Skip to main content
Conference Proceedings

Safe wrappers and sane policies for self protecting JavaScript

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2012) 7127 LNCS 239-255
DOI: 10.1007/978-3-642-27937-9_17
14Citations
Citations of this article
30Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Phung et al (ASIACCS'09) describe a method for wrapping built-in functions of JavaScript programs in order to enforce security policies. The method is appealing because it requires neither deep transformation of the code nor browser modification. Unfortunately the implementation outlined suffers from a range of vulnerabilities, and policy construction is restrictive and error prone. In this paper we address these issues to provide a systematic way to avoid the identified vulnerabilities, and make it easier for the policy writer to construct declarative policies - i.e. policies upon which attacker code has no side effects. © 2012 Springer-Verlag.

Cite

CITATION STYLE

APA

Magazinius, J., Phung, P. H., & Sands, D. (2012). Safe wrappers and sane policies for self protecting JavaScript. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7127 LNCS, pp. 239–255). https://doi.org/10.1007/978-3-642-27937-9_17

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free