SCOPUS 정보 검색 플랫폼 - 논문 보기

메뉴 건너뛰기

Proceedings - IEEE Computer Security Foundations Symposium

Volumn , Issue , 2009, Pages 77-91

Language-based isolation of untrusted javascript

(2) Maffeis, Sergio a Taly, Ankur b

a IMPERIAL COLLEGE LONDON (United Kingdom)

b Stanford University (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CORE PROBLEMS; FACEBOOK; JAVASCRIPT; OPERATIONAL SEMANTICS; SENSITIVE INFORMATIONS;

HIGH LEVEL LANGUAGES; SECURITY SYSTEMS;

LINGUISTICS;

EID: 70350525212 PISSN: 19401434 EISSN: None Source Type: Conference Proceeding
DOI: 10.1109/CSF.2009.11 Document Type: Conference Paper

Times cited : (73)

References (29)

1
- 47249101556
- Provably correct runtime monitoring
- Proc. of FM 2008, Springer
- I. Aktug, M. Dam, and D. Gurov, "Provably correct runtime monitoring," in Proc. of FM 2008, ser. LNCS, vol. 5014. Springer, 2008, pp. 262-277.
- (2008) ser. LNCS , vol.5014 , pp. 262-277
- Aktug, I.¹ Dam, M.² Gurov, D.³

2
- 33846543741
- Towards type inference for JavaScript
- C. Anderson, P. Giannini, and S. Drossopoulou, "Towards type inference for JavaScript," in Proc. of ECOOP'05, 2005, pp. 429-452.
- (2005) Proc. of ECOOP'05 , pp. 429-452
- Anderson, C.¹ Giannini, P.² Drossopoulou, S.³

3
- 73149094454
- Securing browser frame communication
- A. Barth, C. Jackson, and J. Mitchell, "Securing browser frame communication," in Proc. of USENIX Security, 2008.
- (2008) Proc. of USENIX Security
- Barth, A.¹ Jackson, C.² Mitchell, J.³

4
- 70350528941
- G. Caja Team, Google-Caja: A source-to-source translator for securing JavaScript-based web, http://code.google.com/p/google-caja/.
- G. Caja Team, "Google-Caja: A source-to-source translator for securing JavaScript-based web," http://code.google.com/p/google-caja/.

5
- 70350407444
- D. Crockford, "ADsafe: Making JavaScript safe for advertising," http://www.adsafe.org/, 2008.
- (2008) ADsafe: Making JavaScript safe for advertising
- Crockford, D.¹

6
- 70350554358
- -, ADsafe: Making JavaScript safe for advertising (2007 version), http://web.archive.org/web/20071225101246/http://www.adsafe.org/ , 2007.
- -, "ADsafe: Making JavaScript safe for advertising (2007 version)," http://web.archive.org/web/20071225101246/http://www.adsafe.org/ , 2007.

7
- 10644230615
- ECMA International
- ECMA International, "ECMAScript language specification. stardard ECMA-262, 3rd Edition," http://www.ecma-international.org/publications/ files/ECMA-ST/Ecma-262.pdf, 1999.
- (1999) ECMAScript language specification. stardard ECMA-262, 3rd Edition

8
- 84870449555
- at ten years
- B. Eich, "JavaScript at ten years," http://www.mozilla.org/js/ language/ICFP-Keynote.ppt.
- JavaScript
- Eich, B.¹

9
- 62949235946
- Talking to strangers without taking their candy: Isolating proxied content
- ACM
- A. Felt, P. Hooimeijer, D. Evans, and W. Weimer, "Talking to strangers without taking their candy: isolating proxied content," in Proc. of SocialNets '08. ACM, 2008.
- (2008) Proc. of SocialNets '08
- Felt, A.¹ Hooimeijer, P.² Evans, D.³ Weimer, W.⁴

10
- 0003889134
- O'Reilly
- D. Flanagan, JavaScript: The Definitive Guide. O'Reilly, 2006.
- (2006) JavaScript: The Definitive Guide
- Flanagan, D.¹

11
- 70350393780
- Recency types for dynamically-typed, object-based languages
- P. Heidegger and P. Thiemann, "Recency types for dynamically-typed, object-based languages," Proc. of FOOL'09, 2009.
- (2009) Proc. of FOOL'09
- Heidegger, P.¹ Thiemann, P.²

12
- 77952327855
- Lightweight self protecting JavaScript
- ACM Press
- P. H. Phung, D. Sands, and A. Chudnov, "Lightweight self protecting JavaScript," in Proc. of ASIACCS 2009. ACM Press, 2009.
- (2009) Proc. of ASIACCS 2009
- Phung, P.H.¹ Sands, D.² Chudnov, A.³

