DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale-Reference-Cited by-同舟云学术

登录注册会员服务联系我们

DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale

Published:2021-11-12 Issue: Volume: Page:
ISSN:
Container-title:Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security
language:
Short-container-title:

Author:

Fass Aurore¹,Somé Dolière Francis¹,Backes Michael¹,Stock Ben¹

Affiliation:

1. CISPA Helmholtz Center for Information Security, Saarbruecken, Germany

Publisher

ACM

Link

https://dl.acm.org/doi/pdf/10.1145/3460120.3484745

Reference83 articles.

1. Anupama Aggarwal Bimal Viswanath Liang Zhang Saravana Kumar Ayush Shah and Ponnurangam Kumaraguru. 2018. I Spy with My Little Eye: Analysis and Detection of Spying Browser Extensions. In Euro S&P. Anupama Aggarwal Bimal Viswanath Liang Zhang Saravana Kumar Ayush Shah and Ponnurangam Kumaraguru. 2018. I Spy with My Little Eye: Analysis and Detection of Spying Browser Extensions. In Euro S&P.

2. Determinacy in static analysis for jQuery

3. Michael Backes Konrad Rieck Malte Skoruppa Ben Stock and Fabian Yamaguchi. 2017. Efficient and Flexible Discovery of PHP Application Vulnerabilities. In Euro S&P. Michael Backes Konrad Rieck Malte Skoruppa Ben Stock and Fabian Yamaguchi. 2017. Efficient and Flexible Discovery of PHP Application Vulnerabilities. In Euro S&P.

Cited by 22 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. FakeX: A Framework for Detecting Fake Reviews of Browser Extensions;Proceedings of the 19th ACM Asia Conference on Computer and Communications Security;2024-07

2. Efficient Static Vulnerability Analysis for JavaScript with Multiversion Dependency Graphs;Proceedings of the ACM on Programming Languages;2024-06-20

3. Jasmine: Scale up JavaScript Static Security Analysis with Computation-based Semantic Explanation;2024 IEEE Symposium on Security and Privacy (SP);2024-05-19

4. Undefined-oriented Programming: Detecting and Chaining Prototype Pollution Gadgets in Node.js Template Engines for Malicious Consequences;2024 IEEE Symposium on Security and Privacy (SP);2024-05-19

5. RogueOne: Detecting Rogue Updates via Differential Data-flow Analysis Using Trust Domains;Proceedings of the IEEE/ACM 46th International Conference on Software Engineering;2024-04-12

同舟云学术

1.学者识别学者识别

2.学术分析学术分析

3.人才评估人才评估

"同舟云学术"是以全球学者为主线，采集、加工和组织学术论文而形成的新型学术文献查询和分析系统，可以对全球学者进行文献检索和人才价值评估。用户可以通过关注某些学科领域的顶尖人物而持续追踪该领域的学科进展和研究前沿。经过近期的数据扩容，当前同舟云学术共收录了国内外主流学术期刊6万余种，收集的期刊论文及会议论文总量共计约1.5亿篇，并以每天添加12000余篇中外论文的速度递增。我们也可以为用户提供个性化、定制化的学者数据。欢迎来电咨询！咨询电话：010-8811{复制后删除}0370

www.globalauthorid.com

TOP

Copyright © 2019-2024 北京同舟云网络信息技术有限公司
京公网安备11010802033243号京ICP备18003416号-3