Proceedings of the Workshop on Web 2.0 Security an
Proceedings of the Workshop on Web 2.0 Security and Privacy Year 2010 Peer-reviewed
BibTeX PDF
Web Security · Privacy

Secure Cooperative Sharing of JavaScript, Browser, and Physical Resources

Leo Meyerovich David Zhu Benjamin Livshits
Web 2.0 Security Workshop
Venue
Peer-reviewed
Type
2010
Publication year
§ Abstract

Summary

For better application-level controls on mashups, we advocate extending the Single Origin Policy and associated primitives to support a cooperative model that allows applications to express explicit sharing policies over browser, Javascript, and physical resources. First, we introduce an isolation model for content loading that is more complete than those of surveyed browser proposals. Second, we present new primitives to enable an application to secure its use of untrusted content by delegating browser, JavaScript, and physical resources in a fine-grained and reliable manner. Finally, essential to adoption, we propose an architecture based on designs for related abstractions with low performance and implementation costs.

Cite this paper — BibTeX 
@InProceedings{meyerovich10secure,
  author = "Leo Meyerovich and David Zhu and Benjamin Livshits",
  title = "Secure Cooperative Sharing of JavaScript, Browser, and Physical Resources",
  booktitle = "Proceedings of the Workshop on Web 2.0 Security and Privacy",
  month = may,
  year = 2010,
}
Copied