Cross-Site Challenge-Response Attacks

Work-in-progress: JaVulIn: Scalable Vulnerability Injection for JavaScript Web Applications

Dominic Troppmann (CISPA Helmholtz Center for Information Security), Cristian-Alexandru Staicu (Endor Labs), Aurore Fass (Inria Centre at Université Côte d’Azur)

Read More

Extension Vetting: Haven’t We Solved This Problem Yet?

Dénes Bán, Benjamin Livshits

Read More

Building on Top of Shifting Sands: Web Security Through...

Nick Nikiforakis (Stony Book University)

Read More