Platform for the Automated Validation of Trust and Security of Service-Oriented Architectures. TACAS 2012: 267-282 - [c8]Alessandro Armando, Giancarlo Pellegrino, Roberto Carbone, Alessio Merlo, Davide Balzarotti:
From Model-Checking to Automated Testing of Security Protocols: Bridging the Gap. TAP@TOOLS 2012: 3-18 - 2011
- [j2]Roberto Carbone:
LTL model-checking for security protocols. AI Commun. 24(3): 281-283 (2011) - [c7]Roberto Carbone, Marius Minea, Sebastian Mödersheim, Serena Elisa Ponta, Mathieu Turuani, Luca Viganò:
Towards Formal Validation of Trust and Security in the Internet of Services. Future Internet Assembly 2011: 193-208 - [c6]Gabriela Gheorghe, Bruno Crispo, Roberto Carbone, Lieven Desmet, Wouter Joosen:
Deploy, Adjust and Readjust: Supporting Dynamic Reconfiguration of Policy Enforcement. Middleware 2011: 350-369 - [c5]Alessandro Armando, Roberto Carbone, Luca Compagna, Jorge Cuéllar, Giancarlo Pellegrino, Alessandro Sorniotti:
From Multiple Credentials to Browser-Based Single Sign-On: Are We More Secure? SEC 2011: 68-79 - [c4]Alessandro Armando, Roberto Carbone, Silvio Ranise:
Automated Analysis of Semantic-Aware Access Control Policies: A Logic-Based Approach. ICSC 2011: 356-363 - 2010
- [c3]Alessandro Armando, Roberto Carbone, Luca Compagna, Keqin Li, Giancarlo Pellegrino:
Model-Checking Driven Security Testing of Web-Based Applications. ICST Workshops 2010: 361-370
2000 – 2009
- 2009
- [j1]Alessandro Armando, Roberto Carbone, Luca Compagna:
LTL model checking for security protocols. J. Appl. Non Class. Logics 19(4): 403-429 (2009) - [p1]Carsten Rudolph, Luca Compagna, Roberto Carbone, Antonio Muñoz, Jürgen Repp:
Verification of S&D Solutions for Network Communications and Devices. Security and Dependability for Ambient Intelligence 2009: 143-163 - 2008
- [c2]Alessandro Armando, Roberto Carbone, Luca Compagna, Jorge Cuéllar, Llanos Tobarra:
Formal analysis of SAML 2.0 web browser single sign-on: breaking the SAML-based single sign-on for google apps. FMSE 2008: 1-10 - 2007
- [c1]Alessandro Armando, Roberto Carbone, Luca Compagna:
LTL Model Checking for Security Protocols. CSF 2007: 385-396
Coauthor Index
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
Unpaywalled article links
Add open access links from 
to the list of external document links (if available).
Privacy notice: By enabling the option above, your browser will contact the API of unpaywall.org to load hyperlinks to open access articles. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Unpaywall privacy policy.
Archived links via Wayback Machine
For web page which are no longer available, try to retrieve content from the 
of the Internet Archive (if available).
Privacy notice: By enabling the option above, your browser will contact the API of archive.org to check for archived content of web pages that are no longer available. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Internet Archive privacy policy.
Reference lists
Add a list of references from 
, 
, and 
to record detail pages.
load references from crossref.org and opencitations.net
Privacy notice: By enabling the option above, your browser will contact the APIs of crossref.org, opencitations.net, and semanticscholar.org to load article reference information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Crossref privacy policy and the OpenCitations privacy policy, as well as the AI2 Privacy Policy covering Semantic Scholar.
Citation data
Add a list of citing articles from and to record detail pages.
load citations from opencitations.net
Privacy notice: By enabling the option above, your browser will contact the API of opencitations.net and semanticscholar.org to load citation information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the OpenCitations privacy policy as well as the AI2 Privacy Policy covering Semantic Scholar.
OpenAlex data
Load additional information about publications from 
.
Privacy notice: By enabling the option above, your browser will contact the API of openalex.org to load additional information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the information given by OpenAlex.
last updated on 2024-10-09 20:31 CEST by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
dblp was originally created in 1993 at:
since 2018, dblp has been operated and maintained by:
the dblp computer science bibliography is funded and supported by:
