Skip to main content
Conference ProceedingsOPEN ACCESS

An information flow monitor-inlining compiler for securing a core of Javascript

IFIP Advances in Information and Communication Technology (2014) 428 278-292
DOI: 10.1007/978-3-642-55415-5_23
24Citations
Citations of this article
4Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Web application designers and users alike are interested in isolation properties for trusted JavaScript code in order to prevent confidential resources from being leaked to untrusted parties. Noninterference provides the mathematical foundation for reasoning precisely about the information flows that take place during the execution of a program. Due to the dynamicity of the language, research on mechanisms for enforcing noninterference in JavaScript has mostly focused on dynamic approaches. We present the first information flow monitor inlining compiler for a realistic core of JavaScript. We prove that the proposed compiler enforces termination-insensitive noninterference and we provide an implementation that illustrates its applicability.

Cite

CITATION STYLE

APA

Fragoso Santos, J., & Rezk, T. (2014). An information flow monitor-inlining compiler for securing a core of Javascript. In IFIP Advances in Information and Communication Technology (Vol. 428, pp. 278–292). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-642-55415-5_23

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free