{"id":"https://openalex.org/W3164306598","doi":"https://doi.org/10.1145/3447852.3458718","title":"Talking About My Generation","display_name":"Talking About My Generation","publication_year":2021,"publication_date":"2021-04-25","ids":{"openalex":"https://openalex.org/W3164306598","doi":"https://doi.org/10.1145/3447852.3458718","mag":"3164306598"},"language":"en","primary_location":{"id":"doi:10.1145/3447852.3458718","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3447852.3458718","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th European Workshop on Systems Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067741827","display_name":"Souphiane Bensalim","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Souphiane Bensalim","raw_affiliation_strings":["SAP Security Research"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SAP Security Research","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5016611640","display_name":"David Klein","orcid":"https://orcid.org/0000-0001-8468-8516"},"institutions":[{"id":"https://openalex.org/I94509681","display_name":"Technische Universit\u00e4t Braunschweig","ror":"https://ror.org/010nsgg66","country_code":"DE","type":"education","lineage":["https://openalex.org/I94509681"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"David Klein","raw_affiliation_strings":["Technische Universit\u00e4t Braunschweig"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Braunschweig","institution_ids":["https://openalex.org/I94509681"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5036574988","display_name":"Thomas Barber","orcid":"https://orcid.org/0000-0002-1538-5033"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Thomas Barber","raw_affiliation_strings":["SAP Security Research"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SAP Security Research","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002067855","display_name":"Martin Johns","orcid":"https://orcid.org/0000-0003-2574-5060"},"institutions":[{"id":"https://openalex.org/I94509681","display_name":"Technische Universit\u00e4t Braunschweig","ror":"https://ror.org/010nsgg66","country_code":"DE","type":"education","lineage":["https://openalex.org/I94509681"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Martin Johns","raw_affiliation_strings":["Technische Universit\u00e4t Braunschweig"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Braunschweig","institution_ids":["https://openalex.org/I94509681"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5067741827"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.6972,"has_fulltext":false,"cited_by_count":20,"citation_normalized_percentile":{"value":0.93696156,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"27","last_page":"33"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9923999905586243,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.9616947174072266},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.9391552209854126},{"id":"https://openalex.org/keywords/javascript","display_name":"JavaScript","score":0.8910745978355408},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7992573976516724},{"id":"https://openalex.org/keywords/html5","display_name":"HTML5","score":0.7356414198875427},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.6208896636962891},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5230682492256165},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.5188235640525818},{"id":"https://openalex.org/keywords/client-side","display_name":"Client-side","score":0.4983508586883545},{"id":"https://openalex.org/keywords/dynamic-web-page","display_name":"Dynamic web page","score":0.43501484394073486},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3815438151359558},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.3630245625972748},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.33535465598106384},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.250156044960022},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.22134262323379517}],"concepts":[{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.9616947174072266},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.9391552209854126},{"id":"https://openalex.org/C544833334","wikidata":"https://www.wikidata.org/wiki/Q2005","display_name":"JavaScript","level":2,"score":0.8910745978355408},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7992573976516724},{"id":"https://openalex.org/C84063617","wikidata":"https://www.wikidata.org/wiki/Q2053","display_name":"HTML5","level":2,"score":0.7356414198875427},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.6208896636962891},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5230682492256165},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.5188235640525818},{"id":"https://openalex.org/C202477664","wikidata":"https://www.wikidata.org/wiki/Q1352449","display_name":"Client-side","level":2,"score":0.4983508586883545},{"id":"https://openalex.org/C100158260","wikidata":"https://www.wikidata.org/wiki/Q1650567","display_name":"Dynamic web page","level":3,"score":0.43501484394073486},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3815438151359558},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.3630245625972748},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.33535465598106384},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.250156044960022},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.22134262323379517}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3447852.3458718","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3447852.3458718","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th European Workshop on Systems Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1297741380","display_name":null,"funder_award_id":"EXC 2092 CASA - 390781972","funder_id":"https://openalex.org/F4320320879","funder_display_name":"Deutsche Forschungsgemeinschaft"}],"funders":[{"id":"https://openalex.org/F4320320879","display_name":"Deutsche Forschungsgemeinschaft","ror":"https://ror.org/018mejw64"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W1775663022","https://openalex.org/W1991074244","https://openalex.org/W2038841294","https://openalex.org/W2049214202","https://openalex.org/W2177614278","https://openalex.org/W2336650211","https://openalex.org/W2743909715","https://openalex.org/W2752565799","https://openalex.org/W2753884237","https://openalex.org/W2790761820","https://openalex.org/W2901089484","https://openalex.org/W2904027722","https://openalex.org/W2945710818","https://openalex.org/W2962940036","https://openalex.org/W3155418077"],"related_works":["https://openalex.org/W2571973613","https://openalex.org/W2142719107","https://openalex.org/W2609132699","https://openalex.org/W2283233106","https://openalex.org/W2548409577","https://openalex.org/W2407701912","https://openalex.org/W2104452318","https://openalex.org/W2735662051","https://openalex.org/W4237311920","https://openalex.org/W2187721372"],"abstract_inverted_index":{"Since":[0],"the":[1,15,18,44,48,64,73,103,108,111],"invention":[2],"of":[3,51,66,110,122,139,147],"JavaScript":[4,127],"25":[5],"years":[6],"ago,":[7],"website":[8],"functionality":[9,42],"has":[10],"been":[11],"continuously":[12],"shifting":[13],"from":[14,102],"server-side":[16],"to":[17,126],"client-side.":[19],"Web":[20,112],"browsers":[21],"have":[22],"evolved":[23],"into":[24,107],"an":[25],"application":[26],"platform,":[27],"and":[28,118,149],"HTML5":[29],"emerged":[30],"as":[31],"a":[32,80,135],"first-class":[33],"environment":[34],"for":[35],"building":[36],"rich":[37],"cross-platform":[38],"applications.":[39],"This":[40,133],"additional":[41],"on":[43,87,142],"client-side":[45],"comes":[46],"with":[47,55],"added":[49],"risk":[50],"new":[52],"security":[53],"issues":[54],"increasingly":[56],"severe":[57],"consequences.":[58],"In":[59,91],"this":[60,93],"work,":[61],"we":[62],"investigate":[63],"prevalence":[65],"DOM-based":[67],"Cross-Site":[68],"Scripting":[69],"(DOM-based":[70],"XSS)":[71],"in":[72],"top":[74],"100,000":[75],"most":[76],"popular":[77],"websites":[78],"using":[79],"novel":[81],"targeted":[82],"exploit":[83,116,137],"generation":[84,117],"technique":[85],"based":[86],"dynamic":[88],"data-flow":[89],"tracking.":[90],"total,":[92],"work":[94],"finds":[95],"15,710":[96],"potentially":[97],"insecure":[98],"dataflows":[99],"where":[100],"information":[101],"URL":[104],"is":[105],"injected":[106],"HTML":[109],"page.":[113],"Using":[114],"large-scale":[115],"validation":[119],"services,":[120],"7199":[121],"these":[123],"flows":[124],"lead":[125],"execution,":[128],"across":[129],"711":[130],"different":[131],"domains.":[132],"represents":[134],"successful":[136],"rate":[138],"45.82%,":[140],"improving":[141],"previous":[143],"methods":[144],"by":[145],"factors":[146],"1.8":[148],"1.9":[150],"respectively.":[151]},"counts_by_year":[{"year":2025,"cited_by_count":7},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":5}],"updated_date":"2026-05-05T08:41:31.759640","created_date":"2025-10-10T00:00:00"}