107 lines
3.7 KiB
Plaintext
107 lines
3.7 KiB
Plaintext
(article lamb2021:reproducible
|
||
(author "Chris Lamb and Stefano Zacchiroli")
|
||
(title "Reproducible Builds: Increasing the Integrity of Software Supply Chains")
|
||
(publisher "IEEE Computer Society")
|
||
(year "2021")
|
||
(issn "0740-7459")
|
||
(doi "10.1109/MS.2021.3073045")
|
||
(journal "IEEE Software"))
|
||
|
||
(inproceedings torresarias2016:omitting
|
||
(author "Santiago Torres-Arias and Anil Kumar Ammula and Reza Curtmola and Justin Cappos")
|
||
(title "On Omitting Commits and Committing Omissions: Preventing Git Metadata Tampering That (Re)introduces Software Vulnerabilities")
|
||
(booktitle "25th USENIX Security Symposium")
|
||
(year "2016")
|
||
(isbn "978-1-931971-32-4")
|
||
(address "Austin, TX")
|
||
(pages "379--395")
|
||
(url "https://www.usenix.org/conference/usenixsecurity16/technical-sessions/presentation/torres-arias")
|
||
(publisher "USENIX Association")
|
||
(month "August"))
|
||
|
||
(inproceedings torresarias2019:intoto
|
||
(author "Santiago Torres-Arias and Hammad Afzali and Trishank Karthik Kuppusamy and Reza Curtmola and Justin Cappos")
|
||
(title "in-toto: Providing farm-to-table guarantees for bits and bytes")
|
||
(booktitle "28th USENIX Security Symposium")
|
||
(year "2019")
|
||
(isbn "978-1-939133-06-9")
|
||
(address "Santa Clara, CA")
|
||
(pages "1393--1410")
|
||
(url "https://www.usenix.org/conference/usenixsecurity19/presentation/torres-arias")
|
||
(publisher "USENIX Association")
|
||
(month "Aug"))
|
||
|
||
(misc janneke:mes-web
|
||
(title "GNU Mes web site")
|
||
(author "Jan Nieuwenhuizen")
|
||
(url "https://gnu.org/software/mes")
|
||
(year "2021"))
|
||
|
||
(misc janneke2020:bootstrap
|
||
(title "Guix Further Reduces Bootstrap Seed to 25%")
|
||
(author "Jan Nieuwenhuizen")
|
||
(year "2020")
|
||
(month "June")
|
||
(url "https://guix.gnu.org/en/blog/2020/guix-further-reduces-bootstrap-seed-to-25/"))
|
||
|
||
(article thompson1984:trusting-trust
|
||
(author "Thompson, Ken")
|
||
(title "Reflections on Trusting Trust")
|
||
(year "1984")
|
||
(issue_date "Aug 1984")
|
||
(publisher "Association for Computing Machinery")
|
||
(address "New York, NY, USA")
|
||
(volume "27")
|
||
(number "8")
|
||
(issn "0001-0782")
|
||
(url "https://doi.org/10.1145/358198.358210")
|
||
(doi "10.1145/358198.358210")
|
||
(journal "Communications of the ACM")
|
||
(month "August")
|
||
(pages "761--763"))
|
||
|
||
(inproceedings stevens2017:detection
|
||
(author "Stevens, Marc and Shumow, Daniel")
|
||
(title "Speeding up Detection of SHA-1 Collision Attacks Using Unavoidable Attack Conditions")
|
||
(year "2017")
|
||
(isbn "9781931971409")
|
||
(publisher "USENIX Association")
|
||
(address "USA")
|
||
(booktitle "Proceedings of the 26th USENIX Conference on Security Symposium")
|
||
(pages "881–897")
|
||
(numpages "17")
|
||
(location "Vancouver, BC, Canada")
|
||
(series "SEC'17"))
|
||
|
||
(inproceedings stevens2017:collision
|
||
(author "Marc Stevens and Elie Bursztein and Pierre Karpman and Ange Albertini and Yarik Markov")
|
||
(editor "Katz, Jonathan
|
||
and Shacham, Hovav")
|
||
(title "The First Collision for Full SHA-1")
|
||
(booktitle "Advances in Cryptology -- CRYPTO 2017")
|
||
(year "2017")
|
||
(publisher "Springer International Publishing")
|
||
;;(address "Cham")
|
||
(pages "570--596")
|
||
(isbn "978-3-319-63688-7"))
|
||
|
||
(inproceedings leurent2020:shambles
|
||
(author "Gaëtan Leurent and Thomas Peyrin")
|
||
(title "SHA-1 is a Shambles: First Chosen-Prefix Collision on SHA-1 and Application to the PGP Web of Trust")
|
||
(booktitle "29th USENIX Security Symposium (USENIX Security 20)")
|
||
(year "2020")
|
||
(isbn "978-1-939133-17-5")
|
||
(pages "1839--1856")
|
||
(url "https://www.usenix.org/conference/usenixsecurity20/presentation/leurent")
|
||
(publisher "USENIX Association")
|
||
(month "August"))
|
||
|
||
|
||
#|
|
||
(defun skr-from-bibtex ()
|
||
"Vaguely convert the BibTeX snippets after POINT to SBibTeX."
|
||
(interactive)
|
||
(while (re-search-forward "\\([a-z_-]+\\) *= *[{\"]\\([^}\"]+\\)[}\"] *, *$" nil nil)
|
||
(replace-match "(\\1 \"\\2\")")))
|
||
|#
|