{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,3]],"date-time":"2026-06-03T03:58:14Z","timestamp":1780459094570,"version":"3.54.1"},"publisher-location":"Cham","reference-count":19,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319465975","type":"print"},{"value":"9783319465982","type":"electronic"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-46598-2_14","type":"book-chapter","created":{"date-parts":[[2016,9,15]],"date-time":"2016-09-15T18:31:00Z","timestamp":1473964260000},"page":"196-211","source":"Crossref","is-referenced-by-count":7,"title":["MalloryWorker: Stealthy Computation and Covert Channels Using Web Workers"],"prefix":"10.1007","author":[{"given":"Michael","family":"Rushanan","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"David","family":"Russell","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Aviel D.","family":"Rubin","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2016,9,17]]},"reference":[{"key":"14_CR1","unstructured":"Networked medical devices to exceed 14 million unit sales in 2018, December 2013. https:\/\/www.parksassociates.com\/blog\/article\/dec2013-medical-devices"},{"key":"14_CR2","unstructured":"Html5 security cheat sheet, April 2014. https:\/\/www.owasp.org\/index.php\/HTML5_Security_Cheat_Sheet#Web_Workers\/"},{"key":"14_CR3","unstructured":"Aboukhadijeh, F.: Using the HTML5 fullscreen api for phishing attacks, October 2012. http:\/\/feross.org\/html5-fullscreen-api-attack\/ . Accessed 27 May 2014"},{"key":"14_CR4","doi-asserted-by":"crossref","unstructured":"Akhawe, D., Barth, A., Lam, P.E., Mitchell, J., Song, D.: Towards a formal foundation of web security. In: Proceedings of the 2010 23rd IEEE Computer Security Foundations Symposium, pp. 290\u2013304. IEEE Computer Society (2010). http:\/\/dx.doi.org\/10.1109\/CSF.2010.27","DOI":"10.1109\/CSF.2010.27"},{"key":"14_CR5","unstructured":"Akhawe, D., Saxena, P., Song, D.: Privilege separation in html5 applications. In: Proceedings of the 21st USENIX Conference on Security Symposium, p. 23, August 2012. http:\/\/dl.acm.org\/citation.cfm?id=2362793.2362816"},{"key":"14_CR6","unstructured":"Biniok, J.: Hash me if you can - a bitcoin miner that supports pure javscript, webworker and webgl mining (2015). https:\/\/github.com\/derjanb\/hamiyoca"},{"key":"14_CR7","doi-asserted-by":"crossref","unstructured":"Cabuk, S., Brodley, C.E., Shields, C.: Ip covert timing channels: Design and detection. In: Proceedings of the 11th ACM Conference on Computer and Communications Security, CCS 04, pp. 178\u2013187. ACM, New York (2004). http:\/\/doi.acm.org\/10.1145\/1030083.1030108","DOI":"10.1145\/1030083.1030108"},{"key":"14_CR8","unstructured":"Clark, S.S., Ransford, B., Rahmati, A., Guineau, S., Sorber, J., Xu, W., Fu, K.: Wattsupdoc: power side channels to nonintrusively discover untargeted malware on embedded medical devices. In: Presented as part of the 2013 USENIX Workshop on Health Information Technologies, USENIX (2013)"},{"key":"14_CR9","unstructured":"Glasser, D.: An interesting kind of javascript memory leak (2014). http:\/\/info.meteor.com\/blog\/an-interesting-kind-of-javascript-memory-leak"},{"key":"14_CR10","unstructured":"Group, W.H.A.T.W.: Web workers, July 2014. http:\/\/www.whatwg.org\/specs\/web-apps\/current-work\/multipage\/workers.html"},{"key":"14_CR11","unstructured":"Hickson, I.: Web workers editor\u2019s draft, 19 May 2014. http:\/\/www.w3.org\/TR\/workers\/"},{"key":"14_CR12","unstructured":"Huskamp, J.C.: Covert communication channels in timesharing systems. Ph.D. thesis, California Univ., Berkeley (1978)"},{"key":"14_CR13","unstructured":"Kuppan, L.: Attacking with HTML5. In: Black Hat Abu Dhabi, October 2010. https:\/\/www.usenix.org\/conference\/healthsec12\/workshop-program\/presentation\/Chang"},{"key":"14_CR14","doi-asserted-by":"crossref","unstructured":"Lampson, B.W.: A note on the confinement problem. Commun. ACM 16(10), 613\u2013615 (1973). http:\/\/doi.acm.org\/10.1145\/362375.362389","DOI":"10.1145\/362375.362389"},{"key":"14_CR15","unstructured":"Rowland, C.H.: Covert channels in the tcp\/ip protocol suite. First Monday B(5) (1997). http:\/\/firstmonday.org\/ojs\/index.php\/fm\/article\/view\/528"},{"key":"14_CR16","unstructured":"Sacco, A., Muttis, F.: Html5 heap sprays, pwn all the things (2012). https:\/\/eusecwest.com\/speakers.html , eUSecWest"},{"key":"14_CR17","unstructured":"Son, S., Shmatikov, V.: The postman always rings twice: Attacking and defending postmessage in html5 websites. In: Proceedings of the 20th Annual Network and Distributed System Security Symposium (NDSS). The Internet Society (2013). http:\/\/dblp.uni-trier.de\/db\/conf\/ndss\/ndss2013.html#SonS13"},{"key":"14_CR18","doi-asserted-by":"crossref","unstructured":"Tian, Y., Liu, Y.C., Bhosale, A., Huang, L.S., Tague, P., Jackson, C.: All your screens are belong to us: Attacks exploiting the HTML5 screen sharing api. In: Proceedings of the 35th Annual IEEE Symposium on Security and Privacy (SP 2014), May 2014","DOI":"10.1109\/SP.2014.10"},{"key":"14_CR19","unstructured":"Wu, Z., Xu, Z., Wang, H.: Whispers in the hyper-space: high-speed covert channel attacks in the cloud. In: Proceedings of the 21st USENIX Conference on Security Symposium, Security 2012, p. 9. USENIX Association, Berkeley (2012). http:\/\/dl.acm.org\/citation.cfm?id=2362793.2362802"}],"container-title":["Lecture Notes in Computer Science","Security and Trust Management"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-46598-2_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,6,24]],"date-time":"2017-06-24T18:54:31Z","timestamp":1498330471000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-46598-2_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319465975","9783319465982"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-46598-2_14","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016]]}}}