{"id":"https://openalex.org/W1969883639","doi":"https://doi.org/10.1145/2810103.2813684","title":"Inlined Information Flow Monitoring for JavaScript","display_name":"Inlined Information Flow Monitoring for JavaScript","publication_year":2015,"publication_date":"2015-10-06","ids":{"openalex":"https://openalex.org/W1969883639","doi":"https://doi.org/10.1145/2810103.2813684","mag":"1969883639"},"language":"en","primary_location":{"id":"doi:10.1145/2810103.2813684","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813684","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5103816562","display_name":"Andrey Chudnov","orcid":null},"institutions":[{"id":"https://openalex.org/I108468826","display_name":"Stevens Institute of Technology","ror":"https://ror.org/02z43xh36","country_code":"US","type":"education","lineage":["https://openalex.org/I108468826"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Andrey Chudnov","raw_affiliation_strings":["Stevens Institute of Technology, Hoboken, NJ, USA"],"affiliations":[{"raw_affiliation_string":"Stevens Institute of Technology, Hoboken, NJ, USA","institution_ids":["https://openalex.org/I108468826"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5009739199","display_name":"David A. Naumann","orcid":"https://orcid.org/0000-0002-7634-6150"},"institutions":[{"id":"https://openalex.org/I108468826","display_name":"Stevens Institute of Technology","ror":"https://ror.org/02z43xh36","country_code":"US","type":"education","lineage":["https://openalex.org/I108468826"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"David A. Naumann","raw_affiliation_strings":["Stevens Institute of Technology, Hoboken, NJ, USA"],"affiliations":[{"raw_affiliation_string":"Stevens Institute of Technology, Hoboken, NJ, USA","institution_ids":["https://openalex.org/I108468826"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5103816562"],"corresponding_institution_ids":["https://openalex.org/I108468826"],"apc_list":null,"apc_paid":null,"fwci":7.3345,"has_fulltext":false,"cited_by_count":43,"citation_normalized_percentile":{"value":0.97053654,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"629","last_page":"643"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9876999855041504,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/javascript","display_name":"JavaScript","score":0.9262961149215698},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7331175804138184},{"id":"https://openalex.org/keywords/unobtrusive-javascript","display_name":"Unobtrusive JavaScript","score":0.7201751470565796},{"id":"https://openalex.org/keywords/mashup","display_name":"Mashup","score":0.6925711035728455},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.5991963148117065},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.5957424640655518},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5080244541168213},{"id":"https://openalex.org/keywords/information-flow","display_name":"Information flow","score":0.4872211515903473},{"id":"https://openalex.org/keywords/upgrade","display_name":"Upgrade","score":0.4409193992614746},{"id":"https://openalex.org/keywords/extant-taxon","display_name":"Extant taxon","score":0.4394543766975403},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.41676604747772217},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3478003442287445},{"id":"https://openalex.org/keywords/rich-internet-application","display_name":"Rich Internet application","score":0.251539409160614},{"id":"https://openalex.org/keywords/web-2.0","display_name":"Web 2.0","score":0.22546541690826416},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.21617260575294495},{"id":"https://openalex.org/keywords/web-page","display_name":"Web page","score":0.21223220229148865},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.09708139300346375}],"concepts":[{"id":"https://openalex.org/C544833334","wikidata":"https://www.wikidata.org/wiki/Q2005","display_name":"JavaScript","level":2,"score":0.9262961149215698},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7331175804138184},{"id":"https://openalex.org/C198240166","wikidata":"https://www.wikidata.org/wiki/Q2298909","display_name":"Unobtrusive JavaScript","level":4,"score":0.7201751470565796},{"id":"https://openalex.org/C196126337","wikidata":"https://www.wikidata.org/wiki/Q821080","display_name":"Mashup","level":4,"score":0.6925711035728455},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.5991963148117065},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.5957424640655518},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5080244541168213},{"id":"https://openalex.org/C2779136372","wikidata":"https://www.wikidata.org/wiki/Q10283002","display_name":"Information flow","level":2,"score":0.4872211515903473},{"id":"https://openalex.org/C2780615140","wikidata":"https://www.wikidata.org/wiki/Q920419","display_name":"Upgrade","level":2,"score":0.4409193992614746},{"id":"https://openalex.org/C178300618","wikidata":"https://www.wikidata.org/wiki/Q1898509","display_name":"Extant taxon","level":2,"score":0.4394543766975403},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.41676604747772217},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3478003442287445},{"id":"https://openalex.org/C103048170","wikidata":"https://www.wikidata.org/wiki/Q725485","display_name":"Rich Internet application","level":3,"score":0.251539409160614},{"id":"https://openalex.org/C136699151","wikidata":"https://www.wikidata.org/wiki/Q131164","display_name":"Web 