scholarly journals Client-Side Cornucopia: Comparing the Built-In Application Architecture Models in the Web Browser

2019 ◽  
pp. 1-24
Author(s):  
Antero Taivalsaari ◽  
Tommi Mikkonen ◽  
Cesare Pautasso ◽  
Kari Systä
Keyword(s):  
Web Browser ◽  
Application Architecture ◽  
Client Side ◽  
The Web

PAKE on the Web

2011 ◽  
pp. 337-350
Author(s):  
Xunhua Wang ◽  
Hua Lin
Keyword(s):  
Web Sites ◽  
Web Applications ◽  
Identity Management ◽  
Mutual Authentication ◽  
Specific Information ◽  
Mobile Code ◽  
Web Browser ◽  
Server Side ◽  
Client Side ◽  
The Web

Unlike existing password authentication mechanisms on the web that use passwords for client-side authentication only, password-authenticated key exchange (PAKE) protocols provide mutual authentication. In this article, we present an architecture to integrate existing PAKE protocols to the web. Our integration design consists of the client-side part and the server-side part. First, we implement the PAKE client-side functionality with a web browser plug-in, which provides a secure implementation base. The plug-in has a log-in window that can be customized by a user when the plug-in is installed. By checking the user-specific information in a log-in window, an ordinary user can easily detect a fake log-in window created by mobile code. The server-side integration comprises a web interface and a PAKE server. After a successful PAKE mutual authentication, the PAKE plug-in receives a one-time ticket and passes it to the web browser. The web browser authenticates itself by presenting this ticket over HTTPS to the web server. The plug-in then fades away and subsequent web browsing remains the same as usual, requiring no extra user education. Our integration design supports centralized log-ins for web applications from different web sites, making it appropriate for digital identity management. A prototype is developed to validate our design. Since PAKE protocols use passwords for mutual authentication, we believe that the deployment of this design will significantly mitigate the risk of phishing attacks.

BDS

2018 ◽  
pp. 910-927
Author(s):  
Shashank Gupta ◽  
B. B. Gupta
Keyword(s):  
Web Applications ◽  
Web Pages ◽  
Web Browsers ◽  
Security Model ◽  
Web Browser ◽  
User Input ◽  
Defensive Strategies ◽  
Client Side ◽  
Cross Site ◽  
The Web

Cross-Site Scripting (XSS) attack is a vulnerability on the client-side browser that is caused by the improper sanitization of the user input embedded in the Web pages. Researchers in the past had proposed various types of defensive strategies, vulnerability scanners, etc., but still XSS flaws remains in the Web applications due to inadequate understanding and implementation of various defensive tools and strategies. Therefore, in this chapter, the authors propose a security model called Browser Dependent XSS Sanitizer (BDS) on the client-side Web browser for eliminating the effect of XSS vulnerability. Various earlier client-side solutions degrade the performance on the Web browser side. But in this chapter, the authors use a three-step approach to bypass the XSS attack without degrading much of the user's Web browsing experience. While auditing the experiments, this approach is capable of preventing the XSS attacks on various modern Web browsers.

BDS

2015 ◽  
pp. 174-191 ◽  
Author(s):  
Shashank Gupta ◽  
B. B. Gupta
Keyword(s):  
Web Applications ◽  
Web Pages ◽  
Web Browsers ◽  
Security Model ◽  
Web Browser ◽  
User Input ◽  
Defensive Strategies ◽  
Client Side ◽  
Cross Site ◽  
The Web

Cross-Site Scripting (XSS) attack is a vulnerability on the client-side browser that is caused by the improper sanitization of the user input embedded in the Web pages. Researchers in the past had proposed various types of defensive strategies, vulnerability scanners, etc., but still XSS flaws remains in the Web applications due to inadequate understanding and implementation of various defensive tools and strategies. Therefore, in this chapter, the authors propose a security model called Browser Dependent XSS Sanitizer (BDS) on the client-side Web browser for eliminating the effect of XSS vulnerability. Various earlier client-side solutions degrade the performance on the Web browser side. But in this chapter, the authors use a three-step approach to bypass the XSS attack without degrading much of the user's Web browsing experience. While auditing the experiments, this approach is capable of preventing the XSS attacks on various modern Web browsers.

PAKE on the Web

2009 ◽  
Vol 3 (4) ◽  
pp. 29-42 ◽  
Author(s):  
Xunhua Wang ◽  
Hua Lin
Keyword(s):  
Web Sites ◽  
Web Applications ◽  
Identity Management ◽  
Mutual Authentication ◽  
Specific Information ◽  
Mobile Code ◽  
Web Browser ◽  
Server Side ◽  
Client Side ◽  
The Web

