{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,8]],"date-time":"2024-09-08T12:10:38Z","timestamp":1725797438232},"publisher-location":"Berlin, Heidelberg","reference-count":34,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783662442012"},{"type":"electronic","value":"9783662442029"}],"license":[{"start":{"date-parts":[[2014,1,1]],"date-time":"2014-01-01T00:00:00Z","timestamp":1388534400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014]]},"DOI":"10.1007\/978-3-662-44202-9_19","type":"book-chapter","created":{"date-parts":[[2014,7,17]],"date-time":"2014-07-17T02:01:13Z","timestamp":1405562473000},"page":"463-488","source":"Crossref","is-referenced-by-count":0,"title":["Retargetting Legacy Browser Extensions to Modern Extension Frameworks"],"prefix":"10.1007","author":[{"given":"Rezwana","family":"Karim","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohan","family":"Dhawan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vinod","family":"Ganapathy","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"19_CR1","unstructured":"Doctor, J.S.: \n                    \n                      http:\/\/doctorjs.org\/"},{"key":"19_CR2","unstructured":"Jetpack, \n                    \n                      https:\/\/wiki.mozilla.org\/Jetpack"},{"key":"19_CR3","unstructured":"JSON, \n                    \n                      http:\/\/www.json.org\/"},{"key":"19_CR4","unstructured":"node.js, \n                    \n                      http:\/\/nodejs.org\/"},{"key":"19_CR5","unstructured":"Opera extensions, \n                    \n                      http:\/\/dev.opera.com\/extension-docs\/"},{"key":"19_CR6","unstructured":"Safari extensions, \n                    \n                      https:\/\/developer.apple.com\/library\/safari\/documentation\/Tools\/Conceptual\/SafariExtensionGuide\/Introduction\/Introduction.html"},{"key":"19_CR7","doi-asserted-by":"crossref","unstructured":"Akahawe, D., Saxena, P., Song, D.: Privilege separation in HTML5 applications. In: USENIX Security Symp. (2012)","DOI":"10.1007\/978-3-642-40203-6_41"},{"key":"19_CR8","doi-asserted-by":"crossref","unstructured":"Bandhakavi, S., King, S.T., Madhusudan, P., Winslett, M.: Vetting browser extensions for security vulnerabilities with VEX. CACM\u00a054(9) (September 2011)","DOI":"10.1145\/1995376.1995398"},{"key":"19_CR9","unstructured":"Barth, A., Felt, A.P., Saxena, P., Boodman, A.: Protecting browsers from extension vulnerabilities. In: Network and Distributed Systems Security Symp. (2010)"},{"key":"19_CR10","unstructured":"Brumley, D., Song, D.: Privtrans: automatically partitioning programs for privilege separation. In: 13th USENIX Security Symp. (2004)"},{"key":"19_CR11","unstructured":"Carlini, N., Felt, A.P., Wagner, D.: An evaluation of the google chrome extension security architecture. In: USENIX Security Symp. (2012)"},{"key":"19_CR12","doi-asserted-by":"crossref","unstructured":"Chong, S., Liu, J., Myers, A.C., Qi, X., Vikram, K., Zheng, L., Zheng, X.: Secure web applications via automatic partitioning. SIGOPS Oper. Syst. Rev.\u00a041(6) (2007)","DOI":"10.1145\/1323293.1294265"},{"key":"19_CR13","doi-asserted-by":"crossref","unstructured":"Dhawan, M., Ganapathy, V.: Analyzing information flow in javascript-based browser extensions. In: Annual Computer Security Applications Conference (2009)","DOI":"10.1109\/ACSAC.2009.43"},{"key":"19_CR14","unstructured":"Djeric, V., Goel, A.: Securing script-based extensibility in web browsers. In: USENIX Security Symp. (2010)"},{"key":"19_CR15","doi-asserted-by":"crossref","unstructured":"Guha, A., Fredrikson, M., Livshits, B., Swamy, N.: Verified security for browser extensions. In: Proc. of IEEE Symp. on Security and Privacy (May 2011)","DOI":"10.1109\/SP.2011.36"},{"key":"19_CR16","doi-asserted-by":"crossref","unstructured":"Hardy, N.: The confused deputy (or why capabilities might have been invented). SIGOPS Oper. Syst. Rev.\u00a022(4) (October 1988)","DOI":"10.1145\/54289.871709"},{"key":"19_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"333","DOI":"10.1007\/978-3-642-31057-7_16","volume-title":"ECOOP 2012 \u2013 Object-Oriented Programming","author":"R. Karim","year":"2012","unstructured":"Karim, R., Dhawan, M., Ganapathy, V., Shan, C.-c.: An analysis of the Mozilla Jetpack extension framework. In: Noble, J. (ed.) ECOOP 2012. LNCS, vol.