{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T19:04:21Z","timestamp":1743102261184,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":22,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642238215"},{"type":"electronic","value":"9783642238222"}],"license":[{"start":{"date-parts":[[2011,1,1]],"date-time":"2011-01-01T00:00:00Z","timestamp":1293840000000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011]]},"DOI":"10.1007\/978-3-642-23822-2_4","type":"book-chapter","created":{"date-parts":[[2011,9,7]],"date-time":"2011-09-07T10:38:34Z","timestamp":1315391914000},"page":"60-79","source":"Crossref","is-referenced-by-count":6,"title":["Protecting Private Web Content from Embedded Scripts"],"prefix":"10.1007","author":[{"given":"Yuchen","family":"Zhou","sequence":"first","affiliation":[]},{"given":"David","family":"Evans","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"key":"4_CR1","unstructured":"Barth, A., Felt, A.P., Saxena, P., Boodman, A.: Protecting Browsers from Extension Vulnerabilities. In: 17th Network and Distributed System Security Symposium (2010)"},{"key":"4_CR2","doi-asserted-by":"crossref","unstructured":"Crites, S., Hsu, F., Chen, H.: OMash: Enabling Secure Web Mashups via Object Abstractions. In: 15th ACM Conference on Computer and Communications Security (2008)","DOI":"10.1145\/1455770.1455784"},{"key":"4_CR3","unstructured":"Crockford, D.: ADsafe: Making JavaScript Safe for Advertising (2007), \n                    \n                      www.adsafe.org"},{"key":"4_CR4","unstructured":"Fielding, R., Gettys, J., Mogul, J., Frystyk, H., Masinter, L., Leach, P., Berners-Lee, T.: RFC2616: Hypertext Transfer Protocol - HTTP\/1.1, \n                    \n                      http:\/\/www.w3.org\/Protocols\/rfc2616\/rfc2616-sec9.html#sec9.1.1"},{"key":"4_CR5","unstructured":"Fredrikson, M., Livshits, B.: RePriv: Re-Envisioning In-Browser Privacy. In: IEEE Symposium on Security and Privacy (2011)"},{"key":"4_CR6","unstructured":"The Chromium\u00a0Development Group. The Chromium Projects: Notifications of Web Request and Navigation, \n                    \n                      https:\/\/sites.google.com\/a\/chromium.org\/dev\/developers\/design-documents\/extensions\/notifications-of-webequest-and-navigation"},{"key":"4_CR7","unstructured":"Hickson, I.: HTML5 specification adding Sandbox attribute, \n                    \n                      http:\/\/www.whatwg.org\/specs\/web-apps\/current-work\/#attr-iframe-sandbox"},{"key":"4_CR8","unstructured":"Hickson, I.: Web Workers in HTML5 standard, \n                    \n                      http:\/\/www.whatwg.org\/specs\/web-workers\/current-work\/"},{"key":"4_CR9","unstructured":"ECMA International. ECMA JavaScript specification, \n                    \n                      http:\/\/www.ecma-international.org\/publications\/standards\/Ecma-262.htm"},{"key":"4_CR10","doi-asserted-by":"crossref","unstructured":"Jayaraman, K., Du, W., Rajagopalan, B., Chapin, S.J.: ESCUDO: A Fine-Grained Protection Model for Web Browsers. In: 30th IEEE International Conference on Distributed Computing Systems (2010)","DOI":"10.1109\/ICDCS.2010.71"},{"key":"4_CR11","doi-asserted-by":"crossref","unstructured":"Jim, T., Swamy, N., Hicks, M.: Defeating Script Injection Attacks with Browser-Enforced Embedded Policies. In: 16th International Conference on World Wide Web (2007)","DOI":"10.1145\/1242572.1242654"},{"key":"4_CR12","unstructured":"Louw, M.T., Ganesh, K.T., Venkatakrishnan, V.N.: AdJail: Practical Enforcement of Confidentiality and Integrity Policies on Web Advertisements. In: 19th USENIX Security Symposium (2010)"},{"key":"4_CR13","doi-asserted-by":"crossref","unstructured":"Meyerovich, L.A., Livshits, B.: ConScript: Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser. In: IEEE Symposium on Security and Privacy (2010)","DOI":"10.1109\/SP.2010.36"},{"key":"4_CR14","unstructured":"Miller, M.S., Samuel, M., Laurie, B., Awad, I., Stay, M.: Caja: Safe Active Content in Sanitized Javascript (2007), \n                    \n                      google-caja.googlecode.com\/files\/caja-spec-2008-01-15.pdf\n                    \n                    \n                   (revised 2008)"},{"key":"4_CR15","unstructured":"Karel Mittig. GreasySpoon, Scripting Factory for Core Network Services, \n                    \n                      http:\/\/greasyspoon.sourceforge.net\/"},{"key":"4_CR16","unstructured":"Patterson, A.: Nokogiri - An HTML, XML, SAX and Reader parser with the ability to search documents via XPath or CSS3 selectors and much more, \n                    \n                      http:\/\/nokogiri.org\/"},{"key":"4_CR17","unstructured":"Rogers, M.: Facebook Advertisements Displayed Pictures of User\u2019s Friends and Families (2009), \n                    \n                      http:\/\/endofweb.co.uk\/2009\/07\/facebook_ads_2\/"},{"key":"4_CR18","unstructured":"Singel, R.: Singel-Minded: Facebook comments are another \u2019Good News, Bad News\u2019 proposition, \n                    \n                      http:\/\/www.wired.com\/epicenter\/2011\/03\/singel-facebook-empire\/"},{"key":"4_CR19","volume-title":"19th International Conference on World Wide Web","author":"S. Stamm","year":"2010","unstructured":"Stamm, S., Sterne, B., Markham, G.: Reining in the Web with Content Security Policy. In: 19th International Conference on World Wide Web. ACM, New York (2010)"},{"key":"4_CR20","unstructured":"Toubiana, V., Nissenbaum, H., Narayanan, A., Barocas, S., Boneh, D.: Adnostic: Privacy Preserving Targeted Advertising. In: 17th Network and Distributed System Security Symposium (2010)"},{"key":"4_CR21","unstructured":"W3C. W3C Document Object Model Level 3 Core Specification, \n                    \n                      http:\/\/www.w3.org\/TR\/DOM-Level-3-Core\/"},{"key":"4_CR22","doi-asserted-by":"crossref","unstructured":"Wang, H.J., Fan, X., Howell, J., Jackson, C.: Protection and Communication Abstractions for Web Browsers in MashupOS. In: 21st ACM SIGOPS Symposium on Operating Systems Principles (2007)","DOI":"10.1145\/1294261.1294263"}],"container-title":["Lecture Notes in Computer Science","Computer Security \u2013 ESORICS 2011"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-23822-2_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,2]],"date-time":"2019-06-02T20:36:28Z","timestamp":1559507788000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-23822-2_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011]]},"ISBN":["9783642238215","9783642238222"],"references-count":22,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-23822-2_4","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2011]]}}}