A lattice-based approach to mashup security

36Citations
Citations of this article
66Readers
Mendeley users who have this article in their library.
Get full text

Abstract

A web mashup is a web application that integrates content from different providers to create a new service, not offered by the content providers. As mashups grow in popularity, the problem of securing information flow between mashup components becomes increasingly important. This paper presents a security lattice-based approach to mashup security, where the origins of the different components of the mashup are used as levels in the security lattice. Declassification allows controlled information release between the components. We formalize a notion of composite delimited release policy and provide considerations for practical (static as well as runtime) enforcement of mashup information-flow security policies in a web browser. © 2010 ACM.

Cite

CITATION STYLE

APA

Magazinius, J., Askarov, A., & Sabelfeld, A. (2010). A lattice-based approach to mashup security. In Proceedings of the 5th International Symposium on Information, Computer and Communications Security, ASIACCS 2010 (pp. 15–23). https://doi.org/10.1145/1755688.1755691

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free