FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2111487235> ?p ?o ?g. }

• W2111487235 abstract "Web applications are ubiquitous, perform mission- critical tasks, and handle sensitive user data. Unfortunately, web applications are often implemented by developers with limited security skills, and, as a result, they contain vulnerabilities. Most of these vulnerabilities stem from the lack of input validation. That is, web applications use malicious input as part of a sensitive operation, without having properly checked or sanitized the input values prior to their use. Past research on vulnerability analysis has mostly focused on identifying cases in which a web application directly uses external input in critical operations. However, little research has been performed to analyze the correctness of the sanitization process. Thus, whenever a web application applies some sanitization routine to potentially malicious input, the vulnerability analysis assumes that the result is innocuous. Unfortunately, this might not be the case, as the sanitization process itself could be incorrect or incomplete. In this paper, we present a novel approach to the analysis of the sanitization process. More precisely, we combine static and dynamic analysis techniques to identify faulty sanitization procedures that can be bypassed by an attacker. We implemented our approach in a tool, called Saner, and we applied it to a number of real-world applications. Our results demonstrate that we were able to identify several novel vulnerabilities that stem from erroneous sanitization procedures." @default.
• W2111487235 created "2016-06-24" @default.
• W2111487235 creator A5002025561 @default.
• W2111487235 creator A5006916505 @default.
• W2111487235 creator A5022177364 @default.
• W2111487235 creator A5062135330 @default.
• W2111487235 creator A5075685499 @default.
• W2111487235 creator A5077875821 @default.
• W2111487235 creator A5080797120 @default.
• W2111487235 date "2008-05-01" @default.
• W2111487235 modified "2023-10-02" @default.
• W2111487235 title "Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications" @default.
• W2111487235 cites W1600965014 @default.
• W2111487235 cites W1963569294 @default.
• W2111487235 cites W1983142587 @default.
• W2111487235 cites W1985551847 @default.
• W2111487235 cites W2001693166 @default.
• W2111487235 cites W2003115932 @default.
• W2111487235 cites W2008158744 @default.
• W2111487235 cites W2024795941 @default.
• W2111487235 cites W2039994361 @default.
• W2111487235 cites W2100000146 @default.
• W2111487235 cites W2107604680 @default.
• W2111487235 cites W2114808014 @default.
• W2111487235 cites W2129975948 @default.
• W2111487235 cites W2144696387 @default.
• W2111487235 cites W2148001343 @default.
• W2111487235 cites W2158126684 @default.
• W2111487235 cites W2158600037 @default.
• W2111487235 cites W2161688581 @default.
• W2111487235 cites W3004040842 @default.
• W2111487235 cites W4232808412 @default.
• W2111487235 doi "https://doi.org/10.1109/sp.2008.22" @default.
• W2111487235 hasPublicationYear "2008" @default.
• W2111487235 type Work @default.
• W2111487235 sameAs 2111487235 @default.
• W2111487235 citedByCount "312" @default.
• W2111487235 countsByYear W21114872352012 @default.
• W2111487235 countsByYear W21114872352013 @default.
• W2111487235 countsByYear W21114872352014 @default.
• W2111487235 countsByYear W21114872352015 @default.
• W2111487235 countsByYear W21114872352016 @default.
• W2111487235 countsByYear W21114872352017 @default.
• W2111487235 countsByYear W21114872352018 @default.
• W2111487235 countsByYear W21114872352019 @default.
• W2111487235 countsByYear W21114872352020 @default.
• W2111487235 countsByYear W21114872352021 @default.
• W2111487235 countsByYear W21114872352022 @default.
• W2111487235 countsByYear W21114872352023 @default.
• W2111487235 crossrefType "proceedings-article" @default.
• W2111487235 hasAuthorship W2111487235A5002025561 @default.
• W2111487235 hasAuthorship W2111487235A5006916505 @default.
• W2111487235 hasAuthorship W2111487235A5022177364 @default.
• W2111487235 hasAuthorship W2111487235A5062135330 @default.
• W2111487235 hasAuthorship W2111487235A5075685499 @default.
• W2111487235 hasAuthorship W2111487235A5077875821 @default.
• W2111487235 hasAuthorship W2111487235A5080797120 @default.
• W2111487235 hasConcept C110875604 @default.
• W2111487235 hasConcept C111919701 @default.
• W2111487235 hasConcept C112930515 @default.
• W2111487235 hasConcept C118643609 @default.
• W2111487235 hasConcept C136764020 @default.
• W2111487235 hasConcept C199360897 @default.
• W2111487235 hasConcept C38652104 @default.
• W2111487235 hasConcept C41008148 @default.
• W2111487235 hasConcept C55439883 @default.
• W2111487235 hasConcept C59241245 @default.
• W2111487235 hasConcept C71924100 @default.
• W2111487235 hasConcept C79373723 @default.
• W2111487235 hasConcept C95713431 @default.
• W2111487235 hasConcept C97686452 @default.
• W2111487235 hasConcept C98045186 @default.
• W2111487235 hasConceptScore W2111487235C110875604 @default.
• W2111487235 hasConceptScore W2111487235C111919701 @default.
• W2111487235 hasConceptScore W2111487235C112930515 @default.
• W2111487235 hasConceptScore W2111487235C118643609 @default.
• W2111487235 hasConceptScore W2111487235C136764020 @default.
• W2111487235 hasConceptScore W2111487235C199360897 @default.
• W2111487235 hasConceptScore W2111487235C38652104 @default.
• W2111487235 hasConceptScore W2111487235C41008148 @default.
• W2111487235 hasConceptScore W2111487235C55439883 @default.
• W2111487235 hasConceptScore W2111487235C59241245 @default.
• W2111487235 hasConceptScore W2111487235C71924100 @default.
• W2111487235 hasConceptScore W2111487235C79373723 @default.
• W2111487235 hasConceptScore W2111487235C95713431 @default.
• W2111487235 hasConceptScore W2111487235C97686452 @default.
• W2111487235 hasConceptScore W2111487235C98045186 @default.
• W2111487235 hasLocation W21114872351 @default.
• W2111487235 hasOpenAccess W2111487235 @default.
• W2111487235 hasPrimaryLocation W21114872351 @default.
• W2111487235 hasRelatedWork W1964172147 @default.
• W2111487235 hasRelatedWork W2377966044 @default.
• W2111487235 hasRelatedWork W2619156148 @default.
• W2111487235 hasRelatedWork W2766405666 @default.
• W2111487235 hasRelatedWork W2997044556 @default.
• W2111487235 hasRelatedWork W3159269399 @default.
• W2111487235 hasRelatedWork W4214665471 @default.
• W2111487235 hasRelatedWork W4380354609 @default.
• W2111487235 hasRelatedWork W2753527792 @default.
• W2111487235 hasRelatedWork W2991936585 @default.

• next