Presentation is loading. Please wait.

Presentation is loading. Please wait.

Leo Meyerovich, David Zhu

Published byBrianna Jean Hicks Modified over 6 years ago

Similar presentations

Presentation on theme: "Leo Meyerovich, David Zhu"— Presentation transcript:

1 Leo Meyerovich, David Zhu
Secure Cooperative Sharing of JavaScript, Browser, and Physical Resources Leo Meyerovich, David Zhu Benjamin Livshits UC Berkeley

2 Web Application Security
lipstick on a pig?

3 Not Your Mother’s Browser
browser kernels JIT compilers jsvm, network, ... partitioned hardware disk

4 Mashup Manifesto sharing requires control sharing must be natural
sharing must be cheap

5 <CoFrame src=http://gadget.com/page id=gadget
passthroughBrowser="html css js" delegatePhysical=".1 cpu"/> ... 4. var toggle = true; 5. delegateBrowser(“network”, gadget, " function () { if (!toggle) throw ‘exn!’; }); 7. function getData() { toggle = false; return "profile data"; } 10. gadget.getData = getData; 11. aroundJS(gadget, getData, “execute”, function proceed (continue) { return continue(); });

6 JS Sharing with Cross-Principal Advice
Alice Bob Function.prototype __proto__ function getData

7 JS Sharing with Cross-Principal Advice
Alice Bob Function.prototype __proto__ function getData

8 JS Sharing with Cross-Principal Advice
Alice Bob Messages execute set fld val get fld addField fld val removeField fld Function.prototype __proto__ function getData function proceed execute set, get, … aroundJS(Bob, getData, “execute”, function proceed (continue) { return continue(); }) function defaultDeny function defaultDeny (continue) { throw ‘err’ }

9 JS Sharing with Cross-Principal Advice
Alice Bob Messages execute set fld val get fld addField fld val removeField fld Function.prototype __proto__ function getData function proceed execute , get set, … function defaultDeny

10 JS Sharing with Cross-Principal Advice
Alice Bob set, … Messages execute set fld val get fld addField fld val removeField fld Function.prototype execute, set, get, addField, removeField __proto__ function getData function proceed execute , get set, … function defaultDeny Cornelia

11 Browser API Sharing with Non-Tampering Advice
facebook.com gadget.com delegation: non-tampering advice delegateBrowser(“network”, gadget, " function () { if (!toggle) throw ‘exn!’; }); facebook.com parser, DOM, CSS, ... gadget.com

12 Physical Resource Sharing with ROS
disk layout render

13 Conclusion Abstractions for sharing browser, physical, and JavaScript resources Use the browser, OS/hardware, and language runtime

14 Mashup Manifesto sharing requires control sharing must be natural
control must be cheap

15 Related Work JavaScript Sharing Caja MashupOS Object Views ConScript
Browser API Sharing OP Browser ConScript ServiceOS Physical Resource Sharing Resource Containers E Gazelle TessellationOS Chrome

16 backup slides.

17

18 Sharing Browser APIs: Today
Facebook.com advice DOM (FFI)

19 Sharing Browser APIs: Tomorrow
Facebook.com advice DOM (FFI) browser kernel

20 The Times They Are A-Changin’
method-based JIT trace-based compilation static compilation GPU rendering solver generator parallel layout multicore CSS selectors parallel parsing parser generator browser kernel browser JIT (C#, X86, …) hypervisor, microkernel, hardware partitioning

21 BROWSER container.com gadget.com

22 container.com gadget.com gadget.com gadget YouTube fork bomb!!!
policy? BROWSER container.com gadget.com gadget.com

23 A New Hope BROWSER container.com gadget.com gadget.com

Download ppt "Leo Meyerovich, David Zhu"

Similar presentations

Widget Summit: Advanced JavaScript Joseph Smarr Plaxo, Inc. October 16, 2007.

Widget Summit: Advanced JavaScript Joseph Smarr Plaxo, Inc. October 16, 2007.
Presented by Vaibhav Rastogi. Current browsers try to separate host system from Web Websites evolved into web applications Lot of private data on the.

Presented by Vaibhav Rastogi. Current browsers try to separate host system from Web Websites evolved into web applications Lot of private data on the.
Molecular Biomedical Informatics Web Programming 1.

Molecular Biomedical Informatics Web Programming 1.
Context-Sensitive Auto-Sanitization In Web Templating Languages Using Type Qualifiers Prateek Saxena UC Berkeley Mike Samuel Google Dawn Song UC Berkeley.