\u00a07313, pp. 333\u2013355. Springer, Heidelberg (2012)"},{"key":"19_CR18","unstructured":"Kilpatrick, D.: Privman: A Library for Partitioning Applications. In: USENIX Annual Technical Conference, FREENIX Track (2003)"},{"key":"19_CR19","unstructured":"Liu, L., Zhang, X., Yan, G., Chen, S.: Chrome Extensions: Threat Analysis and Countermeasures. In: Network and Distributed Systems Security Symp. (2012)"},{"key":"19_CR20","unstructured":"Mozilla. Add-on SDK, \n                    \n                      https:\/\/addons.mozilla.org\/en-US\/developers\/docs\/sdk\/latest\/"},{"key":"19_CR21","unstructured":"Mozilla. Narcissus, \n                    \n                      http:\/\/mxr.mozilla.org\/mozilla\/source\/js\/narcissus\/"},{"key":"19_CR22","unstructured":"Mozilla. Query Interface, \n                    \n                      https:\/\/developer.mozilla.org\/en-US\/docs\/XPCOM_Interface_Reference\/nsISupports#QueryInterface"},{"key":"19_CR23","unstructured":"Mozilla. Spidermonkey, \n                    \n                      https:\/\/developer.mozilla.org\/en\/SpiderMonkey"},{"key":"19_CR24","unstructured":"Mozilla Developer Network. Electrolysis, \n                    \n                      https:\/\/wiki.mozilla.org\/Electrolysis"},{"key":"19_CR25","unstructured":"Mozilla Developer Network. XPCOM, \n                    \n                      http:\/\/developer.mozilla.org\/en\/XPCOM"},{"key":"19_CR26","doi-asserted-by":"crossref","unstructured":"Myers, A.C.: Jflow: practical mostly-static information flow control. In: ACM Principles of Programming Languages (1999)","DOI":"10.1145\/292540.292561"},{"key":"19_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"122","DOI":"10.1007\/978-3-642-39235-1_7","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"K. Onarlioglu","year":"2013","unstructured":"Onarlioglu, K., Battal, M., Robertson, W., Kirda, E.: Securing legacy firefox extensions with SENTINEL. In: Rieck, K., Stewin, P., Seifert, J.-P. (eds.) DIMVA 2013. LNCS, vol.\u00a07967, pp. 122\u2013138. Springer, Heidelberg (2013)"},{"key":"19_CR28","unstructured":"Provos, N., Friedl, M., Honeyman, P.: Preventing privilege escalation. In: 12th USENIX Security Symp. (2003)"},{"key":"19_CR29","unstructured":"Addon SDK. Content proxy, \n                    \n                      https:\/\/addons.mozilla.org\/en-US\/developers\/docs\/sdk\/latest\/dev-guide\/guides\/content-scripts\/accessing-the-dom.html"},{"key":"19_CR30","unstructured":"Simon Willison. Understanding the Greasemonkey vulnerability, \n                    \n                      http:\/\/simonwillison.net\/2005\/Jul\/20\/vulnerability\/"},{"key":"19_CR31","doi-asserted-by":"crossref","unstructured":"Ter Louw, M., Lim, J.S., Venkatakrishnan, V.N.: Enhancing web browser security against malware extensions. J. Computer Virology\u00a04 (2008)","DOI":"10.1007\/s11416-007-0078-5"},{"key":"19_CR32","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"570","DOI":"10.1007\/978-3-642-11957-6_30","volume-title":"Programming Languages and Systems","author":"D. Vardoulakis","year":"2010","unstructured":"Vardoulakis, D., Shivers, O.: CFA2: a context-free approach to control-flow analysis. In: Gordon, A.D. (ed.) ESOP 2010. LNCS, vol.\u00a06012, pp. 570\u2013589. Springer, Heidelberg (2010)"},{"key":"19_CR33","doi-asserted-by":"crossref","unstructured":"Zdancewic, S., Zheng, L., Nystrom, N., Myers, A.C.: Secure program partitioning. ACM Trans. Comput. Syst.\u00a020(3) (August 2002)","DOI":"10.1145\/566340.566343"},{"key":"19_CR34","unstructured":"Zheng, L., Chong, S., Myers, A.C., Zdancewic, S.: Using Replication and Partitioning to Build Secure Distributed Systems. In: IEEE Symp. Security & Privacy (2003)"}],"container-title":["Lecture Notes in Computer Science","ECOOP 2014 \u2013 Object-Oriented Programming"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-662-44202-9_19","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,27]],"date-time":"2019-05-27T10:14:57Z","timestamp":1558952097000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-662-44202-9_19"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014]]},"ISBN":["9783662442012","9783662442029"],"references-count":34,"URL":"https:\/\/doi.org\/10.1007\/978-3-662-44202-9_19","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2014]]}}}