GUARDIA: specification and enforcement of javascript security policies without VM modifications

Angel Luis Scull Pupo; Jens Nicolay; Elisa Gonzalez Boix

doi:10.1145/3237009.3237025

GUARDIA: specification and enforcement of javascript security policies without VM modifications

Angel Luis Scull Pupo, Jens Nicolay, Elisa Gonzalez Boix

Research output: Chapter in Book/Report/Conference proceeding › Conference paper

3 Citations (Scopus)

271 Downloads (Pure)

Abstract

The complex architecture of browser technologies and dynamic characteristics of JavaScript make it difficult to ensure security in client-side web applications. Browser-level security policies alone are not sufficient because it is difficult to apply them correctly and they can be bypassed. As a result, they need to be completed by application-level security policies.

In this paper, we survey existing solutions for specifying and enforcing application-level security policies for client-side web applications, and distill a number of desirable features. Based on these features we developed Guardia, a framework for declaratively specifying and dynamically enforcing application-level security policies for JavaScript web applications without requiring VM modifications. We describe Guardia enforcement mechanism by means of JavaScript reflection with respect to three important security properties (transparency, tamper-proofness, and completeness). We also use Guardia to specify and deploy 12 access control policies discussed in related work in three experimental applications that are representative of real-world applications. Our experiments indicate that Guardia is correct, transparent, and tamper-proof, while only incurring a reasonable runtime overhead.

Original language	English
Title of host publication	Proceedings of the 15th International Conference on Managed Languages & Runtimes
Publisher	Association for Computing Machinery (ACM)
Number of pages	15
ISBN (Electronic)	978-1-4503-6424-9
DOIs	https://doi.org/10.1145/3237009.3237025
Publication status	Published - 12 Sept 2018
Event	15th International Conference on Managed Languages & Runtimes - Johannes Kepler University Linz, Linz, Austria Duration: 11 Sept 2018 → 13 Sept 2018 http://ssw.jku.at/manlang18/

Conference

Conference	15th International Conference on Managed Languages & Runtimes
Abbreviated title	ManLang '18
Country/Territory	Austria
City	Linz
Period	11/09/18 → 13/09/18
Internet address	http://ssw.jku.at/manlang18/

Keywords

DSL
JavaScript
Language design
Reflection
Runtime Enforcement
Security Policy
Web Security

Access to Document

10.1145/3237009.3237025

CameraReadyFinal published version, 1.29 MBLicence: Unspecified

Handle.net

Persistent link

Cite this

@inproceedings{c817e2f7d05046959458424f7354c7c6,

title = "GUARDIA: specification and enforcement of javascript security policies without VM modifications",

abstract = "The complex architecture of browser technologies and dynamic characteristics of JavaScript make it difficult to ensure security in client-side web applications. Browser-level security policies alone are not sufficient because it is difficult to apply them correctly and they can be bypassed. As a result, they need to be completed by application-level security policies.In this paper, we survey existing solutions for specifying and enforcing application-level security policies for client-side web applications, and distill a number of desirable features. Based on these features we developed Guardia, a framework for declaratively specifying and dynamically enforcing application-level security policies for JavaScript web applications without requiring VM modifications. We describe Guardia enforcement mechanism by means of JavaScript reflection with respect to three important security properties (transparency, tamper-proofness, and completeness). We also use Guardia to specify and deploy 12 access control policies discussed in related work in three experimental applications that are representative of real-world applications. Our experiments indicate that Guardia is correct, transparent, and tamper-proof, while only incurring a reasonable runtime overhead.",

keywords = "DSL, JavaScript, Language design, Reflection, Runtime Enforcement, Security Policy, Web Security",

author = "{Scull Pupo}, {Angel Luis} and Jens Nicolay and {Gonzalez Boix}, Elisa",

year = "2018",

month = sep,

day = "12",

doi = "10.1145/3237009.3237025",

language = "English",

booktitle = "Proceedings of the 15th International Conference on Managed Languages & Runtimes",

publisher = "Association for Computing Machinery (ACM)",

address = "United States",

note = "15th International Conference on Managed Languages & Runtimes ; Conference date: 11-09-2018 Through 13-09-2018",

url = "http://ssw.jku.at/manlang18/",

}

Scull Pupo, AL , Nicolay, J & Gonzalez Boix, E 2018, GUARDIA: specification and enforcement of javascript security policies without VM modifications. in Proceedings of the 15th International Conference on Managed Languages & Runtimes., 17, Association for Computing Machinery (ACM), 15th International Conference on Managed Languages & Runtimes, Linz, Austria, 11/09/18. https://doi.org/10.1145/3237009.3237025

