{"id":"https://openalex.org/W2044969874","doi":"https://doi.org/10.1145/2771783.2771789","title":"BrowserAudit: automated testing of browser security features","display_name":"BrowserAudit: automated testing of browser security features","publication_year":2015,"publication_date":"2015-07-10","ids":{"openalex":"https://openalex.org/W2044969874","doi":"https://doi.org/10.1145/2771783.2771789","mag":"2044969874"},"language":"en","primary_location":{"id":"doi:10.1145/2771783.2771789","is_oa":true,"landing_page_url":"https://doi.org/10.1145/2771783.2771789","pdf_url":"http://dl.acm.org/ft_gateway.cfm?id=2771789&type=pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"http://dl.acm.org/ft_gateway.cfm?id=2771789&type=pdf","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5000196650","display_name":"Charlie Hothersall-Thomas","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Charlie Hothersall-Thomas","raw_affiliation_strings":["Netcraft, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Netcraft, UK","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043151499","display_name":"Sergio Maffeis","orcid":"https://orcid.org/0000-0003-1514-6857"},"institutions":[{"id":"https://openalex.org/I47508984","display_name":"Imperial College London","ror":"https://ror.org/041kmwe10","country_code":"GB","type":"education","lineage":["https://openalex.org/I47508984"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Sergio Maffeis","raw_affiliation_strings":["Imperial College London, UK","Imperial College , London, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Imperial College London, UK","institution_ids":["https://openalex.org/I47508984"]},{"raw_affiliation_string":"Imperial College , London, UK","institution_ids":["https://openalex.org/I47508984"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5087228196","display_name":"Chris Novakovic","orcid":"https://orcid.org/0000-0001-5077-0626"},"institutions":[{"id":"https://openalex.org/I47508984","display_name":"Imperial College London","ror":"https://ror.org/041kmwe10","country_code":"GB","type":"education","lineage":["https://openalex.org/I47508984"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Chris Novakovic","raw_affiliation_strings":["Imperial College London, UK","Imperial College , London, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Imperial College London, UK","institution_ids":["https://openalex.org/I47508984"]},{"raw_affiliation_string":"Imperial College , London, UK","institution_ids":["https://openalex.org/I47508984"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":5.772,"has_fulltext":true,"cited_by_count":16,"citation_normalized_percentile":{"value":0.95908295,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"37","last_page":"47"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9973999857902527,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7140401005744934},{"id":"https://openalex.org/keywords/web-browser","display_name":"Web browser","score":0.6299633979797363},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5038823485374451},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4783893823623657},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.44511446356773376},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.1949743628501892},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.11740976572036743}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7140401005744934},{"id":"https://openalex.org/C2983909278","wikidata":"https://www.wikidata.org/wiki/Q6368","display_name":"Web browser","level":3,"score":0.6299633979797363},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5038823485374451},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4783893823623657},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.44511446356773376},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.1949743628501892},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.11740976572036743}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2771783.2771789","is_oa":true,"landing_page_url":"https://doi.org/10.1145/2771783.2771789","pdf_url":"http://dl.acm.org/ft_gateway.cfm?id=2771789&type=pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/2771783.2771789","is_oa":true,"landing_page_url":"https://doi.org/10.1145/2771783.2771789","pdf_url":"http://dl.acm.org/ft_gateway.cfm?id=2771789&type=pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G2668351006","display_name":"Certified Verification of Client-Side Web