Cross-Origin JavaScript Capability Leaks: Detection, Exploitation, and Defense

Cross-Origin JavaScript Capability Leaks: Detection, Exploitation, and Defense

Cached

Download Links

by Adam Barth , Joel Weinberger , Dawn Song

Citations:

Documents Related by Co-Citation

47	Secure web browsing with the OP web browser – Chris Grier, Shuo Tang, Samuel T. King - 2008
33	The Multi-Principal OS Construction of the Gazelle Web Browser – Helen J. Wang, Chris Grier, Er Moshchuk, Samuel T. King, Piali Choudhury, Herman Venter
25	Protecting Browsers from Extension Vulnerabilities – Adam Barth, Adrienne Porter Felt, Prateek Saxena, Aaron Boodman
52	Native Client: A Sandbox for Portable, Untrusted x86 Native Code – Bennet Yee, David Sehr, Gregory Dardyk, J. Bradley Chen, Robert Muth, Tavis Orm, Shiki Okasaka, Neha Narula, Nicholas Fullagar, Google Inc - 2009
7	How I Learned to Stop Worrying and Love Plugins – Chris Grier, Samuel T. King, Dan S. Wallach - 2009
33	Securing frame communication in browsers – Adam Barth, Collin Jackson, John C. Mitchell - 2008
29	Leveraging Legacy Code to Deploy Desktop Applications on the Web – John R. Douceur, Jeremy Elson, Jon Howell, Jacob R. Lorch
19	An Analysis of Browser Domain-Isolation Bugs and A Light-Weight Transparent Defense Mechanism – Shuo Chen
18	Secure Content Sniffing for Web Browsers, or How to Stop Papers from Reviewing Themselves – Adam Barth, Juan Caballero, Dawn Song
50	Robust Defenses for Cross-Site Request Forgery – Adam Barth, et al. - 2008
42	Behavior-based spyware detection – Engin Kirda, Christopher Kruegel, Greg Banks, Giovanni Vigna, Richard A. Kemmerer - 2006
32	Protecting browsers from DNS rebinding attacks – Collin Jackson, Adam Barth, Andrew Bortz, Weidong Shao, Dan Boneh - 2007
12	OMash: enabling secure web mashups via object abstractions – Steven Crites, Francis Hsu, Hao Chen - 2008
6	Enhancing web browser security against malware extensions – M T Louw, J S Lim, V N Venkatakrishnan
7	Object views: Fine-grained sharing in browsers – Leo A. Meyerovich, A. Porter Felt, Mark S. Miller, Google Inc - 2010
13	Analyzing Information Flow in JavaScript-based Browser Extensions – Mohan Dhawan, Vinod Ganapathy
98	Software Engineering for Security: a Roadmap – Premkumar T. Devanbu, Stuart Stubblebine - 2000
416	Pin: building customized program analysis tools with dynamic instrumentation – Chi-keung Luk, Robert Cohn, Robert Muth, Harish Patil, Artur Klauser, Geoff Lowney, Steven Wallace, Vijay Janapa, Reddi Kim Hazelwood - 2005
40	Differential testing for software – William M Mckeeman - 1998