WAVES: Automatic Synthesis of Client-Side Validation Code for Web Applications

Skrupsky, Nazari; Monshizadeh, Maliheh; Bisht, Prithvi; Hinrichs, Timothy L.; Venkatakrishnan, V.; Zuck, Lenore D.

doi:10.1109/cybersecurity.2012.13

Cited by 6 publications

(7 citation statements)

References 16 publications

(14 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For this category, we concern only the attacks manipulating the operations specific to authentications. Such attacks include service engine exploitation (Saripalli and Walters, 2010), stealing unprotected authentication data (e.g., credentials or session tokens) (Saripalli and Walters, 2010), forgery of URL to expose authentication data (Yu et al, 2011), and exploitation and bypass credential validations (Skrupsky et al, 2012). Also, exposed administration and management interfaces, redundant user profiles, and improper authentication and authorization can allow attackers to exploit backdoor vulnerabilities (Jansen, 2011;Modi et al, 2013b).…”

Section: Attack Categorization In the Cloudmentioning

confidence: 99%

“…jected, without having the user to execute applications to trigger the malicious code execution. Such attacks include "cross-site scripting" (XSS for short) (Yusof and Pathan, 2016) (Yu et al, 2011), malware injection (Khalil et al, 2014), SQL injection (Gruschka and Jensen, 2010;Dessiatnikoff et al, 2011), Javascript injection (Provos et al, 2009), OS commanding (Dessiatnikoff et al, 2011), XPATH injection (Saripalli and Walters, 2010;Dessiatnikoff et al, 2011), LDAP injection (Modi et al, 2013a;Skrupsky et al, 2012).…”

Section: Attack Categorization In the Cloudmentioning

confidence: 99%

“…The attacker can exploit weak cryptographic systems using various statistical and analytical approaches (Yu et al, 2011). Such attacks include Bruteforce attack (Ristenpart et al, 2009), "man in the middle attack" (Subashini and Kavitha, 2011), Side-channel attack (Zhang et al, 2012a), and misconfiguration of the client side validation to bypass authentication (Saripalli and Walters, 2010;Skrupsky et al, 2012).…”

Section: Attack Categorization In the Cloudmentioning

confidence: 99%

See 2 more Smart Citations

Systematic identification of threats in the cloud: A survey

et al. 2019

View full text Add to dashboard Cite

When a vulnerability is discovered in a system, some key questions often asked by the security analyst are what threat(s) does it pose, what attacks may exploit it, and which parts of the system it affects. Answers to those questions provide the necessary information for the security assessment and to implement effective countermeasures. In the cloud, this problem is more challenging due to the dynamic characteristics, such as elasticity, virtualization, and migration -changing the attack surface over time. This survey explores threats to the cloud by investigating the linkages between threats, attacks and vulnerabilities, and propose a method to identify threats systematically in the cloud using the threat classifications. First, we trace vulnerabilities to threats by relating vulnerabilities-to-attacks, and then relating attacks-to-threats. We have established the traceability through an extensive literature review and synthesis that resulted in a classification of attacks in the cloud, where we use the Microsoft STRIDE threat modeling approach as a guide for relating attacks to threats. Our approach is the genesis towards a concrete method for systematically identifying potential threats to assets provisioned and managed through the cloud. We demonstrate the approach through its application using a cloud deployment case study scenario.

show abstract

Section: Attack Categorization In the Cloudmentioning

confidence: 99%

Section: Attack Categorization In the Cloudmentioning

confidence: 99%

Section: Attack Categorization In the Cloudmentioning

confidence: 99%

See 1 more Smart Citation

Systematic identification of threats in the cloud: A survey

et al. 2019

View full text Add to dashboard Cite

show abstract

“…Rails has been the subject of study in the verification of cross-site scripting attacks [32], errors in data modeling of associations [68], and arbitrary, user-specified (non-validation) invariants [25]. Rails-style ORM validations have been used to improve systems security via client-side execution [58,76]. Our focus here is on the concurrency control requirements and usages of applications written in Rails.…”

Section: Related Workmentioning

confidence: 99%

“…On the other hand, more recent proposals for invariant-based concurrency control [17,65] and a litany of work from prior decades on rulebased [82] and, broadly, semantics-based concurrency control [79] appear immediately applicable and worth (re-)considering. Recent advances in program analysis for extracting invariants [73] and subroutines from imperative code [33] may allow us to programatically suggest new invariants, perform correspondence checking for existing applications, and apply a range of automated optimizations to legacy code [34,76]. Finally, clean-slate language design and program analysis obviate the need for explicit invariant declaration (thus alleviating concerns of specification completeness) [11,12,84]; while adoption within the ORM community is a challenge, we view this exploration as worthwhile.…”

mentioning

confidence: 99%

Feral Concurrency Control

Bailis

Fekete

Franklin

et al. 2015

Proceedings of the 2015 ACM SIGMOD International Conference on Management of Data

View full text Add to dashboard Cite

The rise of data-intensive "Web 2.0" Internet services has led to a range of popular new programming frameworks that collectively embody the latest incarnation of the vision of Object-Relational Mapping (ORM) systems, albeit at unprecedented scale. In this work, we empirically investigate modern ORM-backed applications' use and disuse of database concurrency control mechanisms. Specifically, we focus our study on the common use of feral, or application-level, mechanisms for maintaining database integrity, which, across a range of ORM systems, often take the form of declarative correctness criteria, or invariants. We quantitatively analyze the use of these mechanisms in a range of open source applications written using the Ruby on Rails ORM and find that feral invariants are the most popular means of ensuring integrity (and, by usage, are over 37 times more popular than transactions). We evaluate which of these feral invariants actually ensure integrity (by usage, up to 86.9%) and which-due to concurrency errors and lack of database support-may lead to data corruption (the remainder), which we experimentally quantify. In light of these findings, we present recommendations for database system designers for better supporting these modern ORM programming patterns, thus eliminating their adverse effects on application integrity.

show abstract

Bootstrapping Library-Based Synthesis

Huang¹,

Qiu²

2022

Static Analysis

View full text Add to dashboard Cite

WAVES: Automatic Synthesis of Client-Side Validation Code for Web Applications

Cited by 6 publications

References 16 publications

Systematic identification of threats in the cloud: A survey

Systematic identification of threats in the cloud: A survey

Feral Concurrency Control

Bootstrapping Library-Based Synthesis

Contact Info

Product

Resources

About