13
- 70350537320
- Gatekeeper: Mostly static enforcement of security and reliability policies for JavaScript code
- MSR-TR, Feb
- B. Livshits and S. Guarnieri, "Gatekeeper: Mostly static enforcement of security and reliability policies for JavaScript code," MSR-TR-2009-16, Feb. 2009.
- (1916) , pp. 2009
- Livshits, B.¹ Guarnieri, S.²

14
- 70350550405
- S. Maffeis, J. Mitchell, and A. Taly, "Complete ECMA 262-3 operational semantics," http://jssec.net/semantics/.
- Complete ECMA 262-3 operational semantics
- Maffeis, S.¹ Mitchell, J.² Taly, A.³

15
- 58549113236
- An operational semantics for JavaScript
- Proc. of APLAS'08
- -, "An operational semantics for JavaScript," in Proc. of APLAS'08, ser. LNCS, vol. 5356, 2008, pp. 307-325
- (2008) ser. LNCS , vol.5356 , pp. 307-325
- Maffeis, S.¹ Mitchell, J.² Taly, A.³

16
- 70350557557
- Dep. of Computing, Imperial College London
- See also:, Technical Report DTR08-13, 2008
- See also: Dep. of Computing, Imperial College London, Technical Report DTR08-13, 2008.

17
- 58549113236
- An operational semantics for JavaScript
- Proc. of APLAS'08, Springer Verlag, Dec
- -, "An operational semantics for JavaScript," in Proc. of APLAS'08, ser. LNCS, vol. 5356. Springer Verlag, Dec. 2008, pp. 307-325.
- (2008) ser. LNCS , vol.5356 , pp. 307-325

18
- 70350544084
- Language-based isolation of untrusted JavaScript
- Dep. of Computing, Imperial College London, Technical Report DTR09-3
- -, "Language-based isolation of untrusted JavaScript," Dep. of Computing, Imperial College London, Technical Report DTR09-3, 2009.
- (2009)

19
- 70350561993
- Run-time enforcement of secure javascript subsets
- IEEE
- -, "Run-time enforcement of secure javascript subsets," in Proc of W2SP'09. IEEE, 2009.
- (2009) Proc of W2SP'09

20
- 70350530581
- Prototype Core Team
- Prototype Core Team, "Prototype JavaScript framework: Easy Ajax and DOM manipulation for dynamic web applications," http://www.prototypejs.org.
- Prototype JavaScript framework: Easy Ajax and DOM manipulation for dynamic web applications

21
- 34848907433
- BrowserShield: Vulnerability-driven filtering of Dynamic HTML
- C. Reis, J. Dunagan, H. Wang, O. Dubrovsky, and S. Esmeir, "BrowserShield: Vulnerability-driven filtering of Dynamic HTML," ACM Transactions on the Web, vol. 1, no. 3, 2007.
- (2007) ACM Transactions on the Web , vol.1 , Issue.3
- Reis, C.¹ Dunagan, J.² Wang, H.³ Dubrovsky, O.⁴ Esmeir, S.⁵

22
- 70350541005
- Tight enforcement of flexible information-release policies for dynamic languages
- A. Sabelfeld and A. Askarov, "Tight enforcement of flexible information-release policies for dynamic languages," Proc. of PCC'08, 2008.
- (2008) Proc. of PCC'08
- Sabelfeld, A.¹ Askarov, A.²

23
- 84886287589
- The FaceBook Team
- The FaceBook Team, "FaceBook," http://www.facebook. com/.
- FaceBook

24
- 70350528938
- -, "FBJS," http://wiki.developers.facebook.com/index. php/FBJS.
- FBJS

25
- 70350537319
- -, "FBML," http://wiki.developers.facebook.com/index. php/FBML.
- FBML

26
- 24644446108
- Towards a type system for analyzing javascript programs
- Proc. of ESOP'05
- P. Thiemann, "Towards a type system for analyzing javascript programs," in Proc. of ESOP'05, ser. LNCS, vol. 3444, 2005, pp. 408-422.
- (2005) ser. LNCS , vol.3444 , pp. 408-422
- Thiemann, P.¹

27
- 33745385182
- A type safe DOM API
- -, "A type safe DOM API," in Proc. of DBPL'05, 2005, pp. 169-183.
- (2005) Proc. of DBPL'05 , pp. 169-183
- Thiemann, P.¹

28
- 70350525474
- Mashup component isolation via server-side analysis and instrumentation
- K. Vikram and M. Steiner, "Mashup component isolation via server-side analysis and instrumentation," in Proc. of W2SP'08, 2008.
- (2008) Proc. of W2SP'08
- Vikram, K.¹ Steiner, M.²

29
- 34548253921
- JavaScript instrumentation for browser security
- D. Yu, A. Chander, N. Islam, and I. Serikov, "JavaScript instrumentation for browser security," in Proc. of POPL'07, 2007, pp. 237-249.
- (2007) Proc. of POPL'07 , pp. 237-249
- Yu, D.¹ Chander, A.² Islam, N.³ Serikov, I.⁴

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.