DEMACRO: Defense Against Malicious Cross-Domain Requests

Download Now
Provided by: Katholieke Universiteit Leuven
Topic: Security
Format: PDF
In the constant evolution of the web, the simple always gives way to the more complex. Static webpages with click-through dialogues are becoming more and more obsolete and in their place, asynchronous JavaScript requests, Web mash-ups and proprietary plug-ins with the ability to conduct cross-domain requests shape the modern user experience. Three recent studies showed that a significant number of web applications implement poor cross-domain policies allowing malicious domains to embed flash and silverlight applets which can conduct arbitrary requests to these Web applications under the identity of the visiting user.
Download Now

Find By Topic