TY - GEN
T1 - ESCUDO
T2 - 30th IEEE International Conference on Distributed Computing Systems, ICDCS 2010
AU - Jayaraman, Karthick
AU - Du, Wenliang
AU - Rajagopalan, Balamurugan
AU - Chapin, Steve J.
PY - 2010
Y1 - 2010
N2 - Web applications are no longer simple hyperlinked documents. They have progressively evolved to become highly complex - web pages combine content from several sources (with varying levels of trustworthiness), and incorporate significant portions of client-side code. However, the prevailing web protection model, the same-origin policy, has not adequately evolved to manage the security consequences of this additional complexity. As a result, web applications have become attractive targets of exploitation. We argue that this disconnection between the protection needs of modern web applications and the protection models used by web browsers that manage those applications amounts to a failure of access control. In this paper, we present ESCUDO, a new web browser protection model designed based on established principles of mandatory access control. We describe our implementation of a prototype of ESCUDO in the Lobo web browser, and illustrate how web applications can use ESCUDO for securing their resources. Our evaluation results indicate that ESCUDO incurs low overhead. To support backwards compatibility, ESCUDO defaults to the same-origin policy for legacy applications.
AB - Web applications are no longer simple hyperlinked documents. They have progressively evolved to become highly complex - web pages combine content from several sources (with varying levels of trustworthiness), and incorporate significant portions of client-side code. However, the prevailing web protection model, the same-origin policy, has not adequately evolved to manage the security consequences of this additional complexity. As a result, web applications have become attractive targets of exploitation. We argue that this disconnection between the protection needs of modern web applications and the protection models used by web browsers that manage those applications amounts to a failure of access control. In this paper, we present ESCUDO, a new web browser protection model designed based on established principles of mandatory access control. We describe our implementation of a prototype of ESCUDO in the Lobo web browser, and illustrate how web applications can use ESCUDO for securing their resources. Our evaluation results indicate that ESCUDO incurs low overhead. To support backwards compatibility, ESCUDO defaults to the same-origin policy for legacy applications.
UR - http://www.scopus.com/inward/record.url?scp=77955860750&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=77955860750&partnerID=8YFLogxK
U2 - 10.1109/ICDCS.2010.71
DO - 10.1109/ICDCS.2010.71
M3 - Conference contribution
AN - SCOPUS:77955860750
SN - 9780769540597
T3 - Proceedings - International Conference on Distributed Computing Systems
SP - 231
EP - 240
BT - ICDCS 2010 - 2010 International Conference on Distributed Computing Systems
Y2 - 21 June 2010 through 25 June 2010
ER -