Modern JavaScript engines that power websites and even full applications on the Web are driven by the need for an increasingly fast and snappy user experience. These engines use several complex and potentially error-prone mechanisms to optimize their performance. Unsurprisingly, the inevitable complexity results in a huge attack surface and various types of software vulnerabilities. On the defender’s side, fuzz testing has proven to be an invaluable tool for uncovering different kinds of memory safety violations. Although it is difficult to test interpreters and JIT compilers in an automated way, recent proposals for input generation based on grammars or target-specific intermediate representations helped uncovering many software faults. Ho...
© ACM, 2013. This is the author's version of the work. It is posted here by permission of ACM for yo...
Many widely-deployed modern programming systems use just-in-Time (JIT) compilers to improve performa...
JavaScript is a browser scripting language that allows developers to create sophisticated client-sid...
Since the dawn of the Internet, all of us have been swept up by the Niagara of information that fill...
We present an automated evolutionary fuzzing technique to find bugs in JavaScript interpreters. Fuzz...
Malicious JavaScript has become an important attack vector for software exploitation attacks and imp...
The current software ecosystem is exceptionally complex. A key defining feature of this complexity i...
Just-in-Time compilers offer substantial runtime performance benefits over traditional execution met...
International audienceJavaScript (JS) engines are virtual machines that execute JavaScript code. The...
Our computers, phones, and other smart devices are running a vast and ever increasing amount of soft...
Abstract Context. JavaScript is a popular programming language today with several implementations co...
Web browser is the most commonly used software to access the Internet. Any vulnerability in a popula...
Short paper - http://www.ntu.edu.sg/home/epnsugan/index_files/SSCI2013/index.htmlInternational audie...
Modern browsers such as Chrome and Edge deploy constant blinding to remove attacker-controlled ...
The Internet has an immense importance in our day to day life, but at the same time, it has become t...
© ACM, 2013. This is the author's version of the work. It is posted here by permission of ACM for yo...
Many widely-deployed modern programming systems use just-in-Time (JIT) compilers to improve performa...
JavaScript is a browser scripting language that allows developers to create sophisticated client-sid...
Since the dawn of the Internet, all of us have been swept up by the Niagara of information that fill...
We present an automated evolutionary fuzzing technique to find bugs in JavaScript interpreters. Fuzz...
Malicious JavaScript has become an important attack vector for software exploitation attacks and imp...
The current software ecosystem is exceptionally complex. A key defining feature of this complexity i...
Just-in-Time compilers offer substantial runtime performance benefits over traditional execution met...
International audienceJavaScript (JS) engines are virtual machines that execute JavaScript code. The...
Our computers, phones, and other smart devices are running a vast and ever increasing amount of soft...
Abstract Context. JavaScript is a popular programming language today with several implementations co...
Web browser is the most commonly used software to access the Internet. Any vulnerability in a popula...
Short paper - http://www.ntu.edu.sg/home/epnsugan/index_files/SSCI2013/index.htmlInternational audie...
Modern browsers such as Chrome and Edge deploy constant blinding to remove attacker-controlled ...
The Internet has an immense importance in our day to day life, but at the same time, it has become t...
© ACM, 2013. This is the author's version of the work. It is posted here by permission of ACM for yo...
Many widely-deployed modern programming systems use just-in-Time (JIT) compilers to improve performa...
JavaScript is a browser scripting language that allows developers to create sophisticated client-sid...