{"id":"https://openalex.org/W1481529791","doi":"https://doi.org/10.1109/hpcsim.2015.7237042","title":"A survey on Information Flow Control mechanisms in web applications","display_name":"A survey on Information Flow Control mechanisms in web applications","publication_year":2015,"publication_date":"2015-07-01","ids":{"openalex":"https://openalex.org/W1481529791","doi":"https://doi.org/10.1109/hpcsim.2015.7237042","mag":"1481529791"},"language":"en","primary_location":{"id":"doi:10.1109/hpcsim.2015.7237042","is_oa":false,"landing_page_url":"https://doi.org/10.1109/hpcsim.2015.7237042","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 International Conference on High Performance Computing & Simulation (HPCS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5066903193","display_name":"Oscar Zibordi de Paiva","orcid":null},"institutions":[{"id":"https://openalex.org/I17974374","display_name":"Universidade de S\u00e3o Paulo","ror":"https://ror.org/036rp1748","country_code":"BR","type":"education","lineage":["https://openalex.org/I17974374"]}],"countries":["BR"],"is_corresponding":true,"raw_author_name":"Oscar Zibordi de Paiva","raw_affiliation_strings":["Polytechnic School - University of Sao Paulo, Sao Paulo, Brazil","Polytechnic School - University of S\u00e3o Paulo, Av. Prof. Luciano Gualberto 158, trav. 3, 05508-900, Brazil"],"affiliations":[{"raw_affiliation_string":"Polytechnic School - University of Sao Paulo, Sao Paulo, Brazil","institution_ids":["https://openalex.org/I17974374"]},{"raw_affiliation_string":"Polytechnic School - University of S\u00e3o Paulo, Av. Prof. Luciano Gualberto 158, trav. 3, 05508-900, Brazil","institution_ids":["https://openalex.org/I17974374"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5010228690","display_name":"Wilson Vicente Ruggiero","orcid":"https://orcid.org/0000-0003-3612-3937"},"institutions":[{"id":"https://openalex.org/I17974374","display_name":"Universidade de S\u00e3o Paulo","ror":"https://ror.org/036rp1748","country_code":"BR","type":"education","lineage":["https://openalex.org/I17974374"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Wilson Vicente Ruggiero","raw_affiliation_strings":["Polytechnic School - University of Sao Paulo, Sao Paulo, Brazil","Polytechnic School - University of S\u00e3o Paulo, Av. Prof. Luciano Gualberto 158, trav. 3, 05508-900, Brazil"],"affiliations":[{"raw_affiliation_string":"Polytechnic School - University of Sao Paulo, Sao Paulo, Brazil","institution_ids":["https://openalex.org/I17974374"]},{"raw_affiliation_string":"Polytechnic School - University of S\u00e3o Paulo, Av. Prof. Luciano Gualberto 158, trav. 3, 05508-900, Brazil","institution_ids":["https://openalex.org/I17974374"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5066903193"],"corresponding_institution_ids":["https://openalex.org/I17974374"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.01389184,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":"7904","issue":null,"first_page":"211","last_page":"220"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9955000281333923,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9934999942779541,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8130017518997192},{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.7082563042640686},{"id":"https://openalex.org/keywords/information-flow","display_name":"Information flow","score":0.608107328414917},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.5971096754074097},{"id":"https://openalex.org/keywords/information-leakage","display_name":"Information leakage","score":0.5810409784317017},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.5793662071228027},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5144760608673096},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.5047098398208618},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.49205654859542847},{"id":"https://openalex.org/keywords/sql-injection","display_name":"SQL injection","score":0.4752114713191986},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.46616584062576294},{"id":"https://openalex.org/keywords/information-sensitivity","display_name":"Information sensitivity","score":0.4591400623321533},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.4491736590862274},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.42757225036621094},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.31451237201690674},{"id":"https://openalex.org/keywords/web-page","display_name":"Web page","score":0.3036297857761383},{"id":"https://openalex.org/keywords/search-engine","display_name":"Search engine","score":0.09034863114356995}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8130017518997192},{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.7082563042640686},{"id":"https://openalex.org/C2779136372","wikidata":"https://www.wikidata.org/wiki/Q10283002","display_name":"Information flow","level":2,"score":0.608107328414917},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.5971096754074097},{"id":"https://openalex.org/C2779201187","wikidata":"https://www.wikidata.org/wiki/Q2775060","display_name":"Information leakage","level":2,"score":0.5810409784317017},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.5793662071228027},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5144760608673096},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.5047098398208618},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.49205654859542847},{"id":"https://openalex.org/C150451098","wikidata":"https://www.wikidata.org/wiki/Q506059","display_name":"SQL