Search Results - JavaScript Security

CSRF protection in JavaScript frameworks and the security of JavaScript applications by Peguero, Ksenia, Cheng, Xiuzhen

“…With JavaScript being the most popular programming language on the web, several new JavaScript frameworks are released every year…”
Get full text

JAVASCRIPT SECURITY USING CRYPTOGRAPHIC HASH FUNCTIONS by Rahimova, Irada, Qubadova, Firangiz, Asker zade, Barayat, Pohasii, Serhii

“…The subject of this research is the development of methods of protection against attacks on third-party JavaScript and the document object model (DOM…”
Get full text

A Server-Side JavaScript Security Architecture for Secure Integration of Third-Party Libraries by Piessens, Frank, Massacci, Fabio, De Groef, Willem, van Ginkel, Neline

“…) compromise an entire server. In order to support the secure integration of libraries, we developed NODESENTRY, the first security architecture for server-side JavaScript…”
Get full text

WebViewJSdetect: Javascript vulnerability detection in android webview via coverage-guided thread-adaptive concurrent abstract interpretation by Yuan, Zhanhui, Yang, Zhi, Tan, Jinglei, Zhang, Hongqi

“… While these JavaScript codes provide enhanced functionalities, they also introduce potential security risks, such as unauthorized API access and privilege escalation…”
Get full text

If-transpiler: Inlining of hybrid flow-sensitive security monitor for JavaScript by Sayed, Bassam, Traoré, Issa, Abdelhalim, Amany

“… This paper presents a framework that inlines a hybrid flow-sensitive security monitor for JavaScript…”
Get full text

Accelerating Startup Time of React Native Applications by Compiling JavaScript Ahead‐Of‐Time Under Network Communication Security by Li, Ziye, Zhao, Ruiqi, Zhang, Hanke, Shi, Xiaohua

“…React Native is a popular framework for building cross‐platform mobile applications that takes advantage of the popularity of JavaScript and the React framework…”
Get full text

Jasmine: Scale up JavaScript Static Security Analysis with Computation-based Semantic Explanation by Xiao, Feng, Su, Zhongfu, Yang, Guangliang, Lee, Wenke

“… However, without actual code execution, they often suffer serious precision issues and may even miss serious vulnerabilities, especially when facing modern JavaScript applications characterized…”
Get full text

Automated Analysis of Security-Critical JavaScript APIs by Taly, A., Erlingsson, Mitchell, J. C., Miller, M. S., Nagra, J.

“…JavaScript is widely used to provide client-side functionality in Web applications…”
Get full text

Deobfuscation of JavaScript code and identification of security weaknesses through large language models by Benedetti, Giacomo, Caviglione, Luca, Comito, Carmela, Falcone, Alberto, Guarascio, Massimo

“… In this work, we evaluate the effectiveness of deobfuscating JavaScript code through an LLM-based pipeline…”
Get full text

ConScript: Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser by Meyerovich, Leo A, Livshits, Benjamin

“…Much of the power of modern Web comes from the ability of a Web page to combine content and JavaScript code from disparate servers on the same page…”
Get full text

Making JavaScript Render Decisions to Optimize Security-Oriented Crawler Process by Aktas, Onur, Can, Ahmet Burak

“… Addressing this crucial gap, our study introduces an innovative approach to predict the necessity of JavaScript rendering, thereby enhancing the effectiveness and efficiency of security-oriented web crawlers…”
Get full text

Characterizing JavaScript Security Code Smells by Kambhampati, Vikas, Nehaz Hussain Mohammed, Amin Milani Fard

“… Due to the widespread usage of JavaScript, code security is an important matter. While JavaScript code smells and detection techniques have been studied in the past, current work on security smells for JavaScript is scarce…”
Get full text

SecBench.js: An Executable Security Benchmark Suite for Server-Side JavaScript by Bhuiyan, Masudul Hasan Masud, Parthasarathy, Adithya Srinivas, Vasilakis, Nikos, Pradel, Michael, Staicu, Cristian-Alexandru

“… In recent years, various security threats to packages published on npm have been reported, including vulnerabilities that affect millions of users…”
Get full text

Impact of Frameworks on Security of JavaScript Applications by Peguero, Ksenia

“… At the same time, the security of JavaScript applications leaves much to be desired, as cross-site scripting, remote code execution, authorization bypasses, and other vulnerabilities are reported daily…”
Get full text

Electrolint and security of electron applications by Peguero, Ksenia, Cheng, Xiuzhen

“…JavaScript applications today are not limited to just client-side web applications and server-side code powered by Node.js…”
Get full text

Understanding JavaScript Vulnerabilities in Large Real-World Android Applications by Song, Wei, Huang, Qingqing, Huang, Jeff

“…JavaScript-related vulnerabilities are becoming a major security threat to hybrid mobile applications…”
Get full text

Survey on JavaScript security policies and their enforcement mechanisms in a web browser by Bielova, Nataliia

“… The dynamism of web applications is provided by the use of web scripts, and in particular JavaScript, that accesses this information through a browser- provided set of APIs…”
Get full text

Empirical study of the dynamic behavior of JavaScript objects by Wei, Shiyi, Xhakaj, Franceska, Ryder, Barbara G.

“… The dynamic characteristics of JavaScript pose software engineering challenges such as program understanding and security…”
Get full text

Quantifying Security Issues in Reusable JavaScript Actions in GitHub Workflows by Delicheh, Hassan Onsori, Decan, Alexandre, Mens, Tom

“… The majority of those Actions are developed in JavaScript and depend on packages distributed through the npm package manager…”
Get full text

ZipAST: Enhancing malicious JavaScript detection with sequence compression by Chen, Zixian, Wang, Weiping, Qin, Yan, Zhang, Shigeng

“…JavaScript is a key component of websites and greatly enhances web page functionality…”
Get full text