{"id":"https://openalex.org/W4306406238","doi":"https://doi.org/10.1145/3545948.3545992","title":"Context-Auditor: Context-sensitive Content Injection Mitigation","display_name":"Context-Auditor: Context-sensitive Content Injection Mitigation","publication_year":2022,"publication_date":"2022-10-17","ids":{"openalex":"https://openalex.org/W4306406238","doi":"https://doi.org/10.1145/3545948.3545992"},"language":"en","primary_location":{"id":"doi:10.1145/3545948.3545992","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3545948.3545992","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054507456","display_name":"Faezeh Kalantari","orcid":"https://orcid.org/0000-0002-9581-6269"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Faezeh Kalantari","raw_affiliation_strings":["Arizona State University, United States of America"],"affiliations":[{"raw_affiliation_string":"Arizona State University, United States of America","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028571176","display_name":"Mehrnoosh Zaeifi","orcid":"https://orcid.org/0009-0007-0236-1079"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mehrnoosh Zaeifi","raw_affiliation_strings":["Arizona State University, United States of America"],"affiliations":[{"raw_affiliation_string":"Arizona State University, United States of America","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076987446","display_name":"Tiffany Bao","orcid":"https://orcid.org/0000-0001-6424-0001"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tiffany Bao","raw_affiliation_strings":["Arizona State University, United States of America"],"affiliations":[{"raw_affiliation_string":"Arizona State University, United States of America","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100653715","display_name":"Ruoyu Wang","orcid":"https://orcid.org/0000-0003-4623-6724"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ruoyu Wang","raw_affiliation_strings":["Arizona State University, United States of America"],"affiliations":[{"raw_affiliation_string":"Arizona State University, United States of America","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026842092","display_name":"Yan Shoshitaishvili","orcid":"https://orcid.org/0000-0001-8832-1789"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yan Shoshitaishvili","raw_affiliation_strings":["Arizona State University, United States of America"],"affiliations":[{"raw_affiliation_string":"Arizona State University, United States of America","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5050806439","display_name":"Adam Doup\u00e9","orcid":"https://orcid.org/0000-0003-2634-3901"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Adam Doup\u00e9","raw_affiliation_strings":["Arizona State University, United States of America"],"affiliations":[{"raw_affiliation_string":"Arizona State University, United States of America","institution_ids":["https://openalex.org/I55732556"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5054507456"],"corresponding_institution_ids":["https://openalex.org/I55732556"],"apc_list":null,"apc_paid":null,"fwci":0.9094,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.801048,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"431","last_page":"445"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9822999835014343,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.7599100470542908},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.6553314924240112},{"id":"https://openalex.org/keywords/accounting","display_name":"Accounting","score":0.4210087060928345},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.3935122489929199},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.3489213287830353},{"id":"https://openalex.org/keywords/geology","display_name":"Geology","score":0.08898773789405823}],"concepts":[{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.7599100470542908},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.6553314924240112},{"id":"https://openalex.org/C121955636","wikidata":"https://www.wikidata.org/wiki/Q4116214","display_name":"Accounting","level":1,"score":0.4210087060928345},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.3935122489929199},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.3489213287830353},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.08898773789405823},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3545948.3545992","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3545948.3545992","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.8500000238418579}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W1511560695","https://openalex.org/W1561387739","https://openalex.org/W1983142587","https://openalex.org/W1991074244","https://openalex.org/W2049214202","https://openalex.org/W2055564711","https://openalex.org/W2085925880","https://openalex.org/W2088475168","https://openalex.org/W2089448621","https://openalex.org/W2090697721","https://openalex.org/W2103262407","https://openalex.org/W2111487235","https://openalex.org/W2129362719","https://openalex.org/W2138788987","https://openalex.org/W2151619740","https://openalex.org/W2333725978","https://openalex.org/W2535549398","https://openalex.org/W2743909715","https://openalex.org/W2765755114","https://openalex.org/W2766183686","https://openalex.org/W2790761820","https://openalex.org/W2901089484","https://openalex.org/W2948008293","https://openalex.org/W3008757785","https://openalex.org/W3214196324","https://openalex.org/W4225999506","https://openalex.org/W4323054516"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W1967231687","https://openalex.org/W3101499207"],"abstract_inverted_index":{"Cross-site":[0],"scripting":[1],"(XSS)":[2],"is":[3,47,101,113],"the":[4,13,36,48,76,80,107],"most":[5],"common":[6,77],"vulnerability":[7],"class":[8],"in":[9,35,106],"web":[10],"applications":[11],"over":[12],"last":[14],"decade.":[15],"Much":[16],"research":[17],"attention":[18],"has":[19],"focused":[20],"on":[21],"building":[22],"exploit":[23],"mitigation":[24],"defenses":[25],"for":[26],"this":[27,69],"problem,":[28],"but":[29,94],"no":[30],"technique":[31,42,54,70],"provides":[32],"adequate":[33],"protection":[34],"face":[37],"of":[38,82],"advanced":[39],"attacks.":[40],"One":[41],"that":[43,55,75,112],"bypasses":[44],"XSS":[45,90],"mitigations":[46],"scriptless":[49,92],"attack:":[50],"a":[51],"content":[52,84],"injection":[53,63,85],"uses":[56],"(among":[57],"other":[58],"options)":[59],"CSS":[60],"and":[61,71,91,98],"HTML":[62],"to":[64],"infiltrate":[65],"data.":[66],"In":[67],"studying":[68],"others,":[72,100],"we":[73],"realized":[74],"property":[78],"among":[79],"exploitation":[81],"all":[83],"vulnerabilities,":[86],"including":[87],"not":[88],"just":[89],"attacks,":[93],"also":[95],"command":[96],"injections":[97],"several":[99],"an":[102],"unintended":[103],"context":[104],"switch":[105],"victim":[108],"program\u2019s":[109],"parsing":[110],"engine":[111],"caused":[114],"by":[115],"untrusted":[116],"user":[117],"input.":[118]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}