Follow
San-Tsai Sun
San-Tsai Sun
Verified email at ece.ubc.ca
Title
Cited by
Cited by
Year
The devil is in the (implementation) details: an empirical analysis of OAuth SSO systems
ST Sun, K Beznosov
Proceedings of the 2012 ACM conference on Computer and communications …, 2012
3022012
What makes users refuse web single sign-on? An empirical investigation of OpenID
ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov
Proceedings of the seventh symposium on usable privacy and security, 1-20, 2011
1422011
A billion keys, but few locks: the crisis of web single sign-on
ST Sun, Y Boshmaf, K Hawkey, K Beznosov
Proceedings of the 2010 new security paradigms workshop, 61-72, 2010
872010
Android rooting: Methods, detection, and evasion
ST Sun, A Cuadros, K Beznosov
Proceedings of the 5th Annual ACM CCS Workshop on Security and Privacy in …, 2015
832015
Systematically breaking and fixing OpenID security: Formal analysis, semi-automated empirical evaluation, and practical countermeasures
ST Sun, K Hawkey, K Beznosov
Computers & Security 31 (4), 465-483, 2012
732012
Investigating users’ perspectives of web single sign-on: Conceptual gaps and acceptance model
ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov
ACM Transactions on Internet Technology (TOIT) 13 (1), 1-35, 2013
432013
Classification of SQL injection attacks
ST Sun, TH Wei, S Liu, S Lau
University of British Columbia, Term Project, 2007
222007
Secure web 2.0 content sharing beyond walled gardens
ST Sun, K Hawkey, K Beznosov
2009 Annual Computer Security Applications Conference, 409-418, 2009
202009
OpenIDemail enabled browser: towards fixing the broken web single sign-on triangle
ST Sun, K Hawkey, K Beznosov
Proceedings of the 6th ACM workshop on Digital identity management, 49-58, 2010
192010
OpenID-enabled browser: towards usable and secure web single sign-on
ST Sun, E Pospisil, I Muslukhov, N Dindar, K Hawkey, K Beznosov
CHI'11 Extended Abstracts on Human Factors in Computing Systems, 1291-1296, 2011
102011
Decoupling data-at-rest encryption and smartphone locking with wearable devices
I Muslukhov, ST Sun, P Wijesekera, Y Boshmaf, K Beznosov
Pervasive and Mobile Computing 32, 26-34, 2016
82016
Simple but not secure: an empirical security analysis of OAuth 2.0-based single sign-on systems
ST Sun
Proceedings of ACM Conference on Computer and Communications, 2012
62012
Sqlprevent: Effective dynamic detection and prevention of sql injection attacks without access to the application source code
ST Sun, K Beznosov
Technical Report, 2008
62008
Open problems in web 2.0 user content sharing
ST Sun, K Beznosov
iNetSec 2009–Open Research Problems in Network Security: IFIP WG 11.4 …, 2009
52009
Retrofitting existing web applications with effective dynamic protection against sql injection attacks
ST Sun, K Beznosov
Security-Aware Systems Applications and Software Development Methods, 169-189, 2012
42012
Towards Enabling Web 2.0 Content Sharing beyond Walled Gardens
ST Sun, K Hawkey, K Beznosov
2009 International Conference on Computational Science and Engineering 4 …, 2009
32009
Poster: Towards Secure Web 2.0 User Content Sharing Beyond Walled Gardens
ST Sun, K Beznosov
12009
SQLPrevent: Effective dynamic detection and prevention of SQL injection
ST Sun, K Beznosov
Technical report, March, 2009
12009
Poster: Toward Enabling Secure Web 2.0 Content Sharing Beyond Walled Gardens
ST Sun, K Beznosov
Poster: OpenIDemail Enabled Browser
ST Sun, K Beznosov
The system can't perform the operation now. Try again later.
Articles 1–20