{"id":"https://openalex.org/W2986037118","doi":"https://doi.org/10.1145/3319535.3363268","title":"Poster","display_name":"Poster","publication_year":2019,"publication_date":"2019-11-06","ids":{"openalex":"https://openalex.org/W2986037118","doi":"https://doi.org/10.1145/3319535.3363268","mag":"2986037118"},"language":"en","primary_location":{"id":"doi:10.1145/3319535.3363268","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3319535.3363268","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5029714687","display_name":"Mingxue Zhang","orcid":"https://orcid.org/0000-0001-5077-685X"},"institutions":[{"id":"https://openalex.org/I177725633","display_name":"Chinese University of Hong Kong","ror":"https://ror.org/00t33hh48","country_code":"CN","type":"education","lineage":["https://openalex.org/I177725633"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Mingxue Zhang","raw_affiliation_strings":["Chinese University of Hong Kong, Sha Tin, Hong Kong"],"affiliations":[{"raw_affiliation_string":"Chinese University of Hong Kong, Sha Tin, Hong Kong","institution_ids":["https://openalex.org/I177725633"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101960529","display_name":"Wei Meng","orcid":"https://orcid.org/0000-0001-8260-3304"},"institutions":[{"id":"https://openalex.org/I177725633","display_name":"Chinese University of Hong Kong","ror":"https://ror.org/00t33hh48","country_code":"CN","type":"education","lineage":["https://openalex.org/I177725633"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Wei Meng","raw_affiliation_strings":["Chinese University of Hong Kong, Sha Tin, Hong Kong"],"affiliations":[{"raw_affiliation_string":"Chinese University of Hong Kong, Sha Tin, Hong Kong","institution_ids":["https://openalex.org/I177725633"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100672143","display_name":"Wang Yi","orcid":"https://orcid.org/0000-0001-5460-1918"},"institutions":[{"id":"https://openalex.org/I3045169105","display_name":"Southern University of Science and Technology","ror":"https://ror.org/049tv2d57","country_code":"CN","type":"education","lineage":["https://openalex.org/I3045169105"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yi Wang","raw_affiliation_strings":["Southern University of Science and Technology, Shenzhen, China"],"affiliations":[{"raw_affiliation_string":"Southern University of Science and Technology, Shenzhen, China","institution_ids":["https://openalex.org/I3045169105"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5029714687"],"corresponding_institution_ids":["https://openalex.org/I177725633"],"apc_list":null,"apc_paid":null,"fwci":0.6783,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.79023835,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"2609","last_page":"2611"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/javascript","display_name":"JavaScript","score":0.8425055742263794},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.791124701499939},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.7302408218383789},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.7194798588752747},{"id":"https://openalex.org/keywords/plug-in","display_name":"Plug-in","score":0.674016535282135},{"id":"https://openalex.org/keywords/identifier","display_name":"Identifier","score":0.4966006875038147},{"id":"https://openalex.org/keywords/web-page","display_name":"Web page","score":0.49656444787979126},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.47454318404197693},{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.4490917921066284},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.4383336305618286},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.39134690165519714},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.3136960566043854},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.17285144329071045},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.1156068742275238}],"concepts":[{"id":"https://openalex.org/C544833334","wikidata":"https://www.wikidata.org/wiki/Q2005","display_name":"JavaScript","level":2,"score":0.8425055742263794},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.791124701499939},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.7302408218383789},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.7194798588752747},{"id":"https://openalex.org/C4924752","wikidata":"https://www.wikidata.org/wiki/Q184148","display_name":"Plug-in","level":2,"score":0.674016535282135},{"id":"https://openalex.org/C154504017","wikidata":"https://www.wikidata.org/wiki/Q853614","display_name":"Identifier","level":2,"score":0.4966006875038147},{"id":"https://openalex.org/C21959979","wikidata":"https://www.wikidata.org/wiki/Q36774","display_name":"Web page","level":2,"score":0.49656444787979126},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.47454318404197693},{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.4490917921066284},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.4383336305618286},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.39134690165519714},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.3136960566043854},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.17285144329071045},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.1156068742275238}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3319535.3363268","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3319535.3363268","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/17","score":0.4399999976158142,"display_name":"Partnerships for the goals"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":10,"referenced_works":["https://openalex.org/W202191487","https://openalex.org/W1987647365","https://openalex.org/W2038461625","https://openalex.org/W2156981320","https://openalex.org/W2544889037","https://openalex.org/W2794456160","https://openalex.org/W2899384793","https://openalex.org/W2954950681","https://openalex.org/W3005541700","https://openalex.org/W4240995061"],"related_works":["https://openalex.org/W2907490423","https://openalex.org/W2548409577","https://openalex.org/W1531015913","https://openalex.org/W3180404666","https://openalex.org/W2407701912","https://openalex.org/W1484631816","https://openalex.org/W2167752994","https://openalex.org/W2907218437","https://openalex.org/W2181766705","https://openalex.org/W2188829598"],"abstract_inverted_index":{"Including":[0],"JavaScript":[1,105],"code":[2,119],"from":[3,36],"many":[4],"different":[5],"hosts":[6],"is":[7,113],"a":[8,19,27,34,44,64,69,93],"popular":[9],"practice":[10],"in":[11,38,43,56,59,82,121],"developing":[12],"web":[13,28,40,45,145],"applications.":[14],"For":[15],"example,":[16],"to":[17,31,104,115,147],"include":[18,33],"social":[20],"plugin":[21],"like":[22],"the":[23,48,60,75,118,122,130],"Facebook":[24],"Like":[25],"button,":[26],"developer":[29],"needs":[30],"only":[32],"script":[35,70],"facebook.net":[37],"her/his":[39],"page.":[41],"However,":[42],"browser,":[46],"all":[47,117],"identifiers":[49],"(i.e.,":[50],"variable":[51],"names":[52],"and":[53,100,108],"function":[54],"names)":[55],"scripts":[57],"loaded":[58],"same":[61],"frame":[62],"share":[63],"single":[65],"global":[66,76,79,106,109,139],"namespace.":[67],"Therefore,":[68],"can":[71,142],"overwrite":[72],"any":[73,102],"of":[74],"variables":[77,107],"and/or":[78],"functions":[80],"defined":[81],"another":[83],"script,":[84],"causing":[85],"unexpected":[86],"behavior.":[87],"In":[88],"this":[89],"work,":[90],"we":[91],"develop":[92],"browser-based":[94],"dynamic":[95],"analysis":[96],"framework,":[97],"that":[98,138],"monitors":[99],"records":[101],"writes":[103],"functions.":[110],"Our":[111,135],"tool":[112],"able":[114],"cover":[116],"executed":[120],"run":[123],"time.":[124],"We":[125],"detected":[126],"778":[127],"conflicts":[128,141],"across":[129],"Alexa":[131],"top":[132],"1K":[133],"websites.":[134],"results":[136],"show":[137],"name":[140],"indeed":[143],"expose":[144],"applications":[146],"security":[148],"risks.":[149]},"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2019-11-22T00:00:00"}