Context-Sensitive Auto-Sanitization In Web Templating Languages Using Type Qualifiers Prateek Saxena UC Berkeley Mike Samuel Google Dawn Song UC Berkeley.
Atlantis: Robust, Extensible Execution Environments for Web Applications Hi! Today I’ll describe Atlantis, which is a new exokernel architecture for web.

Atlantis: Robust, Extensible Execution Environments for Web Applications Hi! Today I’ll describe Atlantis, which is a new exokernel architecture for web.
Web Applications HTML5 Games Windows 8 HTML Apps Basic Web Pages JavaScript Execution Speed DOM Interactions Accelerated Graphics Page Load Time.

Web Applications HTML5 Games Windows 8 HTML Apps Basic Web Pages JavaScript Execution Speed DOM Interactions Accelerated Graphics Page Load Time.
WinJS Priorities max: 15 high: 13 aboveNormal: 9 normal: 0 belowNormal: -9 idle: -13 min: -15.

WinJS Priorities max: 15 high: 13 aboveNormal: 9 normal: 0 belowNormal: -9 idle: -13 min: -15.
WEAVING CODE EXTENSIONS INTO JAVASCRIPT Benjamin Lerner, Herman Venter, and Dan Grossman University of Washington, Microsoft Research.

WEAVING CODE EXTENSIONS INTO JAVASCRIPT Benjamin Lerner, Herman Venter, and Dan Grossman University of Washington, Microsoft Research.
GATEKEEPER MOSTLY STATIC ENFORCEMENT OF SECURITY AND RELIABILITY PROPERTIES FOR JAVASCRIPT CODE Salvatore Guarnieri & Benjamin Livshits Presented by Michael.

GATEKEEPER MOSTLY STATIC ENFORCEMENT OF SECURITY AND RELIABILITY PROPERTIES FOR JAVASCRIPT CODE Salvatore Guarnieri & Benjamin Livshits Presented by Michael.
1. 2 “Well-designed graphics are usually the simplest” Big Data is Different: going from Data Reporting to Knowledge Discovery … small & static charts.

1. 2 “Well-designed graphics are usually the simplest” Big Data is Different: going from Data Reporting to Knowledge Discovery … small & static charts.
Android Platform Overview (1)

Android Platform Overview (1)
1 Yinzhi Cao, Zhichun Li *, Vaibhav Rastogi, Yan Chen, and Xitao Wen Labs of Internet Security and Technology Northwestern University * NEC Labs America.

1 Yinzhi Cao, Zhichun Li *, Vaibhav Rastogi, Yan Chen, and Xitao Wen Labs of Internet Security and Technology Northwestern University * NEC Labs America.
Presented by Vaibhav Rastogi.  Advent of Web 2.0 and Mashups  Inclusion of untrusted third party content a necessity  Need to restrict the functionality.

Presented by Vaibhav Rastogi.  Advent of Web 2.0 and Mashups  Inclusion of untrusted third party content a necessity  Need to restrict the functionality.
ConScript Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser Leo Meyerovich UC Berkeley Benjamin Livshits Microsoft.

ConScript Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser Leo Meyerovich UC Berkeley Benjamin Livshits Microsoft.
Vaibhav Rastogi and Yi Yang.  Web 2.0 – rich applications  A website hosts content it may not be responsible for  Third party gadgets  Third party.

Vaibhav Rastogi and Yi Yang.  Web 2.0 – rich applications  A website hosts content it may not be responsible for  Third party gadgets  Third party.
Phu H. Phung Chalmers University of Technology JSTools’ 12 June 13, 2012, Beijing, China Joint work with Lieven Desmet (KU Leuven)

Phu H. Phung Chalmers University of Technology JSTools’ 12 June 13, 2012, Beijing, China Joint work with Lieven Desmet (KU Leuven)
JavaScript CMPT 281. Outline Introduction to JavaScript Resources What is JavaScript? JavaScript in web pages.

JavaScript CMPT 281. Outline Introduction to JavaScript Resources What is JavaScript? JavaScript in web pages.
Browserscope O'Reilly Velocity OLC Dec 8, 2009. www.browserscope.org.

Browserscope O'Reilly Velocity OLC Dec 8,
Virtualization Concept. Virtualization  Real: it exists, you can see it.  Transparent: it exists, you cannot see it  Virtual: it does not exist, you.

Virtualization Concept. Virtualization  Real: it exists, you can see it.  Transparent: it exists, you cannot see it  Virtual: it does not exist, you.
Department of Electrical Engineering and Computer Science CONSCRIPT: Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser.

Department of Electrical Engineering and Computer Science CONSCRIPT: Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser.

Similar presentations

Ads by Google