Abstract
We describe a series of security policy audits that we conducted, exposing policy flaws affecting billions of users that are often exploited by even low-tech attackers. We argue that a systematic study of security policies and processes is sorely needed, and present a research agenda.
Originalsprache | Englisch |
---|---|
Seiten (von - bis) | 77-81 |
Seitenumfang | 5 |
Fachzeitschrift | IEEE Security and Privacy |
Jahrgang | 21 |
Ausgabenummer | 2 |
DOIs | |
Publikationsstatus | Veröffentlicht - 1 März 2023 |