Run-Time Enforcement of Secure JavaScript Subsets
نویسندگان
چکیده
Web sites that incorporate untrusted content may usebrowseror language-based methods to keep such contentfrom maliciously altering pages, stealing sensitive infor-mation, or causing other harm. We use accepted meth-ods from the study of programming languages to inves-tigate language-based methods for filtering and rewritingJavaScript code, using Facebook FBJS as a motivating ex-ample. We explain the core problems, provide JavaScriptcode that enforces provable isolation properties at run-time,and compare our results with the techniques used in FBJS.
منابع مشابه
Preventing Capability Leaks in Secure JavaScript Subsets
Publishers wish to sandbox third-party advertisements to protect themselves from malicious advertisements. One promising approach, used by ADsafe, Dojo Secure, and Jacaranda, sandboxes advertisements by statically verifying that their JavaScript conforms to a safe subset of the language. These systems blacklist known dangerous properties that would let advertisements escape the sandbox. Unfortu...
متن کاملSurvey on JavaScript security policies and their enforcement mechanisms in a web browser
We observe a rapid growth of web-based applications every day. These applications are executed in the web browser, where they interact with a variety of information belonging to the user. The dynamism of web applications is provided by the use of web scripts, and in particular JavaScript, that accesses this information through a browserprovided set of APIs. Unfortunately, some of the scripts us...
متن کاملOn-the-Fly Inlining of Dynamic Dependency Monitors for Secure Information Flow
Information flow analysis (IFA) in the setting of programming languages is steadily veering towards the adoption of dynamic techniques. This is particularly attractive for scripting languages for web applications programming. A common manifestation of dynamic techniques is that of run-time monitors, which should block program execution in the presence of an insecure run. Significant efforts are...
متن کاملLightweight Enforcement of Fine-Grained Security Policies for Untrusted Software
This thesis presents an innovative approach to implementing a security enforcement mechanism in the contexts of untrusted software systems, where a piece of code in a base system may come from an untrusted third party. The key point of the approach is that it is lightweight in the sense that it does not need an additional policy language or extra tool. Instead, the approach uses the aspectorien...
متن کاملA Two-Tier Sandbox Architecture to Enforce Modular Fine-Grained Security Policies for Untrusted JavaScript
Existing approaches to providing security for untrusted JavaScript include isolation of capabilities – a.k.a. sandboxing. Features of the JavaScript language conspire to make this nontrivial, and isolation normally requires complex filtering, transforming and wrapping untrusted code to restrict the code to a manageable subset. The latest JavaScript specification (ECMAScript 5) has been modified...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2009