Programs","funder_award_id":"EP/K032089/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G4591940118","display_name":null,"funder_award_id":"EP/K032089/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G4908557464","display_name":null,"funder_award_id":"EP/I004246/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G5508548704","display_name":"Foundations of Secure Web Programming","funder_award_id":"EP/I004246/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320320283","display_name":"Imperial College London","ror":"https://ror.org/041kmwe10"},{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2044969874.pdf","grobid_xml":"https://content.openalex.org/works/W2044969874.grobid-xml"},"referenced_works_count":39,"referenced_works":["https://openalex.org/W21397350","https://openalex.org/W181628467","https://openalex.org/W202635835","https://openalex.org/W1525967479","https://openalex.org/W1563971619","https://openalex.org/W1607985412","https://openalex.org/W1612893162","https://openalex.org/W1693301795","https://openalex.org/W1774682829","https://openalex.org/W1779735989","https://openalex.org/W2025874281","https://openalex.org/W2037671236","https://openalex.org/W2045726900","https://openalex.org/W2072978486","https://openalex.org/W2101678831","https://openalex.org/W2103262407","https://openalex.org/W2107466081","https://openalex.org/W2110986027","https://openalex.org/W2120111750","https://openalex.org/W2126040767","https://openalex.org/W2126461222","https://openalex.org/W2129630219","https://openalex.org/W2146595241","https://openalex.org/W2163049969","https://openalex.org/W2164532721","https://openalex.org/W2170334586","https://openalex.org/W2174441577","https://openalex.org/W2204863282","https://openalex.org/W2270231484","https://openalex.org/W2300554752","https://openalex.org/W2336650211","https://openalex.org/W2400264373","https://openalex.org/W2521701880","https://openalex.org/W2618771940","https://openalex.org/W2746937343","https://openalex.org/W6608277127","https://openalex.org/W6637957265","https://openalex.org/W6638294888","https://openalex.org/W6677247423"],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W4254303646","https://openalex.org/W1540003828","https://openalex.org/W2287572233","https://openalex.org/W2443963150","https://openalex.org/W2489547187","https://openalex.org/W1533121303","https://openalex.org/W3014218496","https://openalex.org/W569963976","https://openalex.org/W569541443"],"abstract_inverted_index":{"The":[0],"security":[1,39,116,131,139,145],"of":[2,6,38,71,92,130,147],"the":[3,17,23,68,107,111],"client":[4,24],"side":[5,25],"a":[7,85,89,98,103,127,148],"web":[8,134],"application":[9,136],"relies":[10],"on":[11],"browser":[12,31,72,93,105],"features":[13],"such":[14],"as":[15,56],"cookies,":[16],"same-origin":[18],"policy":[19],"and":[20,29,53,65,75,80,114,138,158],"HTTPS.":[21],"As":[22],"grows":[26],"increasingly":[27],"powerful":[28],"sophisticated,":[30],"vendors":[32],"have":[33],"stepped":[34],"up":[35],"their":[36],"offering":[37],"mechanisms":[40],"which":[41],"can":[42],"be":[43],"leveraged":[44],"to":[45,141],"protect":[46],"it.":[47],"These":[48],"are":[49],"often":[50],"introduced":[51],"experimentally":[52],"informally":[54],"and,":[55],"adoption":[57],"increases,":[58],"gradually":[59],"become":[60],"standardised":[61,113],"(e.g.,":[62],"CSP,":[63],"CORS":[64],"HSTS).":[66],"Considering":[67],"diverse":[69],"landscape":[70],"vendors,":[73],"releases,":[74],"customised":[76],"versions":[77],"for":[78,88,100],"mobile":[79],"embedded":[81],"devices,":[82],"there":[83],"is":[84],"compelling":[86],"need":[87],"systematic":[90],"assessment":[91,146],"security.":[94],"We":[95,151],"present":[96],"BrowserAudit,":[97],"tool":[99],"testing":[101],"that":[102,125],"deployed":[104,149],"enforces":[106],"guarantees":[108],"implied":[109],"by":[110,154],"main":[112],"experimental":[115],"mechanisms.":[117],"It":[118],"includes":[119],"more":[120],"than":[121],"400":[122],"fully-automated":[123],"tests":[124],"exercise":[126],"broad":[128],"range":[129],"features,":[132],"helping":[133],"users,":[135],"developers":[137],"researchers":[140],"make":[142],"an":[143],"informed":[144],"browser.":[150],"validate":[152],"BrowserAudit":[153],"discovering":[155],"both":[156],"fresh":[157],"known":[159],"security-related":[160],"bugs":[161],"in":[162],"major":[163],"browsers.":[164]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":2},{"year":2016,"cited_by_count":3}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}