GUARDIA: specification and enforcement of javascript security policies without VM modifications. / Scull Pupo, Angel Luis ; Nicolay, Jens ; Gonzalez Boix, Elisa.
Proceedings of the 15th International Conference on Managed Languages & Runtimes. Association for Computing Machinery (ACM), 2018. 17.

Research output: Chapter in Book/Report/Conference proceeding › Conference paper

TY - GEN

T1 - GUARDIA: specification and enforcement of javascript security policies without VM modifications

AU - Scull Pupo, Angel Luis

AU - Nicolay, Jens

AU - Gonzalez Boix, Elisa

PY - 2018/9/12

Y1 - 2018/9/12

N2 - The complex architecture of browser technologies and dynamic characteristics of JavaScript make it difficult to ensure security in client-side web applications. Browser-level security policies alone are not sufficient because it is difficult to apply them correctly and they can be bypassed. As a result, they need to be completed by application-level security policies.In this paper, we survey existing solutions for specifying and enforcing application-level security policies for client-side web applications, and distill a number of desirable features. Based on these features we developed Guardia, a framework for declaratively specifying and dynamically enforcing application-level security policies for JavaScript web applications without requiring VM modifications. We describe Guardia enforcement mechanism by means of JavaScript reflection with respect to three important security properties (transparency, tamper-proofness, and completeness). We also use Guardia to specify and deploy 12 access control policies discussed in related work in three experimental applications that are representative of real-world applications. Our experiments indicate that Guardia is correct, transparent, and tamper-proof, while only incurring a reasonable runtime overhead.

AB - The complex architecture of browser technologies and dynamic characteristics of JavaScript make it difficult to ensure security in client-side web applications. Browser-level security policies alone are not sufficient because it is difficult to apply them correctly and they can be bypassed. As a result, they need to be completed by application-level security policies.In this paper, we survey existing solutions for specifying and enforcing application-level security policies for client-side web applications, and distill a number of desirable features. Based on these features we developed Guardia, a framework for declaratively specifying and dynamically enforcing application-level security policies for JavaScript web applications without requiring VM modifications. We describe Guardia enforcement mechanism by means of JavaScript reflection with respect to three important security properties (transparency, tamper-proofness, and completeness). We also use Guardia to specify and deploy 12 access control policies discussed in related work in three experimental applications that are representative of real-world applications. Our experiments indicate that Guardia is correct, transparent, and tamper-proof, while only incurring a reasonable runtime overhead.

KW - DSL

KW - JavaScript

KW - Language design

KW - Reflection

KW - Runtime Enforcement

KW - Security Policy

KW - Web Security

UR - http://www.scopus.com/inward/record.url?scp=85055490850&partnerID=8YFLogxK

U2 - 10.1145/3237009.3237025

DO - 10.1145/3237009.3237025

M3 - Conference paper

BT - Proceedings of the 15th International Conference on Managed Languages & Runtimes

PB - Association for Computing Machinery (ACM)

T2 - 15th International Conference on Managed Languages & Runtimes

Y2 - 11 September 2018 through 13 September 2018

ER -

GUARDIA: specification and enforcement of javascript security policies without VM modifications

Abstract

Conference

Keywords

Access to Document

Handle.net

Other files and links

BRGIMP4: SECLOUD - Innoviris BRIDGE 2014

Cite this

GUARDIA: specification and enforcement of javascript security policies without VM modifications

Abstract

Conference

Keywords

Access to Document

Handle.net

Other files and links

Projects

BRGIMP4: SECLOUD - Innoviris BRIDGE 2014

Cite this