NDLI: mXSS attacks: attacking well-secured web-applications by using innerHTML mutations

Please wait, while we are loading the content...

A security framework for the analysis and design of software attestation

Rethinking SSL development in an appified world

A clinical study of risk factors related to malware infections

Honeywords: making password-cracking detectable

Monitor integrity protection with space efficiency and separate compilation

Multi-cloud oblivious storage

Path ORAM: an extremely simple oblivious RAM protocol

Users get routed: traffic correlation on tor by realistic adversaries

An analysis of the EMV channel establishment protocol

The science, engineering and business of cyber security

AVANT-GUARD: scalable and vigilant switch flow management in software-defined networks

Impact of integrity attacks on real-time pricing in smart grids

Practical constructions and new proof methods for large universe attribute-based encryption

Obfuscation resilient binary code reuse through trace-oriented programming

Fast two-party secure computation with minimal assumptions

Belief semantics of authorization logic

When kids' toys breach mobile phone security

Security analysis of pseudo-random number generators with input: /dev/random is not robust

FANCI: identification of stealthy malicious logic using boolean functional analysis

Polyglots: crossing origins by crossing formats

When private set intersection meets big data: an efficient and scalable protocol

Düppel: retrofitting commodity operating systems to mitigate cache side channels in the cloud

Verifiable delegation of computation on outsourced data

Membership privacy: a unifying framework for privacy definitions

Control-Alt-Hack: the design and evaluation of a card game for computer security awareness and education

The cyber arms race

How to keep a secret: leakage deterring public-key cryptosystems

ASIST: architectural support for instruction set randomization

Identity, location, disease and more: inferring your secrets from android public resources

Cross-origin pixel stealing: timing attacks using CSS filters

Anonymous credentials light

FPDetective: dusting the web for fingerprinters

Content-based isolation: rethinking isolation policy design on client systems

Certified computer-aided cryptography: efficient provably secure machine code from high-level implementations

Efficient targeted key subset retrieval in fractal hash sequences

DEMO: Adjustably encrypted in-memory column-store

POSTER: Critique of the CISSP common body of knowledge of cryptography

12th workshop on privacy in the electronic society (WPES 2013)

Constructive and destructive aspects of embedded security in the internet of things

OASIS: on achieving a sanctuary for integrity and secrecy on untrusted platforms

Protocol misidentification made easy with format-transforming encryption

Delta: automatic identification of unknown web-based infection campaigns

Quantifying the security of graphical passwords: the case of android unlock patterns

Relational abstract interpretation for the verification of 2-hypersafety properties

Policy-based secure deletion

PHANTOM: practical oblivious computation in a secure processor

PCTCP: per-circuit TCP-over-IPsec transport for anonymous communication overlay networks

On the security of TLS renegotiation

MinimaLT: minimal-latency networking through better security

Configuration-based IDS for advanced metering infrastructure

Blackbox traceable CP-ABE: how to catch people leaking their keys by selling decryption devices on ebay

Chucky: exposing missing checks in source code for vulnerability discovery

More efficient oblivious transfer and extensions for faster secure computation

Automatic verification of protocols with lists of unbounded length

Vetting undesirable behaviors in android apps with permission use analysis

Predictability of Android OpenSSL's pseudo random number generator

Security analysis of integrated circuit camouflaging

ViceROI: catching click-spam in search ad networks

Privacy-preserving matrix factorization

Tappan Zee (north) bridge: mining memory accesses for introspection

Outsourced symmetric private information retrieval

Geo-indistinguishability: differential privacy for location-based systems

Security analysis of a widely deployed locking system

Zero-knowledge using garbled circuits: how to prove non-algebraic statements efficiently

Librando: transparent code randomization for just-in-time compilers

Preventing accidental data disclosure in modern operating systems

Seeing double: reconstructing obscured typed input from repeated compromising reflections

Heart-to-heart (H2H): authentication for implanted medical devices

Addressing the concerns of the lacks family: quantification of kin genomic privacy

Diglossia: detecting code injection attacks with precision and efficiency

Computationally complete symbolic attacker and key exchange

HIFS: history independence for file systems

DEMO: Demonstrating a trust framework for evaluating GNSS signal integrity

POSTER: Preserving privacy and accountability for personal devices

Third international workshop on trustworthy embedded devices (TrustED 2013)

Trusted execution environments on mobile devices

BIOS chronomancy: fixing the core root of trust for measurement

An empirical study of cryptographic misuse in android applications

Beheading hydras: performing effective botnet takedowns

Measuring password guessability for an entire university

Formal verification of information flow security for a simple arm-based separation kernel

Secure data deletion from persistent media

Practical dynamic proofs of retrievability

Cover your ACKs: pitfalls of covert channel censorship circumvention

Using SMT solvers to automate design tasks for encryption and signature schemes

Scheduling black-box mutational fuzzing

An architecture for practical actively secure MPC with dishonest majority

Relational abstraction in community-based secure collaboration

The impact of vendor customizations on android security

Delegatable pseudorandom functions and applications

Low-fat pointers: compact encoding and efficient gate-level implementation of fat pointers for spatial safety and capability-based security

mXSS attacks: attacking well-secured web-applications by using innerHTML mutations

PICCO: a general-purpose compiler for private distributed computation

Towards reducing the attack surface of software backdoors

Elligator: elliptic-curve points indistinguishable from uniform random strings

LogGC: garbage collecting audit log

AppIntent: analyzing sensitive data transmission in android for privacy leakage detection

The robustness of hollow CAPTCHAs

OAKE: a new family of implicitly authenticated diffie-hellman protocols

Hang with your buddies to resist intersection attacks

25 million flows later: large-scale detection of DOM-based XSS

Fully automated analysis of padding-based encryption in the computational model

AUTOCRYPT: enabling homomorphic computation on servers to protect sensitive web content

