Reactive non-interference for a browser model

Nataliia Bielova, Dominique Devriese, Fabio Massacci, Frank Piessens

Research output: Chapter in Book/Report/Conference proceedingConference paper

39 Citations (Scopus)

Abstract

We investigate non-interference (secure information flow) policies for web browsers, replacing or complementing the Same Origin Policy. First, we adapt a recently proposed dynamic information flow enforcement mechanism to support asynchronous I/O. We prove detailed security and precision results for this enforcement mechanism, and implement it for the Featherweight Firefox browser model. Second, we investigate three useful web browser security policies that can be enforced by our mechanism, and demonstrate their value and limitations.

Original languageEnglish
Title of host publicationProceedings - 2011 5th International Conference on Network and System Security, NSS 2011
PublisherIEEE
Pages97-104
Number of pages8
ISBN (Print)9781457704598
DOIs
Publication statusPublished - 17 Nov 2011
Event2011 5th International Conference on Network and System Security, NSS 2011 - Milan, Italy
Duration: 6 Sep 20118 Sep 2011

Conference

Conference2011 5th International Conference on Network and System Security, NSS 2011
Country/TerritoryItaly
CityMilan
Period6/09/118/09/11

Fingerprint

Dive into the research topics of 'Reactive non-interference for a browser model'. Together they form a unique fingerprint.

Cite this