Arnold L. Rosenberg
Journal of the ACM
The emergence of Web 2.0 technologies such as Ajax and Mashup has revealed the weakness of the same-origin policy [1], the current de facto standard for the Web browser security model. We propose a new browser security model to allow fine-grained access control in the clientside Web applications for secure mashup and user-generated contents. We propose a browser security model that is based on information-flow-based access control (IBAC) to overcome the dynamic nature of the client-side Web applications and to accurately determine the privilege of scripts in the event-driven programming model. Copyright © 2009 The Institute of Electronics, Information and Communication Engineers.
Arnold L. Rosenberg
Journal of the ACM
Ismail Akhalwaya, Shashanka Ubaru, et al.
ICLR 2024
Tim Erdmann, Stefan Zecevic, et al.
ACS Spring 2024
David Carmel, Haggai Roitman, et al.
ACM TIST