injection","level":5,"score":0.4752114713191986},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.46616584062576294},{"id":"https://openalex.org/C137822555","wikidata":"https://www.wikidata.org/wiki/Q2587068","display_name":"Information sensitivity","level":2,"score":0.4591400623321533},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.4491736590862274},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.42757225036621094},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.31451237201690674},{"id":"https://openalex.org/C21959979","wikidata":"https://www.wikidata.org/wiki/Q36774","display_name":"Web page","level":2,"score":0.3036297857761383},{"id":"https://openalex.org/C97854310","wikidata":"https://www.wikidata.org/wiki/Q19541","display_name":"Search engine","level":2,"score":0.09034863114356995},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C194222762","wikidata":"https://www.wikidata.org/wiki/Q114486","display_name":"Query by Example","level":4,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C164120249","wikidata":"https://www.wikidata.org/wiki/Q995982","display_name":"Web search query","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/hpcsim.2015.7237042","is_oa":false,"landing_page_url":"https://doi.org/10.1109/hpcsim.2015.7237042","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 International Conference on High Performance Computing & Simulation (HPCS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7400000095367432,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":45,"referenced_works":["https://openalex.org/W160952353","https://openalex.org/W254902136","https://openalex.org/W1488890761","https://openalex.org/W1499077880","https://openalex.org/W1725973462","https://openalex.org/W1977764760","https://openalex.org/W1995290095","https://openalex.org/W2005525408","https://openalex.org/W2007831853","https://openalex.org/W2016613525","https://openalex.org/W2043676331","https://openalex.org/W2047764386","https://openalex.org/W2057503672","https://openalex.org/W2071599766","https://openalex.org/W2086234010","https://openalex.org/W2094873755","https://openalex.org/W2106573617","https://openalex.org/W2109496970","https://openalex.org/W2122049982","https://openalex.org/W2122167991","https://openalex.org/W2129278597","https://openalex.org/W2132185316","https://openalex.org/W2132699727","https://openalex.org/W2134296086","https://openalex.org/W2136296832","https://openalex.org/W2143406523","https://openalex.org/W2150174204","https://openalex.org/W2153859505","https://openalex.org/W2162022335","https://openalex.org/W2162283517","https://openalex.org/W2166510103","https://openalex.org/W2168686464","https://openalex.org/W2171295941","https://openalex.org/W2404393214","https://openalex.org/W4237990977","https://openalex.org/W4242362323","https://openalex.org/W6606527984","https://openalex.org/W6629162168","https://openalex.org/W6629814310","https://openalex.org/W6671957770","https://openalex.org/W6678518939","https://openalex.org/W6680035254","https://openalex.org/W6682473377","https://openalex.org/W6683952262","https://openalex.org/W6713207807"],"related_works":["https://openalex.org/W2955734438","https://openalex.org/W2167752994","https://openalex.org/W2775081089","https://openalex.org/W2504194819","https://openalex.org/W2407701912","https://openalex.org/W4256450364","https://openalex.org/W4238821156","https://openalex.org/W1982746004","https://openalex.org/W4245700610","https://openalex.org/W2791970934"],"abstract_inverted_index":{"Web":[0],"applications":[1],"are":[2],"nowadays":[3],"ubiquitous":[4],"channels":[5],"that":[6,89],"provide":[7],"access":[8],"to":[9,31,55,74],"valuable":[10],"information.":[11,62],"However,":[12],"web":[13,76],"application":[14,77],"security":[15,136],"remains":[16],"problematic,":[17],"with":[18,98],"Information":[19,44],"Leakage,":[20],"Cross-Site":[21],"Scripting":[22],"and":[23,50,59,134],"SQL-Injection":[24],"vulnerabilities":[25],"-":[26,33],"which":[27,94,130,144],"all":[28],"present":[29],"threats":[30],"information":[32,109],"standing":[34],"among":[35],"the":[36,41,57,69,108,115,123,127,135],"most":[37],"common":[38],"ones.":[39],"On":[40],"other":[42],"hand,":[43],"Flow":[45],"Control":[46],"is":[47],"a":[48,82,104,119],"mature":[49],"well-studied":[51],"area,":[52],"providing":[53],"techniques":[54,73,112],"ensure":[56],"confidentiality":[58],"integrity":[60],"of":[61,71,86,107],"Thus,":[63],"numerous":[64],"works":[65,88],"were":[66,132],"made":[67],"proposing":[68],"use":[70],"these":[72,87],"improve":[75],"security.":[78],"This":[79],"paper":[80],"provides":[81,103],"survey":[83],"on":[84],"some":[85],"propose":[90],"server-side":[91],"only":[92],"mechanisms,":[93],"operate":[95],"in":[96,143],"association":[97],"standard":[99],"browsers.":[100],"It":[101],"also":[102,140],"brief":[105],"overview":[106],"flow":[110],"control":[111],"themselves.":[113],"At":[114],"end,":[116],"we":[117],"draw":[118],"comparative":[120],"scenario":[121],"between":[122],"surveyed":[124],"works,":[125],"highlighting":[126],"environments":[128],"for":[129],"they":[131,138,145],"designed":[133],"guarantees":[137],"provide,":[139],"suggesting":[141],"directions":[142],"may":[146],"evolve.":[147]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}