2.0","level":3,"score":0.22546541690826416},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.21617260575294495},{"id":"https://openalex.org/C21959979","wikidata":"https://www.wikidata.org/wiki/Q36774","display_name":"Web page","level":2,"score":0.21223220229148865},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.09708139300346375},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C78458016","wikidata":"https://www.wikidata.org/wiki/Q840400","display_name":"Evolutionary biology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2810103.2813684","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813684","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.5400000214576721}],"awards":[{"id":"https://openalex.org/G5123821056","display_name":null,"funder_award_id":"CNS-1228930","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G5679280223","display_name":null,"funder_award_id":"11027-202037-DS","funder_id":"https://openalex.org/F4320306110","funder_display_name":"U.S. Department of Homeland Security"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320306110","display_name":"U.S. Department of Homeland Security","ror":"https://ror.org/00jyr0d86"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":61,"referenced_works":["https://openalex.org/W42576273","https://openalex.org/W63895107","https://openalex.org/W66661079","https://openalex.org/W114581357","https://openalex.org/W131515753","https://openalex.org/W236281116","https://openalex.org/W431566009","https://openalex.org/W1146933715","https://openalex.org/W1222699389","https://openalex.org/W1523697553","https://openalex.org/W1531328487","https://openalex.org/W1534212008","https://openalex.org/W1554476771","https://openalex.org/W1557847811","https://openalex.org/W1582983062","https://openalex.org/W1699577049","https://openalex.org/W1777693579","https://openalex.org/W1849635621","https://openalex.org/W1976371754","https://openalex.org/W1984440144","https://openalex.org/W1994197051","https://openalex.org/W1995290095","https://openalex.org/W1998180710","https://openalex.org/W2008332764","https://openalex.org/W2024811322","https://openalex.org/W2027822753","https://openalex.org/W2037671236","https://openalex.org/W2043676331","https://openalex.org/W2047370472","https://openalex.org/W2063692999","https://openalex.org/W2066195326","https://openalex.org/W2067555612","https://openalex.org/W2074935412","https://openalex.org/W2082841864","https://openalex.org/W2083582440","https://openalex.org/W2085939020","https://openalex.org/W2099510595","https://openalex.org/W2102917576","https://openalex.org/W2108416936","https://openalex.org/W2112459589","https://openalex.org/W2116136092","https://openalex.org/W2121194882","https://openalex.org/W2121822272","https://openalex.org/W2122167991","https://openalex.org/W2126469755","https://openalex.org/W2136887296","https://openalex.org/W2138552494","https://openalex.org/W2141293928","https://openalex.org/W2143150127","https://openalex.org/W2146717998","https://openalex.org/W2150174204","https://openalex.org/W2150650310","https://openalex.org/W2152734828","https://openalex.org/W2153684747","https://openalex.org/W2162755110","https://openalex.org/W2165304392","https://openalex.org/W2174461360","https://openalex.org/W3010249406","https://openalex.org/W4206358530","https://openalex.org/W4242904834","https://openalex.org/W4250728693"],"related_works":["https://openalex.org/W650647575","https://openalex.org/W2472584751","https://openalex.org/W2476571673","https://openalex.org/W597036300","https://openalex.org/W827014118","https://openalex.org/W2737557375","https://openalex.org/W648161522","https://openalex.org/W2164032016","https://openalex.org/W2937855189","https://openalex.org/W605139400"],"abstract_inverted_index":{"Extant":[0],"security":[1,47],"mechanisms":[2],"for":[3,19,57,83],"web":[4,30,87],"apps,":[5],"notably":[6],"the":[7,20,90],"\"same-origin":[8],"policy\",":[9],"are":[10,50,61],"not":[11],"sufficient":[12],"to":[13,64,111,116],"achieve":[14],"confidentiality":[15],"and":[16,101,122],"integrity":[17],"goals":[18],"many":[21,62],"apps":[22,31],"that":[23,43],"manipulate":[24],"sensitive":[25],"information.":[26],"The":[27],"trend":[28],"in":[29,41],"is":[32],"\"mashups\"":[33],"which":[34],"integrate":[35],"JavaScript":[36],"code":[37],"from":[38],"multiple":[39],"providers":[40],"ways":[42],"can":[44],"undercut":[45],"existing":[46],"mechanisms.":[48],"Researchers":[49],"exploring":[51],"dynamic":[52],"information":[53],"flow":[54],"controls":[55],"(IFC)":[56],"JavaScript,":[58],"but":[59],"there":[60],"challenges":[63],"achieving":[65],"strong":[66],"IFC":[67,81],"without":[68],"excessive":[69],"performance":[70,102],"cost":[71],"or":[72],"impractical":[73],"browser":[74],"modifications.":[75],"This":[76],"paper":[77],"presents":[78],"an":[79],"inlined":[80,123],"monitor":[82],"ECMAScript":[84],"5":[85],"with":[86,95],"support,":[88],"using":[89,98],"no-sensitive-upgrade":[91],"(NSU)":[92],"technique,":[93],"together":[94],"experimental":[96],"evaluation":[97],"synthetic":[99],"mashups":[100],"benchmarks.":[103],"On":[104],"this":[105],"basis":[106],"it":[107],"should":[108],"be":[109],"possible":[110],"conduct":[112],"experiments":[113],"at":[114],"scale":[115],"evaluate":[117],"feasibility":[118],"of":[119],"both":[120],"NSU":[121],"monitoring.":[124]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":5},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":6},{"year":2018,"cited_by_count":6},{"year":2017,"cited_by_count":5},{"year":2016,"cited_by_count":6}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}