FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W1075951497> ?p ?o ?g. }

• W1075951497 endingPage "80" @default.
• W1075951497 startingPage "62" @default.
• W1075951497 abstract "In this paper, we present a systematic study of browser cache poisoning (BCP) attacks, wherein a network attacker performs a one-time Man-In-The-Middle (MITM) attack on a user's HTTPS session, and substitutes cached resources with malicious ones. We investigate the feasibility of such attacks on five mainstream desktop browsers and 16 popular mobile browsers. We find that browsers are highly inconsistent in their caching policies for loading resources over SSL connections with invalid certificates. In particular, the majority of desktop browsers (99% of the market share) and popular mobile browsers (over a billion user downloads) are affected by BCP attacks to a large extent. Existing solutions for safeguarding HTTPS sessions fail to provide comprehensive defense against this threat. We provide guidelines for users and browser vendors to defeat BCP attacks. Meanwhile, we propose defense techniques for website developers to mitigate an important subset of BCP attacks on existing browsers without cooperation of users and browser vendors. We have reported our findings to browser vendors and confirmed the vulnerabilities. For example, Google has acknowledged the vulnerability we reported in Chrome's HTML5 AppCache and has fixed the problem according to our suggestion." @default.
• W1075951497 created "2016-06-24" @default.
• W1075951497 creator A5005606039 @default.
• W1075951497 creator A5023882219 @default.
• W1075951497 creator A5034054081 @default.
• W1075951497 creator A5070140780 @default.
• W1075951497 creator A5084611756 @default.
• W1075951497 creator A5089061086 @default.
• W1075951497 date "2015-11-01" @default.
• W1075951497 modified "2023-10-16" @default.
• W1075951497 title "Man-in-the-browser-cache: Persisting HTTPS attacks via browser cache poisoning" @default.
• W1075951497 cites W2076014973 @default.
• W1075951497 cites W2088805625 @default.
• W1075951497 cites W2124748898 @default.
• W1075951497 cites W2150297372 @default.
• W1075951497 doi "https://doi.org/10.1016/j.cose.2015.07.004" @default.
• W1075951497 hasPublicationYear "2015" @default.
• W1075951497 type Work @default.
• W1075951497 sameAs 1075951497 @default.
• W1075951497 citedByCount "35" @default.
• W1075951497 countsByYear W10759514972016 @default.
• W1075951497 countsByYear W10759514972017 @default.
• W1075951497 countsByYear W10759514972018 @default.
• W1075951497 countsByYear W10759514972019 @default.
• W1075951497 countsByYear W10759514972020 @default.
• W1075951497 countsByYear W10759514972021 @default.
• W1075951497 countsByYear W10759514972022 @default.
• W1075951497 crossrefType "journal-article" @default.
• W1075951497 hasAuthorship W1075951497A5005606039 @default.
• W1075951497 hasAuthorship W1075951497A5023882219 @default.
• W1075951497 hasAuthorship W1075951497A5034054081 @default.
• W1075951497 hasAuthorship W1075951497A5070140780 @default.
• W1075951497 hasAuthorship W1075951497A5084611756 @default.
• W1075951497 hasAuthorship W1075951497A5089061086 @default.
• W1075951497 hasConcept C108827166 @default.
• W1075951497 hasConcept C111919701 @default.
• W1075951497 hasConcept C115537543 @default.
• W1075951497 hasConcept C136764020 @default.
• W1075951497 hasConcept C196491621 @default.
• W1075951497 hasConcept C2779182362 @default.
• W1075951497 hasConcept C38652104 @default.
• W1075951497 hasConcept C41008148 @default.
• W1075951497 hasConcept C95713431 @default.
• W1075951497 hasConcept C99138194 @default.
• W1075951497 hasConceptScore W1075951497C108827166 @default.
• W1075951497 hasConceptScore W1075951497C111919701 @default.
• W1075951497 hasConceptScore W1075951497C115537543 @default.
• W1075951497 hasConceptScore W1075951497C136764020 @default.
• W1075951497 hasConceptScore W1075951497C196491621 @default.
• W1075951497 hasConceptScore W1075951497C2779182362 @default.
• W1075951497 hasConceptScore W1075951497C38652104 @default.
• W1075951497 hasConceptScore W1075951497C41008148 @default.
• W1075951497 hasConceptScore W1075951497C95713431 @default.
• W1075951497 hasConceptScore W1075951497C99138194 @default.
• W1075951497 hasFunder F4320320696 @default.
• W1075951497 hasFunder F4320320751 @default.
• W1075951497 hasFunder F4320321001 @default.
• W1075951497 hasFunder F4320322919 @default.
• W1075951497 hasLocation W10759514971 @default.
• W1075951497 hasOpenAccess W1075951497 @default.
• W1075951497 hasPrimaryLocation W10759514971 @default.
• W1075951497 hasRelatedWork W1605665967 @default.
• W1075951497 hasRelatedWork W2139215234 @default.
• W1075951497 hasRelatedWork W2348742136 @default.
• W1075951497 hasRelatedWork W2356060994 @default.
• W1075951497 hasRelatedWork W2357388125 @default.
• W1075951497 hasRelatedWork W2372542233 @default.
• W1075951497 hasRelatedWork W2748952813 @default.
• W1075951497 hasRelatedWork W2957999883 @default.
• W1075951497 hasRelatedWork W3087157779 @default.
• W1075951497 hasRelatedWork W4306770904 @default.
• W1075951497 hasVolume "55" @default.
• W1075951497 isParatext "false" @default.
• W1075951497 isRetracted "false" @default.
• W1075951497 magId "1075951497" @default.
• W1075951497 workType "article" @default.