{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2012:BIB3BHGM22YEMYMGB65C35KKQO","short_pith_number":"pith:BIB3BHGM","canonical_record":{"source":{"id":"1206.6757","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-06-28T16:36:13Z","cross_cats_sorted":["cs.SE"],"title_canon_sha256":"2cc0773861ef9d2a01ba1b457a513add1c7926851048a9f7c212d0fabd2a0494","abstract_canon_sha256":"1ae2f7f93c7eff7b5b8e28688ff209dedbb37399b234261d23538dfe2309fb29"},"schema_version":"1.0"},"canonical_sha256":"0a03b09cccd6b04661860fba2df54a83b9e089dc7b80ace565ac35decdbbed41","source":{"kind":"arxiv","id":"1206.6757","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1206.6757","created_at":"2026-05-18T03:51:13Z"},{"alias_kind":"arxiv_version","alias_value":"1206.6757v2","created_at":"2026-05-18T03:51:13Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1206.6757","created_at":"2026-05-18T03:51:13Z"},{"alias_kind":"pith_short_12","alias_value":"BIB3BHGM22YE","created_at":"2026-05-18T12:27:01Z"},{"alias_kind":"pith_short_16","alias_value":"BIB3BHGM22YEMYMG","created_at":"2026-05-18T12:27:01Z"},{"alias_kind":"pith_short_8","alias_value":"BIB3BHGM","created_at":"2026-05-18T12:27:01Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2012:BIB3BHGM22YEMYMGB65C35KKQO","target":"record","payload":{"canonical_record":{"source":{"id":"1206.6757","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-06-28T16:36:13Z","cross_cats_sorted":["cs.SE"],"title_canon_sha256":"2cc0773861ef9d2a01ba1b457a513add1c7926851048a9f7c212d0fabd2a0494","abstract_canon_sha256":"1ae2f7f93c7eff7b5b8e28688ff209dedbb37399b234261d23538dfe2309fb29"},"schema_version":"1.0"},"canonical_sha256":"0a03b09cccd6b04661860fba2df54a83b9e089dc7b80ace565ac35decdbbed41","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T03:51:13.830946Z","signature_b64":"2qg/UmAlyUWvb4VtQNr/7bGmmnn0J7ZDNJOnE650szwkf/OE0yrnNUroLIPGMYHoMSMoRK2R00ypmLoNmwL4AQ==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"0a03b09cccd6b04661860fba2df54a83b9e089dc7b80ace565ac35decdbbed41","last_reissued_at":"2026-05-18T03:51:13.830324Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T03:51:13.830324Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1206.6757","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T03:51:13Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"jRSOnGS9UH9q+dtu1tZsPjJm9ioqIigXFOFZGjy1tEIQruMVtX4CK894DVu6Vk7GNCf96fv8sszVm6voj3U4Aw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-24T14:17:33.952109Z"},"content_sha256":"38576c07f1ffb80d8c3dc30be77c3598f842edc504bdc0ff6b8faf5b63e5bfa1","schema_version":"1.0","event_id":"sha256:38576c07f1ffb80d8c3dc30be77c3598f842edc504bdc0ff6b8faf5b63e5bfa1"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2012:BIB3BHGM22YEMYMGB65C35KKQO","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Detection of Configuration Vulnerabilities in Distributed (Web) Environments","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.SE"],"primary_cat":"cs.CR","authors_text":"Henrik Plate, Matteo Maria Casalino, Michele Mangili, Serena Elisa Ponta","submitted_at":"2012-06-28T16:36:13Z","abstract_excerpt":"Many tools and libraries are readily available to build and operate distributed Web applications. While the setup of operational environments is comparatively easy, practice shows that their continuous secure operation is more difficult to achieve, many times resulting in vulnerable systems exposed to the Internet. Authenticated vulnerability scanners and validation tools represent a means to detect security vulnerabilities caused by missing patches or misconfiguration, but current approaches center much around the concepts of hosts and operating systems. This paper presents a language and an "},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1206.6757","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T03:51:13Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"CqX11EzppmJBErAdO52c+PnBxdibkbgsZk/f2flHYnuBQG2BxY2tf0KGBDdlk8WmqpmC6jabkiUeFFJptpbKDw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-24T14:17:33.952488Z"},"content_sha256":"6cdf76a05d47e7af5556e20eef41a4bcee8d954695579a6a54c1dba267cc661c","schema_version":"1.0","event_id":"sha256:6cdf76a05d47e7af5556e20eef41a4bcee8d954695579a6a54c1dba267cc661c"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/BIB3BHGM22YEMYMGB65C35KKQO/bundle.json","state_url":"https://pith.science/pith/BIB3BHGM22YEMYMGB65C35KKQO/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/BIB3BHGM22YEMYMGB65C35KKQO/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-24T14:17:33Z","links":{"resolver":"https://pith.science/pith/BIB3BHGM22YEMYMGB65C35KKQO","bundle":"https://pith.science/pith/BIB3BHGM22YEMYMGB65C35KKQO/bundle.json","state":"https://pith.science/pith/BIB3BHGM22YEMYMGB65C35KKQO/state.json","well_known_bundle":"https://pith.science/.well-known/pith/BIB3BHGM22YEMYMGB65C35KKQO/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2012:BIB3BHGM22YEMYMGB65C35KKQO","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"1ae2f7f93c7eff7b5b8e28688ff209dedbb37399b234261d23538dfe2309fb29","cross_cats_sorted":["cs.SE"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-06-28T16:36:13Z","title_canon_sha256":"2cc0773861ef9d2a01ba1b457a513add1c7926851048a9f7c212d0fabd2a0494"},"schema_version":"1.0","source":{"id":"1206.6757","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1206.6757","created_at":"2026-05-18T03:51:13Z"},{"alias_kind":"arxiv_version","alias_value":"1206.6757v2","created_at":"2026-05-18T03:51:13Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1206.6757","created_at":"2026-05-18T03:51:13Z"},{"alias_kind":"pith_short_12","alias_value":"BIB3BHGM22YE","created_at":"2026-05-18T12:27:01Z"},{"alias_kind":"pith_short_16","alias_value":"BIB3BHGM22YEMYMG","created_at":"2026-05-18T12:27:01Z"},{"alias_kind":"pith_short_8","alias_value":"BIB3BHGM","created_at":"2026-05-18T12:27:01Z"}],"graph_snapshots":[{"event_id":"sha256:6cdf76a05d47e7af5556e20eef41a4bcee8d954695579a6a54c1dba267cc661c","target":"graph","created_at":"2026-05-18T03:51:13Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Many tools and libraries are readily available to build and operate distributed Web applications. While the setup of operational environments is comparatively easy, practice shows that their continuous secure operation is more difficult to achieve, many times resulting in vulnerable systems exposed to the Internet. Authenticated vulnerability scanners and validation tools represent a means to detect security vulnerabilities caused by missing patches or misconfiguration, but current approaches center much around the concepts of hosts and operating systems. This paper presents a language and an ","authors_text":"Henrik Plate, Matteo Maria Casalino, Michele Mangili, Serena Elisa Ponta","cross_cats":["cs.SE"],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-06-28T16:36:13Z","title":"Detection of Configuration Vulnerabilities in Distributed (Web) Environments"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1206.6757","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:38576c07f1ffb80d8c3dc30be77c3598f842edc504bdc0ff6b8faf5b63e5bfa1","target":"record","created_at":"2026-05-18T03:51:13Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"1ae2f7f93c7eff7b5b8e28688ff209dedbb37399b234261d23538dfe2309fb29","cross_cats_sorted":["cs.SE"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-06-28T16:36:13Z","title_canon_sha256":"2cc0773861ef9d2a01ba1b457a513add1c7926851048a9f7c212d0fabd2a0494"},"schema_version":"1.0","source":{"id":"1206.6757","kind":"arxiv","version":2}},"canonical_sha256":"0a03b09cccd6b04661860fba2df54a83b9e089dc7b80ace565ac35decdbbed41","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"0a03b09cccd6b04661860fba2df54a83b9e089dc7b80ace565ac35decdbbed41","first_computed_at":"2026-05-18T03:51:13.830324Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T03:51:13.830324Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"2qg/UmAlyUWvb4VtQNr/7bGmmnn0J7ZDNJOnE650szwkf/OE0yrnNUroLIPGMYHoMSMoRK2R00ypmLoNmwL4AQ==","signature_status":"signed_v1","signed_at":"2026-05-18T03:51:13.830946Z","signed_message":"canonical_sha256_bytes"},"source_id":"1206.6757","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:38576c07f1ffb80d8c3dc30be77c3598f842edc504bdc0ff6b8faf5b63e5bfa1","sha256:6cdf76a05d47e7af5556e20eef41a4bcee8d954695579a6a54c1dba267cc661c"],"state_sha256":"008ce67ae9926b4bd483a772df713457d182417fe2c8f168f2043d0fda59cb99"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"nkDeH2FeOGkwr8fl8+zMl1PhIGQWt19mqr5KboRMnbmL+TfEtYJcESZ3SzbfnZVlOEH45TBg/nsMxiHG4D1WBA==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-24T14:17:33.954638Z","bundle_sha256":"af3ef99d694ed4a3ea6fb210e0ed593b35c5ee4214d1bc78d0c027b85dedac7b"}}