{"id":"https://openalex.org/W4281393540","doi":"https://doi.org/10.1145/3488932.3517414","title":"Server-Side Browsers","display_name":"Server-Side Browsers","publication_year":2022,"publication_date":"2022-05-24","ids":{"openalex":"https://openalex.org/W4281393540","doi":"https://doi.org/10.1145/3488932.3517414"},"language":"en","primary_location":{"id":"doi:10.1145/3488932.3517414","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3488932.3517414","pdf_url":null,"source":{"id":"https://openalex.org/S4363609011","display_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5069748873","display_name":"Marius Musch","orcid":"https://orcid.org/0000-0001-6894-1008"},"institutions":[{"id":"https://openalex.org/I94509681","display_name":"Technische Universit\u00e4t Braunschweig","ror":"https://ror.org/010nsgg66","country_code":"DE","type":"education","lineage":["https://openalex.org/I94509681"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Marius Musch","raw_affiliation_strings":["TU Braunschweig, Braunschweig, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"TU Braunschweig, Braunschweig, Germany","institution_ids":["https://openalex.org/I94509681"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5082990874","display_name":"Robin Kirchner","orcid":"https://orcid.org/0000-0002-9056-3370"},"institutions":[{"id":"https://openalex.org/I94509681","display_name":"Technische Universit\u00e4t Braunschweig","ror":"https://ror.org/010nsgg66","country_code":"DE","type":"education","lineage":["https://openalex.org/I94509681"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Robin Kirchner","raw_affiliation_strings":["TU Braunschweig, Braunschweig, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"TU Braunschweig, Braunschweig, Germany","institution_ids":["https://openalex.org/I94509681"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033776465","display_name":"Max Boll","orcid":null},"institutions":[{"id":"https://openalex.org/I94509681","display_name":"Technische Universit\u00e4t Braunschweig","ror":"https://ror.org/010nsgg66","country_code":"DE","type":"education","lineage":["https://openalex.org/I94509681"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Max Boll","raw_affiliation_strings":["TU Braunschweig, Braunschweig, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"TU Braunschweig, Braunschweig, Germany","institution_ids":["https://openalex.org/I94509681"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002067855","display_name":"Martin Johns","orcid":"https://orcid.org/0000-0003-2574-5060"},"institutions":[{"id":"https://openalex.org/I94509681","display_name":"Technische Universit\u00e4t Braunschweig","ror":"https://ror.org/010nsgg66","country_code":"DE","type":"education","lineage":["https://openalex.org/I94509681"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Martin Johns","raw_affiliation_strings":["TU Braunschweig, Braunschweig, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"TU Braunschweig, Braunschweig, Germany","institution_ids":["https://openalex.org/I94509681"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.7277,"has_fulltext":false,"cited_by_count":5,"citation_normalized_percentile":{"value":0.7098942,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1168","last_page":"1181"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/javascript","display_name":"JavaScript","score":0.8588498830795288},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7517316341400146},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6806375980377197},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5733973383903503},{"id":"https://openalex.org/keywords/server-side","display_name":"Server-side","score":0.5607278943061829},{"id":"https://openalex.org/keywords/web-browser","display_name":"Web browser","score":0.5353195071220398},{"id":"https://openalex.org/keywords/client-side","display_name":"Client-side","score":0.48678848147392273},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.42894598841667175},{"id":"https://openalex.org/keywords/webrtc","display_name":"WebRTC","score":0.421054482460022},{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.4166394770145416},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2547522187232971},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.24610736966133118},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.13240724802017212}],"concepts":[{"id":"https://openalex.org/C544833334","wikidata":"https://www.wikidata.org/wiki/Q2005","display_name":"JavaScript","level":2,"score":0.8588498830795288},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7517316341400146},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6806375980377197},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5733973383903503},{"id":"https://openalex.org/C14414571","wikidata":"https://www.wikidata.org/wiki/Q519081","display_name":"Server-side","level":2,"score":0.5607278943061829},{"id":"https://openalex.org/C2983909278","wikidata":"https://www.wikidata.org/wiki/Q6368","display_name":"Web