Výsledky vyhledávání - JavaScript sandbox

JSCSP: A Novel Policy-Based XSS Defense Mechanism for Browsers Autor Xu, Guangquan, Xie, Xiaofei, Huang, Shuhan, Zhang, Jun, Pan, Lei, Lou, Wei, Liang, Kaitai

“… To explore the scalability of CSP, in this article, we propose JavaScript based CSP (JSCSP), which is able to support most of real-world browsers but also to generate security policies automatically…”
Získat plný text

Securing IoT devices using JavaScript based sandbox Autor Sahu, Ayush, Singh, Ashima

“… In this paper, we try to address the security issue by proposing JavaScript sandbox as a method to execute IoT program…”
Získat plný text

JavaScript malware behaviour analysis and detection using sandbox assisted ensemble model Autor Kishore, Pushkar, Barisal, Swadhin Kumar, Prasad Mohapatra, Durga

“… In this paper, we propose a novel technique for analysing and detecting JavaScript using sandbox assisted ensemble model…”
Získat plný text

Fakeium: A dynamic execution environment for JavaScript program analysis Autor Moreno, José Miguel, Vallina-Rodriguez, Narseo, Tapiador, Juan

“…The JavaScript programming language, which began as a simple scripting language for the Web, has become ubiquitous, spanning desktop, mobile, and server applications…”
Získat plný text

The Spy in the Sandbox -- Practical Cache Attacks in Javascript Autor Yossef Oren, Kemerlis, Vasileios P, Sethumadhavan, Simha, Keromytis, Angelos D

“…We present the first micro-architectural side-channel attack which runs entirely in the browser. In contrast to other works in this genre, this attack does not…”
Získat plný text

SoK: In Search of Lost Time: A Review of JavaScript Timers in Browsers Autor Rokicki, Thomas, Maurice, Clementine, Laperdrix, Pierre

“… They rely on subtle timing differences to infer information that should not be available inside of the JavaScript sandbox…”
Získat plný text

Next-generation antivirus for JavaScript malware detection based on dynamic features Autor de Lima, Sidney M. L., Souza, Danilo M., Pinheiro, Ricardo P., Silva, Sthéfano H. M. T., Lopes, Petrônio G., de Lima, Rafael D. T., de Oliveira, Jemerson R., Monteiro, Thyago de A., Fernandes, Sérgio M. M., Albuquerque, Edison de Q., da Silva, Washington W. A., dos Santos, Wellington P.

“…There are many kinds of Exploit Kits, each one being built with several vulnerabilities, but almost all of them are written in JavaScript…”
Získat plný text

A framework for leaking secrets to past instructions Autor Fustos, Jacob, Bechtel, Michael, Yun, Heechul

“…Transient execution attacks use microarchitectural covert channels to leak secrets that should not have been accessible during logical program execution…”
Získat plný text

Detection, Diagnosis and Mitigation of Malicious Javascript with Enriched Javascript Executions Autor Hu, Xunchao

“…Malicious JavaScript has become an important attack vector for software exploitation attacks and imposes a severe threat to computer security…”
Získat plný text

Eloquent JavaScript: A Modern Introduction to Programming Autor Haverbeke, Marijn

“…JavaScript lies at the heart of almost every modern web application, from social apps to the newest browser-based games…”
Získat plný text

Vulnerabilities in Android webview objects: Still not the end Autor El-Zawawy, Mohamed A., Losiouk, Eleonora, Conti, Mauro

“… Thus, while rendering web content a hybrid app can execute malicious Javascript code that can access the sensitive data on the device, bypassing the sandbox model usually adopted by standalone browsers…”
Získat plný text

Dynamic Analysis for JavaScript Code Autor Gong, Liang

“… Our extension of Jalangi intercepts and rewrites JavaScript code during network transmission. We also develop NodeSec, which is a dynamic instrumentation framework that traces and sandboxes the interactions…”
Získat plný text

ADsafety: Type-Based Verification of JavaScript Sandboxing Autor Joe Gibbs Politz, Eliopoulos, Spiridon, Guha, Arjun, Krishnamurthi, Shriram

“… These sources must be protected from one another, which requires robust sandboxing. The many entry-points of sandboxes and the subtleties of JavaScript demand robust verification of the actual sandbox source…”
Získat plný text

Hacky Racers: Exploiting Instruction-Level Parallelism to Generate Stealthy Fine-Grained Timers Autor Xiao, Haocheng, Ainsworth, Sam

“…, even in the presence of highly restricted JavaScript sandbox environments. While such environments try to mitigate timing side channels by reducing timer precision and removing language features such as \textit{SharedArrayBuffer…”
Získat plný text

Exploiting ML algorithms for Efficient Detection and Prevention of JavaScript-XSS Attacks in Android Based Hybrid Applications Autor Khalid, Usama, Abdullah, Muhammad, Inayat, Kashif

“… WebView is an important component in hybrid mobile applications which used to implements a sandbox mechanism to protect the local resources of smartphone devices from un-authorized access of JavaScript…”
Získat plný text

Transaction-based Sandboxing for JavaScript Autor Keil, Matthias, Thiemann, Peter

“… This paper presents design and implementation of DecentJS, a language-embedded sandbox for full JavaScript…”
Získat plný text

PDF Malicious Indicators Extraction Technique Based on Improved Symbolic Execution Autor Song, Enzhou, Hu, Tao, Yi, Peng, Wang, Wenbo

“…The malicious PDF document is a common attack method used by APT organizations.Analyzing extracted indicators of embedded JavaScript code is an important means to determine the maliciousness…”
Získat plný text

TreatJS: Higher-Order Contracts for JavaScript Autor Keil, Matthias, Thiemann, Peter

“…TreatJS is a language embedded, higher-order contract system for JavaScript which enforces contracts by run-time monitoring…”
Získat plný text

TreatJS: Higher-Order Contracts for JavaScript (Artifact) Autor Keil, Matthias, Thiemann, Peter

“…TreatJS is a language embedded, higher-order contract system for JavaScript which enforces contracts by run-time monitoring…”
Získat plný text

Adobe Zero-Day Attack Bypasses Sandbox Autor Schwartz, Mathew J

Získat plný text