Preventing Dynamic Library Compromise on Node.js via RWX-Based Privilege Reduction-Reference-Cited by-同舟云学术

Preventing Dynamic Library Compromise on Node.js via RWX-Based Privilege Reduction

Published:2021-11-12 Issue: Volume: Page:
ISSN:
Container-title:Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security
language:
Short-container-title:

Author:

Vasilakis Nikos¹,Staicu Cristian-Alexandru²,Ntousakis Grigoris³,Kallas Konstantinos⁴,Karel Ben⁵,DeHon André⁴,Pradel Michael⁶

Affiliation:

1. Massachusetts Institute of Technology, Cambridge, MA, USA

2. CISPA Helmholtz Center for Information Security, Saarbrücken, Germany

3. TU Crete, Chania, Greece

4. University of Pennsylvania, Philadelphia, PA, USA

5. Aarno Labs, Cambridge, MA, USA

6. University of Stuttgart, Stuttgart, Germany

Funder

German Research Foundation

DARPA

NSF

European Research Council

Publisher

ACM

Link

Reference82 articles.

Cited by 16 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. HODOR: Shrinking Attack Surface on Node.js via System Call Limitation;Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security;2023-11-15

2. NatiSand: Native Code Sandboxing for JavaScript Runtimes;Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses;2023-10-16

3. BinWrap: Hybrid Protection against Native Node.js Add-ons;Proceedings of the ACM Asia Conference on Computer and Communications Security;2023-07-10

4. Cage4Deno: A Fine-Grained Sandbox for Deno Subprocesses;Proceedings of the ACM Asia Conference on Computer and Communications Security;2023-07-10