browser","level":3,"score":0.5353195071220398},{"id":"https://openalex.org/C202477664","wikidata":"https://www.wikidata.org/wiki/Q1352449","display_name":"Client-side","level":2,"score":0.48678848147392273},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.42894598841667175},{"id":"https://openalex.org/C2779790888","wikidata":"https://www.wikidata.org/wiki/Q1089715","display_name":"WebRTC","level":2,"score":0.421054482460022},{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.4166394770145416},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2547522187232971},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.24610736966133118},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.13240724802017212},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3488932.3517414","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3488932.3517414","pdf_url":null,"source":{"id":"https://openalex.org/S4363609011","display_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1297741380","display_name":null,"funder_award_id":"EXC 2092 CASA - 390781972","funder_id":"https://openalex.org/F4320320879","funder_display_name":"Deutsche Forschungsgemeinschaft"}],"funders":[{"id":"https://openalex.org/F4320320879","display_name":"Deutsche Forschungsgemeinschaft","ror":"https://ror.org/018mejw64"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W1489243061","https://openalex.org/W1525967479","https://openalex.org/W1966143594","https://openalex.org/W1966175380","https://openalex.org/W1984978725","https://openalex.org/W2000559366","https://openalex.org/W2003115932","https://openalex.org/W2008312500","https://openalex.org/W2132791332","https://openalex.org/W2159710624","https://openalex.org/W2165597437","https://openalex.org/W2167752994","https://openalex.org/W2424402128","https://openalex.org/W2511418200","https://openalex.org/W2529161438","https://openalex.org/W2535603283","https://openalex.org/W2618635610","https://openalex.org/W2625141509","https://openalex.org/W2904027722","https://openalex.org/W2948848125","https://openalex.org/W2962940036","https://openalex.org/W3000875041","https://openalex.org/W3006928035","https://openalex.org/W3027793461","https://openalex.org/W3093930298","https://openalex.org/W3158912279","https://openalex.org/W4256444741"],"related_works":["https://openalex.org/W4302890120","https://openalex.org/W3005688497","https://openalex.org/W2966372357","https://openalex.org/W73270673","https://openalex.org/W2518019954","https://openalex.org/W2943523602","https://openalex.org/W2732083259","https://openalex.org/W2028655213","https://openalex.org/W2381849425","https://openalex.org/W1627612521"],"abstract_inverted_index":{"As":[0],"websites":[1,104],"grow":[2],"ever":[3],"more":[4,8,123],"dynamic":[5],"and":[6,39,58,100,127],"load":[7],"of":[9,27,92,116,130],"their":[10],"content":[11],"on":[12,44,110],"the":[13,45,48,90,111,114,131],"fly,":[14],"automatically":[15],"interacting":[16],"with":[17,33],"them":[18,117],"via":[19],"simple":[20],"tools":[21],"like":[22,56],"curl":[23],"is":[24],"getting":[25],"less":[26],"an":[28],"option.":[29],"Instead,":[30],"headless":[31],"browsers":[32,66,78,97,109],"JavaScript":[34],"support,":[35],"such":[36],"as":[37],"PhantomJS":[38],"Puppeteer,":[40],"have":[41],"gained":[42],"traction":[43],"Web":[46],"over":[47,128],"last":[49],"few":[50],"years.":[51],"For":[52],"various":[53],"use":[54],"cases":[55],"messengers":[57],"social":[59],"networks":[60],"that":[61,102],"display":[62],"link":[63],"previews,":[64],"these":[65,77],"visit":[67],"arbitrary,":[68],"user-controlled":[69],"URLs.":[70],"To":[71],"avoid":[72],"compromise":[73],"through":[74],"known":[75],"vulnerabilities,":[76],"need":[79],"to":[80,136,139],"be":[81,137],"diligently":[82],"kept":[83],"up-to-date.":[84],"In":[85],"this":[86],"paper,":[87],"we":[88,94],"investigate":[89],"phenomenon":[91],"what":[93],"coin":[95],"server-side":[96],"at":[98],"scale":[99],"find":[101],"many":[103],"are":[105],"running":[106],"severely":[107],"outdated":[108],"server-side.":[112],"Remarkably,":[113],"majority":[115],"had":[118],"not":[119],"been":[120],"updated":[121],"for":[122],"than":[124],"6":[125],"months":[126],"60%":[129],"discovered":[132],"implementations":[133],"were":[134],"found":[135],"vulnerable":[138],"publicly":[140],"available":[141],"proof-of-concept":[142],"exploits.":[143]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}