Skip to main content
Article thumbnail
Location of Repository

Dynamic Scoping for Browser Based Access Control System

By Vinaykumar Nadipelly

Abstract

We have inorganically increased the use of web applications to the point of using them for almost everything and making them an essential part of our everyday lives. As a result, the enhancement of privacy and security policies for the web applications is becoming increasingly essential. The importance and stateless nature of the web infrastructure made the web a preferred target of attacks. The current web access control system is a reason behind the victory of attacks. The current web consists of two major components, the browser and the server, where the effective access control system needs to be implemented. In terms of an access control system, the current web has adopted the inadequate same origin policy and same session policy for the browser and server, respectively. The current web access control system policies are sufficient for the earlier day\u27s web, which became inadequate to address the protection needs of today\u27s web. In order to protect the web application from un-trusted contents, we provide an enhanced browser based access control system by enabling the dynamic scoping. Our security model for the browser will allow the client and trusted web application contents to share a common library and protect web contents from each other, while they still get executed at different trust levels. We have implemented a working model of an enhanced browser based access control system in Java, under the Lobo browser

Topics: Web security, Web application, Browser enhancement, Web protection models, Web vulnerabilities, Computer Sciences, Databases and Information Systems
Publisher: TopSCHOLAR®
Year: 2012
OAI identifier: oai:digitalcommons.wku.edu:theses-2152
Provided by: TopSCHOLAR

Suggested articles


To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.