2013
AUTHORSDevdatta Akhawe , Frank Li , Warren He , Prateek Saxena , Dawn Song
ABSTRACTRich client-side applications written in HTML5 proliferate on diverse platforms, access sensitive data, and need to maintain data-confinement invariants. Applications currently enforce these invariants using implicit, ad-hoc mechanisms. We propose a new primitive called a data-confined sandbox or DCS. A DCS enables complete mediation of communication channels with a small TCB. Our primitive extends currently standardized primitives and has negligible performance overhead and a modest compatibility cost. We retrofit our design on four real-world HTML5 applications and demonstrate that a small amount of effort enables strong data-confinement guarantees. More... »
PAGES736-754
Computer Security – ESORICS 2013
ISBN
978-3-642-40202-9
978-3-642-40203-6
http://scigraph.springernature.com/pub.10.1007/978-3-642-40203-6_41
DOIhttp://dx.doi.org/10.1007/978-3-642-40203-6_41
DIMENSIONShttps://app.dimensions.ai/details/publication/pub.1049483063
JSON-LD is the canonical representation for SciGraph data.
TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT
[
{
"@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json",
"about": [
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Information and Computing Sciences",
"type": "DefinedTerm"
},
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0806",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Information Systems",
"type": "DefinedTerm"
}
],
"author": [
{
"affiliation": {
"alternateName": "University of California, Berkeley, Berkeley, CA, USA",
"id": "http://www.grid.ac/institutes/grid.47840.3f",
"name": [
"University of California, Berkeley, Berkeley, CA, USA"
],
"type": "Organization"
},
"familyName": "Akhawe",
"givenName": "Devdatta",
"id": "sg:person.010626452425.17",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.010626452425.17"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "University of California, Berkeley, Berkeley, CA, USA",
"id": "http://www.grid.ac/institutes/grid.47840.3f",
"name": [
"University of California, Berkeley, Berkeley, CA, USA"
],
"type": "Organization"
},
"familyName": "Li",
"givenName": "Frank",
"type": "Person"
},
{
"affiliation": {
"alternateName": "University of California, Berkeley, Berkeley, CA, USA",
"id": "http://www.grid.ac/institutes/grid.47840.3f",
"name": [
"University of California, Berkeley, Berkeley, CA, USA"
],
"type": "Organization"
},
"familyName": "He",
"givenName": "Warren",
"id": "sg:person.014411735025.19",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014411735025.19"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "National University of Singapore, Singapore",
"id": "http://www.grid.ac/institutes/grid.4280.e",
"name": [
"National University of Singapore, Singapore"
],
"type": "Organization"
},
"familyName": "Saxena",
"givenName": "Prateek",
"id": "sg:person.013754547627.79",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013754547627.79"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "University of California, Berkeley, Berkeley, CA, USA",
"id": "http://www.grid.ac/institutes/grid.47840.3f",
"name": [
"University of California, Berkeley, Berkeley, CA, USA"
],
"type": "Organization"
},
"familyName": "Song",
"givenName": "Dawn",
"id": "sg:person.01143152610.86",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.01143152610.86"
],
"type": "Person"
}
],
"datePublished": "2013",
"datePublishedReg": "2013-01-01",
"description": "Rich client-side applications written in HTML5 proliferate on diverse platforms, access sensitive data, and need to maintain data-confinement invariants. Applications currently enforce these invariants using implicit, ad-hoc mechanisms. We propose a new primitive called a data-confined sandbox or DCS. A DCS enables complete mediation of communication channels with a small TCB. Our primitive extends currently standardized primitives and has negligible performance overhead and a modest compatibility cost. We retrofit our design on four real-world HTML5 applications and demonstrate that a small amount of effort enables strong data-confinement guarantees.",
"editor": [
{
"familyName": "Crampton",
"givenName": "Jason",
"type": "Person"
},
{
"familyName": "Jajodia",
"givenName": "Sushil",
"type": "Person"
},
{
"familyName": "Mayes",
"givenName": "Keith",
"type": "Person"
}
],
"genre": "chapter",
"id": "sg:pub.10.1007/978-3-642-40203-6_41",
"inLanguage": "en",
"isAccessibleForFree": false,
"isPartOf": {
"isbn": [
"978-3-642-40202-9",
"978-3-642-40203-6"
],
"name": "Computer Security \u2013 ESORICS 2013",
"type": "Book"
},
"keywords": [
"HTML5 applications",
"client-side applications",
"small TCB",
"sensitive data",
"new primitive",
"negligible performance",
"compatibility costs",
"diverse platforms",
"communication channels",
"primitives",
"HTML5",
"applications",
"complete mediation",
"sandbox",
"guarantees",
"platform",
"AD",
"DCS",
"invariants",
"data",
"performance",
"cost",
"design",
"TCB",
"efforts",
"channels",
"amount",
"small amount",
"mechanism",
"mediation"
],
"name": "Data-Confined HTML5 Applications",
"pagination": "736-754",
"productId": [
{
"name": "dimensions_id",
"type": "PropertyValue",
"value": [
"pub.1049483063"
]
},
{
"name": "doi",
"type": "PropertyValue",
"value": [
"10.1007/978-3-642-40203-6_41"
]
}
],
"publisher": {
"name": "Springer Nature",
"type": "Organisation"
},
"sameAs": [
"https://doi.org/10.1007/978-3-642-40203-6_41",
"https://app.dimensions.ai/details/publication/pub.1049483063"
],
"sdDataset": "chapters",
"sdDatePublished": "2022-05-10T10:55",
"sdLicense": "https://scigraph.springernature.com/explorer/license/",
"sdPublisher": {
"name": "Springer Nature - SN SciGraph project",
"type": "Organization"
},
"sdSource": "s3://com-springernature-scigraph/baseset/20220509/entities/gbq_results/chapter/chapter_64.jsonl",
"type": "Chapter",
"url": "https://doi.org/10.1007/978-3-642-40203-6_41"
}
]Download the RDF metadata as: json-ld nt turtle xml License info
JSON-LD is a popular format for linked data which is fully compatible with JSON.
curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-40203-6_41'
N-Triples is a line-based linked data format ideal for batch operations.
curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-40203-6_41'
Turtle is a human-readable linked data format.
curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-40203-6_41'
RDF/XML is a standard XML format for linked data.
curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-40203-6_41'
This table displays all metadata directly associated to this object as RDF triples.
130 TRIPLES
23 PREDICATES
56 URIs
49 LITERALS
7 BLANK NODES