Add to ORKGThe goal of this work was to apply lightweight formal methods to the study of the security of the JavaScript language. Previous work has shown that lightweight formal methods present a new approach to the study of security in the context of the Java Virtual Machine (JVM). The current work has attempted to codify best current practices in the form of a security model for JavaScript. Such a model is a necessary component in analyzing browser actions for vulnerabilities, but it is not sufficient. It is also required to capture actual browser event traces and incorporate these into the model. The work described herein demonstrates that it is (a) possible to construct a model for JavaScript security that captures important properties of current ...
International audienceWe present new attacks and robust countermeasures for security-sensitive compo...
International audienceIn this position paper we argue that aspects are well-suited to describe and i...
Securing JavaScript in the browser is an open and challenging problem. Code from pervasive third-par...
We present a method to intercept JavaScript built-in functions with security policies in order to co...
In the last few years, many security researchers proposed to endow the web platform with more rigoro...
Building secure web applications is notoriously difficult. The growing importance of JavaScript as a...
It is well recognized that JavaScript can be exploited to launch browser-based security attacks. We ...
International audienceWe observe a rapid growth of web-based applications every day. These applicati...
JavaScript drives the evolution of the web into a powerful application platform. Increasingly, web a...
This paper introduces a method to control JavaScript execution. The aim is to prevent or modify inap...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
JavaScript has become a central technology of the web, but it is also the source of many security pr...
JavaScript has evolved from a simple language intended to give web browsers basic hinteraction into ...
Approaches for safe execution of JavaScript on web pages have been a topic of recent research intere...
Abstract—A typical Web 2.0 application usually includes JavaScript from various sources with differe...
International audienceWe present new attacks and robust countermeasures for security-sensitive compo...
International audienceIn this position paper we argue that aspects are well-suited to describe and i...
Securing JavaScript in the browser is an open and challenging problem. Code from pervasive third-par...
We present a method to intercept JavaScript built-in functions with security policies in order to co...
In the last few years, many security researchers proposed to endow the web platform with more rigoro...
Building secure web applications is notoriously difficult. The growing importance of JavaScript as a...
It is well recognized that JavaScript can be exploited to launch browser-based security attacks. We ...
International audienceWe observe a rapid growth of web-based applications every day. These applicati...
JavaScript drives the evolution of the web into a powerful application platform. Increasingly, web a...
This paper introduces a method to control JavaScript execution. The aim is to prevent or modify inap...
Web applications are the most important gateway to the Internet. Billions of users are relying on th...
JavaScript has become a central technology of the web, but it is also the source of many security pr...
JavaScript has evolved from a simple language intended to give web browsers basic hinteraction into ...
Approaches for safe execution of JavaScript on web pages have been a topic of recent research intere...
Abstract—A typical Web 2.0 application usually includes JavaScript from various sources with differe...
International audienceWe present new attacks and robust countermeasures for security-sensitive compo...
International audienceIn this position paper we argue that aspects are well-suited to describe and i...
Securing JavaScript in the browser is an open and challenging problem. Code from pervasive third-par...