{"id":"https://openalex.org/W2404759360","doi":"https://doi.org/10.1145/2897845.2897899","title":"Data Exfiltration in the Face of CSP","display_name":"Data Exfiltration in the Face of CSP","publication_year":2016,"publication_date":"2016-05-27","ids":{"openalex":"https://openalex.org/W2404759360","doi":"https://doi.org/10.1145/2897845.2897899","mag":"2404759360"},"language":"en","primary_location":{"id":"doi:10.1145/2897845.2897899","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2897845.2897899","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054273170","display_name":"Steven Van Acker","orcid":null},"institutions":[{"id":"https://openalex.org/I66862912","display_name":"Chalmers University of Technology","ror":"https://ror.org/040wg7k59","country_code":"SE","type":"education","lineage":["https://openalex.org/I66862912"]}],"countries":["SE"],"is_corresponding":true,"raw_author_name":"Steven Van Acker","raw_affiliation_strings":["Chalmers University of Technology, Gothenburg, Sweden"],"affiliations":[{"raw_affiliation_string":"Chalmers University of Technology, Gothenburg, Sweden","institution_ids":["https://openalex.org/I66862912"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068611323","display_name":"Daniel Hausknecht","orcid":null},"institutions":[{"id":"https://openalex.org/I66862912","display_name":"Chalmers University of Technology","ror":"https://ror.org/040wg7k59","country_code":"SE","type":"education","lineage":["https://openalex.org/I66862912"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Daniel Hausknecht","raw_affiliation_strings":["Chalmers University of Technology, Gothenburg, Sweden"],"affiliations":[{"raw_affiliation_string":"Chalmers University of Technology, Gothenburg, Sweden","institution_ids":["https://openalex.org/I66862912"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5070340953","display_name":"Andrei Sabelfeld","orcid":null},"institutions":[{"id":"https://openalex.org/I66862912","display_name":"Chalmers University of Technology","ror":"https://ror.org/040wg7k59","country_code":"SE","type":"education","lineage":["https://openalex.org/I66862912"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Andrei Sabelfeld","raw_affiliation_strings":["Chalmers University of Technology, Gothenburg, Sweden"],"affiliations":[{"raw_affiliation_string":"Chalmers University of Technology, Gothenburg, Sweden","institution_ids":["https://openalex.org/I66862912"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5054273170"],"corresponding_institution_ids":["https://openalex.org/I66862912"],"apc_list":null,"apc_paid":null,"fwci":5.5429,"has_fulltext":false,"cited_by_count":16,"citation_normalized_percentile":{"value":0.95819214,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"853","last_page":"864"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9922000169754028,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.9929962158203125},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.7853926420211792},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.781699538230896},{"id":"https://openalex.org/keywords/client-side-scripting","display_name":"Client-side scripting","score":0.626828670501709},{"id":"https://openalex.org/keywords/web-browser","display_name":"Web browser","score":0.6086751222610474},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5733968615531921},{"id":"https://openalex.org/keywords/face","display_name":"Face (sociological concept)","score":0.5569227933883667},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5265843272209167},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.5254817605018616},{"id":"https://openalex.org/keywords/web-page","display_name":"Web page","score":0.3884419798851013},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.3756176829338074},{"id":"https://openalex.org/keywords/web-api","display_name":"Web API","score":0.28293415904045105},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.22379142045974731},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.17957592010498047},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.17794573307037354}],"concepts":[{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.9929962158203125},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.7853926420211792},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.781699538230896},{"id":"https://openalex.org/C195274430","wikidata":"https://www.wikidata.org/wiki/Q1650567","display_name":"Client-side scripting","level":5,"score":0.626828670501709},{"id":"https://openalex.org/C2983909278","wikidata":"https://www.wikidata.org/wiki/Q6368","display_name":"Web browser","level":3,"score":0.6086751222610474},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5733968615531921},{"id":"https://openalex.org/C2779304628","wikidata":"https://www.wikidata.org/wiki/Q3503480","display_name":"Face (sociological concept)","level":2,"score":0.5569227933883667},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5265843272209167},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.5254817605018616},{"id":"https://openalex.org/C21959979","wikidata":"https://www.wikidata.org/wiki/Q36774","display_name":"Web page","level":2,"score":0.3884419798851013},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.3756176829338074},{"id":"https://openalex.org/C127613066","wikidata":"https://www.wikidata.org/wiki/Q557770","display_name":"Web API","level":4,"score":0.28293415904045105},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.22379142045974731},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.17957592010498047},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.17794573307037354},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/2897845.2897899","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2897845.2897899","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:publications.lib.chalmers.se:237715","is_oa":false,"landing_page_url":"http://publications.lib.chalmers.se/publication/237715-data-exfiltration-in-the-face-of-csp","pdf_url":null,"source":{"id":"https://openalex.org/S4377196470","display_name":"Chalmers Publication Library (Chalmers University of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I66862912","host_organization_name":"Chalmers University of Technology","host_organization_lineage":["https://openalex.org/I66862912"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text.Article.Conference.PeerReviewed"},{"id":"pmh:oai:research.chalmers.se:237715","is_oa":false,"landing_page_url":"https://research.chalmers.se/en/publication/237715","pdf_url":null,"source":{"id":"https://openalex.org/S4306402469","display_name":"Chalmers Research (Chalmers University of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I66862912","host_organization_name":"Chalmers University of Technology","host_organization_lineage":["https://openalex.org/I66862912"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":""}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6600000262260437,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W36927914","https://openalex.org/W200873936","https://openalex.org/W1512251782","https://openalex.org/W1527571395","https://openalex.org/W1667317945","https://openalex.org/W1974977720","https://openalex.org/W1976371754","https://openalex.org/W2040210405","https://openalex.org/W2048702750","https://openalex.org/W2078238197","https://openalex.org/W2089884450","https://openalex.org/W2091747079","https://openalex.org/W2101678831","https://openalex.org/W2103262407","https://openalex.org/W2108384401","https://openalex.org/W2111427271","https://openalex.org/W2123582298","https://openalex.org/W2126461222","https://openalex.org/W2164493228","https://openalex.org/W2188225625","https://openalex.org/W2223370306","https://openalex.org/W2283491998","https://openalex.org/W2516354798","https://openalex.org/W2518665917","https://openalex.org/W6637133890","https://openalex.org/W6677247423","https://openalex.org/W6688460728"],"related_works":["https://openalex.org/W1222699389","https://openalex.org/W2548409577","https://openalex.org/W187998727","https://openalex.org/W1531015913","https://openalex.org/W2326682353","https://openalex.org/W4319431564","https://openalex.org/W3149638606","https://openalex.org/W2046312985","https://openalex.org/W2404759360","https://openalex.org/W2134058816"],"abstract_inverted_index":{"Cross-site":[0],"scripting":[1],"(XSS)":[2],"attacks":[3],"keep":[4],"plaguing":[5],"the":[6,18,22,34],"Web.":[7],"Supported":[8],"by":[9],"most":[10],"modern":[11],"browsers,":[12],"Content":[13],"Security":[14],"Policy":[15],"(CSP)":[16],"prescribes":[17],"browser":[19],"to":[20],"restrict":[21],"features":[23],"and":[24],"communication":[25],"capabilities":[26],"of":[27,36],"code":[28],"on":[29],"a":[30],"web":[31],"page,":[32],"mitigating":[33],"effects":[35],"XSS.":[37]},"counts_by_year":[{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":5},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":5},{"year":2016,"cited_by_count":1}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}