DEMO: Inherent PUFs and secure PRNGs on commercial off-the-shelf microcontrollers

POSTER: Caching oblivious memory access: an extension to the HCRYPT virtual machine

CyCAR'2013: first international academic workshop on security, privacy and dependability for cybervehicles

Easily instrumenting android applications for security purposes

Flexible and scalable digital signatures in TPM 2.0

Detecting stealthy, distributed SSH brute-forcing

Shady paths: leveraging surfing crowds to detect malicious web pages

SAuth: protecting user accounts from password database leaks

ShadowReplica: efficient parallelization of dynamic data flow tracking

PoWerStore: proofs of writing for efficient and robust storage

Unauthorized origin crossing on mobile platforms: threats and mitigation

Ensuring high-quality randomness in cryptographic key generation

Breaking and entering through the silicon

deDacota: toward preventing server-side XSS via automatic code and data separation

Deduction soundness: prove one, get five for free

Protecting sensitive web content from client-side vulnerabilities with CRYPTONS

DEMO: An IDS framework for internet of things empowered by 6LoWPAN

POSTER: Data quality evaluation: integrating security and accuracy

Summary/overview for artificial intelligence and security (AISec'13)

DEMO: Secure and customizable web development in the safe activation framework

POSTER: Graphical password using object-based image ranking

The first workshop on language support for privacy-enhancing technologies (PETShop'13)

DEMO: Enabling trusted stores for android

POSTER: A semantic-aware approach to reasoning about network traffic relations

Fifth ACM cloud computing security workshop (CCSW 2013)

DEMO: Gradiant asymmetric encryption and verification systems based on handwritten signature

POSTER: Detecting malware through temporal function-based features

CCS'13 co-located workshop summary for SPSM 2013

DEMO: On the real-time masking of the sound of credit cards using hot patching

POSTER: Event-based isolation of critical data in the cloud

Smart energy grid security workshop (SEGS'13)

POSTER: BotFlex: a community-driven tool for botnetdetection

Eighth ACM workshop on digital identity management (DIM 2013): identity at the crossroads

POSTER: Signal anomaly based attack detection in wireless sensor networks

POSTER: Enhanced embedded device security by combining hardware-based trust mechanisms

POSTER: On the anonymity of Israel's general elections

POSTER: Secure authentication from facial attributeswith no privacy loss

POSTER: Performance signatures of mobile phone browsers

POSTER: A new framework against privilege escalation attacks on android

POSTER: TRIPLEX: verifying data minimisation in communication systems

POSTER: SHAMROCK: self contained cryptography and key management processor

POSTER: trend of online flash XSS vulnerabilities

POSTER: Cross-platform malware: write once, infect everywhere

POSTER: Introducing pathogen: a real-time virtualmachine introspection framework

POSTER: PnP: improving web browsing performance over tor using web resource prefetch-and-push

POSTER: Sniffing and propagating malwares through WPAD deception in LANs

POSTER: A footprint of third-party tracking on mobile web

POSTER: Dr. Watson provides data for post-breach analysis

POSTER: Reflected attacks abusing honeypots

POSTER: TouchCtrl: fine-grained access control for collaborative environments

POSTER: CRYPTSERVER: strong data protection in commodity LAMP servers

POSTER: Identity-based steganography and its applications to censorship resistance

POSTER: Sechduler: a security-aware kernel scheduler

POSTER: Passwords on flexible display devices

POSTER: Revisiting anomaly detection system design philosophy

mXSS attacks: attacking well-secured web-applications by using innerHTML mutations

Content Provider	ACM Digital Library
Author	Schwenk, Jörg Heiderich, Mario Frosch, Tilman Magazinius, Jonas Yang, Edward Z.
Abstract	Back in 2007, Hasegawa discovered a novel Cross-Site Scripting (XSS) vector based on the mistreatment of the backtick character in a single browser implementation. This initially looked like an implementation error that could easily be fixed. Instead, as this paper shows, it was the first example of a new class of XSS vectors, the class of mutation-based XSS (mXSS) vectors, which may occur in innerHTML and related properties. mXSS affects all three major browser families: IE, Firefox, and Chrome. We were able to place stored mXSS vectors in high-profile applications like Yahoo! Mail, Rediff Mail, OpenExchange, Zimbra, Roundcube, and several commercial products. mXSS vectors bypassed widely deployed server-side XSS protection techniques (like HTML Purifier, kses, htmlLawed, Blueprint and Google Caja), client-side filters (XSS Auditor, IE XSS Filter), Web Application Firewall (WAF) systems, as well as Intrusion Detection and Intrusion Prevention Systems (IDS/IPS). We describe a scenario in which seemingly immune entities are being rendered prone to an attack based on the behavior of an involved party, in our case the browser. Moreover, it proves very difficult to mitigate these attacks: In browser implementations, mXSS is closely related to performance enhancements applied to the HTML code before rendering; in server side filters, strict filter rules would break many web applications since the mXSS vectors presented in this paper are harmless when sent to the browser. This paper introduces and discusses a set of seven different subclasses of mXSS attacks, among which only one was previously known. The work evaluates the attack surface, showcases examples of vulnerable high-profile applications, and provides a set of practicable and low-overhead solutions to defend against these kinds of attacks.
Starting Page	777
Ending Page	788
Page Count	12
File Format	PDF
ISBN	9781450324779
DOI	10.1145/2508859.2516723
Language	English
Publisher	Association for Computing Machinery (ACM)
Publisher Date	2013-11-04
Publisher Place	New York
Access Restriction	Subscribed
Subject Keyword	Innerhtml Cross-site scripting Browser security Mutation-based xss Web security Unauthorized access Mxss
Content Type	Text
Resource Type	Article

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in