{"id":"W2106620684","doi":"10.1109/cse.2009.372","title":"Threat Modeling for CSRF Attacks","year":2009,"lang":"en","type":"article","venue":"","topic":"Web Application Security Vulnerabilities","field":"Computer Science","cited_by":54,"is_retracted":false,"has_abstract":true,"ca_institutions":"Concordia University of Edmonton","funders":"","keywords":"Computer science; Threat model; Vulnerability (computing); Web application security; Computer security; Vulnerability assessment; Vulnerability management; World Wide Web; Web service; Web development","routes":{"ca_aff":true,"ca_fund":false,"ca_venue":false,"about_ca":false,"invisible_to_affiliation_only":false},"retraction":null,"screen":null,"direct_labels":[],"prediction":{"model_version":"codex-gemma-dda1882f352a","candidate_categories":[],"consensus_categories":[],"category_scores_codex":[0.0001702309,0.00006937156,0.00008207597,0.00003542206,0.00008726542,0.0001061605,0.0005000392,0.0000331642,0.00001260053],"category_scores_gemma":[0.00001822521,0.00006115668,0.00004707211,0.0001059996,0.000009278659,0.0003124059,0.00004111385,0.00004157791,0.00004011581],"about_ca_system_candidate":false,"about_ca_system_consensus":false,"about_ca_system_score_codex":0.0000198164,"about_ca_system_score_gemma":0.00002408595,"about_ca_topic_candidate":false,"about_ca_topic_consensus":false,"about_ca_topic_score_codex":0.000008699376,"about_ca_topic_score_gemma":0.00000343988,"domain_scores_codex":[0.999325,0.000008806403,0.000135302,0.0002528526,0.0001149742,0.0001630743],"domain_scores_gemma":[0.9993213,0.00006006977,0.00001839571,0.0004654698,0.00008754837,0.00004724668],"domain_codex":null,"domain_gemma":null,"domain_candidate":null,"domain_consensus":null,"study_design_codex":"theoretical_or_conceptual","study_design_gemma":"simulation_or_modeling","study_design_scores_codex":[0.000001427561,0.0000237767,0.00001048753,0.000002660923,0.000001527611,8.527758e-8,0.0003324786,0.001743851,0.0002665628,0.978003,0.001783536,0.01783063],"study_design_scores_gemma":[0.0001201649,0.00003381032,0.0000311461,0.000001657342,9.085658e-7,0.000001522461,0.00002437033,0.7857463,0.001605558,0.2090996,0.003250501,0.00008442446],"study_design_candidate":"theoretical_or_conceptual","study_design_consensus":null,"genre_codex":"methods","genre_gemma":"empirical","genre_scores_codex":[0.01063135,0.00003465451,0.9720789,0.004987342,0.00004365755,0.000217589,7.784728e-7,0.0002960866,0.01170964],"genre_scores_gemma":[0.8244958,0.000001985275,0.1732977,0.001458204,0.00005361642,0.00003282161,0.000001260877,0.00000274805,0.000655914],"genre_candidate":"methods","genre_consensus":null,"teacher_disagreement_score":0.8138644,"threshold_uncertainty_score":0.2493897,"prediction_status":"machine_predicted_unvalidated"},"machine_scores":{"provisional":true,"baseline":true,"maturity_gate_passed":false,"score_opus":0.03541507962795403,"score_gpt":0.3001777122192298,"score_spread":0.2647626325912758,"validation_status":"score_only:v0-immature-baseline","note":"Baseline scores from an immature model (maturity gate not passed). Scores rank; they never assert a category."}}