Security

Semantics and Security Issues in JavaScript

Download Now Free registration required

Executive Summary

There is a plethora of research papers describing the deep semantics of JavaScript. Nevertheless, such papers are often difficult to grasp for readers not familiar with formal semantics. In this report, the authors propose a digest of the semantics of JavaScript centered on security concerns. This paper proposes an overview of the JavaScript language and the misleading semantic points in its design. The first part of the document describes the main characteristics of the language itself. The second part presents how those characteristics can lead to problems. It finishes by showing some coding patterns to avoid certain traps and presents some ECMAScript 5 new features.

  • Format: PDF
  • Size: 360.76 KB