Unlike existing password authentication mechanisms on the web that use passwords for client-side authentication only, password-authenticated key exchange (PAKE) protocols provide mutual authentication. In this article, we present an architecture to integrate existing PAKE protocols to the web. Our integration design consists of the client-side part and the server-side part. First, we implement the PAKE client-side functionality with a web browser plug-in, which provides a secure implementation base. The plug-in has a log-in window that can be customized by a user when the plug-in is installed. By checking the user-specific information in a log-in window, an ordinary user can easily detect a fake log-in window created by mobile code. The server-side integration comprises a web interface and a PAKE server. After a successful PAKE mutual authentication, the PAKE plug-in receives a one-time ticket and passes it to the web browser. The web browser authenticates itself by presenting this ticket over HTTPS to the web server. The plug-in then fades away and subsequent web browsing remains the same as usual, requiring no extra user education. Our integration design supports centralized log-ins for web applications from different web sites, making it appropriate for digital identity management. A prototype is developed to validate our design. Since PAKE protocols use passwords for mutual authentication, we believe that the deployment of this design will significantly mitigate the risk of phishing attacks.

scholarly journals Introducing Zoomify Image

2007 ◽  
Vol 26 (1) ◽  
pp. 48 ◽  
Author(s):  
Adam Smith
Keyword(s):  
Image Processing ◽  
Response Times ◽  
Image Data ◽  
Web Browser ◽  
Cornell University ◽  
High Resolution Images ◽  
Cross Platform ◽  
Processing Software ◽  
Image Processing Software ◽  
The Web

Zoomify Image is a mature product for easily publishing large, high-resolution images on the Web. End users view these images with existing Webbrowser software as quickly as they do normal, downsampled images. A Flash-based Zoomifyer client asynchronously streams image data to the Web browser as needed, resulting in response times approaching those of desktop applications using minimal bandwidth. The author, a librarian at Cornell University and the principal architect of a small, open-source company, worked closely with Zoomify to produce a cross-platform, opensource implementation of that company’s image-processing software and discusses how to easily deploy the product into a widely used Webpublishing environment. Limitations are also discussed as are areas of improvement and alternatives.

scholarly journals ACTIVIST BROWSER EXTENSIONS AS INTERFACE DÉTOURNEMENT: REMINDING, COPING, AND INFRASTRUCTURAL ALIGNMENT

2020 ◽  
Author(s):  
Tiancheng Cao
Keyword(s):  
Critical Discourse Analysis ◽  
Social Issues ◽  
Communication Tool ◽  
Structured Interviews ◽  
Situationist International ◽  
Web Browser ◽  
Platform Governance ◽  
The Creation ◽  
The Web ◽  
Browser Extensions

This paper investigates web browser extensions as an under-researched media object for their capacity for activism. “Activist extensions” disrupt a webpage’s intended use and redirect users’ attention to social issues by modifying textual, visual, or auditory elements of the web user interface. The relevance of the study stems from the ubiquity of the web browser as a communication tool and the potential of browser extensions to counter its power in shaping how web content is delivered to users. Based on the notions of transduction and affordance, the critical vocabulary of the Situationist International, and the conceptualization of platform governance through the provision of infrastructural services, this paper asks: Through what mechanism do activist extensions redirect users’ attention to social issues? What are the potential implications for users? And, how can browser platforms affect the creation and distribution of activist extensions? The study adopts a mixed-methods approach that includes discursive interface analysis of the extensions’ modification of the browser interface, critical discourse analysis of user comments on these extensions, and semi-structured interviews with extension developers. Major findings of the study include: 1) the redirection of users’ attention from the webpage to social issues is achieved through the mechanism of $2 , 2) activist extensions function as $2 that provides users with a coping mechanism against certain online rhetoric, and 3) the creation and distribution of activist extensions are conditioned by an $2 imposed by the browser platform on extension developers.

scholarly journals A Scheme of Selecting Vehicles to Assist Download Based on WebGIS for VANET

2022 ◽  
Author(s):  
Qibin Zhou ◽  
Qinggang Su ◽  
Peng Xiong
Keyword(s):  
Euclidean Distance ◽  
Global Optimum ◽  
Manhattan Distance ◽  
Web Browser ◽  
Problem Of Time ◽  
Time Space ◽  
Blind Area ◽  
Markov Decision ◽  
Platform Independence ◽  
Client Side

The assisted download is an effective method solving the problem that the coverage range is insufficient when Wi-Fi access is used in VANET. For the low utilization of time-space resource within blind area and unbalanced download services in VANET, this paper proposes an approximate global optimum scheme to select vehicle based on WebGIS for assistance download. For WebGIS, this scheme uses a two-dimensional matrix to respectively define the time-space resource and the vehicle selecting behavior, and uses Markov Decision Process to solve the problem of time-space resource allocation within blind area, and utilizes the communication features of VANET to simplify the behavior space of vehicle selection so as to reduce the computing complexity. At the same time, Euclidean Distance(Metric) and Manhattan Distance are used as the basis of vehicle selection by the proposed scheme so that, in the case of possessing the balanced assisted download services, the target vehicles can increase effectively the total amount of user downloads. Experimental results show that because of the wider access range and platform independence of WebGIS, when user is in the case of relatively balanced download services, the total amount of downloads is increased by more than 20%. Moreover, WebGIS usually only needs to use Web browser (sometimes add some plug-ins) on the client side, so the system cost is greatly reduced.

Sign in / Sign up

Export Citation Format

Share Document