San-Tsai Sun
San-Tsai Sun
Verified email at ece.ubc.ca
Title
Cited by
Cited by
Year
The devil is in the (implementation) details: an empirical analysis of OAuth SSO systems
ST Sun, K Beznosov
Proceedings of the 2012 ACM conference on Computer and communications …, 2012
2092012
What makes users refuse web single sign-on? An empirical investigation of OpenID
ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov
Proceedings of the Seventh Symposium on Usable Privacy and Security, 1-20, 2011
1052011
A billion keys, but few locks: the crisis of web single sign-on
ST Sun, Y Boshmaf, K Hawkey, K Beznosov
Proceedings of the 2010 New Security Paradigms Workshop, 61-72, 2010
772010
Systematically breaking and fixing OpenID security: Formal analysis, semi-automated empirical evaluation, and practical countermeasures
ST Sun, K Hawkey, K Beznosov
Computers & Security 31 (4), 465-483, 2012
642012
Android rooting: Methods, detection, and evasion
ST Sun, A Cuadros, K Beznosov
Proceedings of the 5th Annual ACM CCS Workshop on Security and Privacy in …, 2015
442015
Investigating users’ perspectives of web single sign-on: Conceptual gaps and acceptance model
ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov
ACM Transactions on Internet Technology (TOIT) 13 (1), 1-35, 2013
292013
OpenIDemail enabled browser: towards fixing the broken web single sign-on triangle
ST Sun, K Hawkey, K Beznosov
Proceedings of the 6th ACM workshop on Digital identity management, 49-58, 2010
192010
Classification of SQL injection attacks
ST Sun, TH Wei, S Liu, S Lau
University of British Columbia, Term Project, 2007
192007
Secure web 2.0 content sharing beyond walled gardens
ST Sun, K Hawkey, K Beznosov
2009 Annual Computer Security Applications Conference, 409-418, 2009
172009
OpenID-enabled browser: towards usable and secure web single sign-on
ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov
CHI'11 Extended Abstracts on Human Factors in Computing Systems, 1291-1296, 2011
92011
Decoupling data-at-rest encryption and smartphone locking with wearable devices
I Muslukhov, ST Sun, P Wijesekera, Y Boshmaf, K Beznosov
Pervasive and Mobile Computing 32, 26-34, 2016
52016
Sqlprevent: Effective dynamic detection and prevention of sql injection attacks without access to the application source code
ST Sun, K Beznosov
University of British Columbia Vancouver, Technical report LERSSE-TR-2008-01, 2008
52008
Simple but not secure: An empirical security analysis of oauth 2.0-based single sign-on systems
ST Sun
4
Retrofitting existing web applications with effective dynamic protection against SQL injection attacks
ST Sun, K Beznosov
International Journal of Secure Software Engineering (IJSSE) 1 (1), 20-40, 2010
32010
Towards Enabling Web 2.0 Content Sharing beyond Walled Gardens
ST Sun, K Hawkey, K Beznosov
2009 International Conference on Computational Science and Engineering 4 …, 2009
32009
Open problems in Web 2.0 user content sharing
ST Sun, K Beznosov
iNetSec 2009–Open Research Problems in Network Security, 37-51, 2009
32009
Poster: Towards Secure Web 2.0 User Content Sharing Beyond Walled Gardens
ST Sun, K Beznosov
12009
SQLPrevent: Effective dynamic detection and prevention of SQL injection
ST Sun, K Beznosov
Technical report, March, 2009
12009
Poster: Toward Enabling Secure Web 2.0 Content Sharing Beyond Walled Gardens
ST Sun, K Beznosov
Poster: OpenIDemail Enabled Browser
ST Sun, K Beznosov
The system can't perform the operation now. Try again later.
Articles 1–20