Add to ORKGAbstract—Several new browser primitives have been pro-posed to meet the demands of application interactivity while enabling security. To investigate whether applications consistently use these primitives safely in practice, we study the real-world usage of two client-side primitives, namely postMessage and HTML5’s client-side database storage. We examine new purely client-side communication protocols layered on postMessage (Facebook Connect and Google Friend Connect) and several real-world web applications (including Gmail, Buzz, Maps and others) which use client-side storage abstractions. We find that, in practice, these abstractions are used insecurely, which leads to severe vulnerabilities and can increase the attack surface for web appl...
The Web has evolved to support sophisticated web applications. These web applications are exposed to...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
Over the past 20 years Web browsers have changed considerably from being a simple text display to no...
Abstract — Web browsers have evolved from a single-principal platform on which users browse one site...
textToday's systems abstract the implementation details of common services such as secure client-ser...
textToday's systems abstract the implementation details of common services such as secure client-ser...
Building secure web applications is notoriously difficult. The growing importance of JavaScript as a...
Over the past 20 years web browsers have changed considerably from being a simple text display to no...
over the past 20 years web browsers have changed considerably from being a simple text display to no...
HTTP headers are commonly used to establish web communications, and some of them are relevant for se...
Modern web applications need reliable communication between the servers and the clients in order to ...
Implementation errors are commonly found in modern web applications. They can be caused by a multitu...
As the web keeps on expanding, so does the interest of attackers whoseek to exploit users and servic...
Today, any non-trivial application requires the ability to communicate over the network. Providing a...
The Web has evolved to support sophisticated web applications. These web applications are exposed to...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
Over the past 20 years Web browsers have changed considerably from being a simple text display to no...
Abstract — Web browsers have evolved from a single-principal platform on which users browse one site...
textToday's systems abstract the implementation details of common services such as secure client-ser...
textToday's systems abstract the implementation details of common services such as secure client-ser...
Building secure web applications is notoriously difficult. The growing importance of JavaScript as a...
Over the past 20 years web browsers have changed considerably from being a simple text display to no...
over the past 20 years web browsers have changed considerably from being a simple text display to no...
HTTP headers are commonly used to establish web communications, and some of them are relevant for se...
Modern web applications need reliable communication between the servers and the clients in order to ...
Implementation errors are commonly found in modern web applications. They can be caused by a multitu...
As the web keeps on expanding, so does the interest of attackers whoseek to exploit users and servic...
Today, any non-trivial application requires the ability to communicate over the network. Providing a...
The Web has evolved to support sophisticated web applications. These web applications are exposed to...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...