Formal methods for web security

In the last few years, many security researchers proposed to endow the web platform with more rigorous foundations, thus allowing for a precise reasoning on web security issues. Given the complexity of the Web, however, research efforts in the area are scattered around many different topics and problems, and it is not easy to understand the import of formal methods on web security so far. In this survey we collect, classify and review existing proposals in the area of formal methods for web security, spanning many different topics: JavaScript security, browser security, web application security, and web protocol analysis. Based on the existing literature, we discuss recommendations for researchers working in the area to ensure their proposals have the right ingredients to be amenable for a large scale adoption.

Formal methods for web security

BUGLIESI, Michele;CALZAVARA, STEFANO;FOCARDI, Riccardo

2017-01-01

Abstract

In the last few years, many security researchers proposed to endow the web platform with more rigorous foundations, thus allowing for a precise reasoning on web security issues. Given the complexity of the Web, however, research efforts in the area are scattered around many different topics and problems, and it is not easy to understand the import of formal methods on web security so far. In this survey we collect, classify and review existing proposals in the area of formal methods for web security, spanning many different topics: JavaScript security, browser security, web application security, and web protocol analysis. Based on the existing literature, we discuss recommendations for researchers working in the area to ensure their proposals have the right ingredients to be amenable for a large scale adoption.

Scheda breve

Scheda completa

Scheda completa (DC)

	Anno pubblicazione
	
				2017
			
	Titolo della Rivista
	
				THE JOURNAL OF LOGICAL AND ALGEBRAIC METHODS IN PROGRAMMING
			
	N° Volume
	
				87
			
	DOI
	
				https://dx.doi.org/10.1016/j.jlamp.2016.08.006
			
	Appare nelle tipologie:
	
				2.1 Articolo su rivista

File in questo prodotto:

File	Dimensione	Formato
jlamp16.pdf accesso aperto Tipologia: Documento in Pre-print Licenza: Accesso gratuito (solo visione) Dimensione 401.33 kB Formato Adobe PDF Visualizza/Apri	401.33 kB	Adobe PDF	Visualizza/Apri
1-s2.0-S2352220816301055-main.pdf non disponibili Tipologia: Versione dell'editore Licenza: Accesso chiuso-personale Dimensione 629.88 kB Formato Adobe PDF Visualizza/Apri	629.88 kB	Adobe PDF	Visualizza/Apri

I documenti in ARCA sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/10278/3685125

Citazioni

ND

23

15

social impact