MashupOS: operating system abstractions for client mashups
作者: Helen J. Wang , Jon Howell , Xiaofeng Fan , Collin Jackson
DOI:
关键词:
摘要: Web browser support has evolved piecemeal to balance the security and interoperability requirements of client-side script services. This evolution led an inadequate model that forces applications choose between interoperation. We draw analogy sites' sharing resources users' operating system resources, use this as a guide develop protection communication abstractions in MashupOS: set isolate mutually-untrusting web services within browser, while allowing safe forms communication.
参考文章(5)
L. Montulli, D. Kristol, HTTP State Management Mechanism RFC2109. ,vol. 2109, pp. 1- 21 ,(1997)
Opher Dubrovsky, Saher Esmeir, John Dunagan, Helen J. Wang, Charles Reis, BrowserShield: vulnerability-driven filtering of dynamic HTML operating systems design and implementation. pp. 61- 74 ,(2006) , 10.5555/1298455.1298462
Collin Jackson, Helen J. Wang, Subspace: secure cross-domain communication for web mashups the web conference. pp. 611- 620 ,(2007) , 10.1145/1242572.1242655
Collin Jackson, Andrew Bortz, Dan Boneh, John C. Mitchell, Protecting browser state from web privacy attacks Proceedings of the 15th international conference on World Wide Web - WWW '06. pp. 737- 744 ,(2006) , 10.1145/1135777.1135884
R.S. Cox, J.G. Hansen, S.D. Gribble, H.M. Levy, A safety-oriented platform for Web applications ieee symposium on security and privacy. pp. 350- 364 ,(2006) , 10.1109/SP.2006.4