random dross : An innovative new defense against cross-domain vulnerabilities

An innovative new defense against cross-domain vulnerabilities

Cross-domain (or “Universal XSS”) vulnerabilities have long plagued modern script-enabled web browsers. Shuo Chen of Microsoft Research has developed a new type of defense against these vulnerabilities. A paper on this new approach has been accepted to the 14th ACM Conference on Computer and Communications Security (CCS).

An Analysis of Browser Domain-Isolation Bugs and A Light-Weight Transparent Defense Mechanism

I contributed some time to Shuo’s project and assisted with providing technical background on historical cross-domain vulnerabilities in Internet Explorer.

Published Wednesday, August 22, 2007 12:48 PM by dross

Filed under: Computer Security, Internet Explorer

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

# random dross An innovative new defense against cross domain | Paid Surveys

PingBack from http://paidsurveyshub.info/story.php?title=random-dross-an-innovative-new-defense-against-cross-domain

Friday, May 29, 2009 5:12 PM by random dross An innovative new defense against cross domain | Paid Surveys

Title (required)
Name required
Your URL
Comments (required)
Remember Me?

random dross

This Blog

Syndication

Search

Tags

Archives

Other Blogs

Other Useful Stuff

Security

Twitter

An innovative new defense against cross-domain vulnerabilities

Comment Notification

Comments

# random dross An innovative new defense against cross domain | Paid Surveys

Leave a Comment