Title:
|
A FRAMEWORK FOR WEB 2.0 SECURE WIDGETS |
Author(s):
|
Vagner Figuerêdo de Santana, Maria Cecília Calani Baranauskas, Marco Aurélio Amaral Henriques |
ISBN:
|
978-989-8533-01-2 |
Editors:
|
Bebo White, Pedro Isaías and Flávia Maria Santoro |
Year:
|
2011 |
Edition:
|
Single |
Keywords:
|
Secure widget, Cross Site Scripting, XSS, Cross Site Request Forgery, CSRF, Secure JavaScript |
Type:
|
Full Paper |
First Page:
|
69 |
Last Page:
|
76 |
Language:
|
English |
Cover:
|
|
Full Contents:
|
click to dowload
|
Paper Abstract:
|
The evolution from Web 1.0 to Web 2.0 brought possibilities of sharing information with a power and reach never seen before. However, this power of sharing content also brought a number of possibilities of spreading malicious code. This work presents common threats regarding JavaScript usage in the Web 2.0 and proposes how to develop secure widgets considering contemporaneous technologies. From the presented proposal one expects that Web developers could reuse the framework in order to avoid attack vectors combined with the power of sharing and spreading information present in the Web 2.0 and not requiring end users to perform any action. |
|
|
|
|