{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,23]],"date-time":"2025-08-23T05:11:32Z","timestamp":1755925892346},"reference-count":42,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014,10]]},"DOI":"10.1109\/cns.2014.6997485","type":"proceedings-article","created":{"date-parts":[[2014,12,31]],"date-time":"2014-12-31T04:15:04Z","timestamp":1419999304000},"source":"Crossref","is-referenced-by-count":12,"title":["Analyzing the dangers posed by Chrome extensions"],"prefix":"10.1109","author":[{"given":"Lujo","family":"Bauer","sequence":"first","affiliation":[]},{"given":"Shaoying","family":"Cai","sequence":"additional","affiliation":[]},{"given":"Limin","family":"Jia","sequence":"additional","affiliation":[]},{"given":"Timothy","family":"Passaro","sequence":"additional","affiliation":[]},{"given":"Yuan","family":"Tian","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"19","doi-asserted-by":"publisher","DOI":"10.1145\/1753846.1754025"},{"key":"35","article-title":"The multi-principal OS construction of the Gazelle web browser","author":"wang","year":"2009","journal-title":"Proc USENIX SEC"},{"key":"17","article-title":"Timing attacks on web privacy","author":"felten","year":"2000","journal-title":"Proc ACM CCS"},{"key":"36","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33383-5_12"},{"key":"18","doi-asserted-by":"publisher","DOI":"10.1145\/1961659.1961665"},{"key":"33","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.10"},{"key":"15","year":"0"},{"key":"34","year":"0"},{"key":"16","article-title":"Dynamic spyware analysis","author":"egele","year":"2007","journal-title":"Proc USENIX ATC"},{"key":"39","author":"wang","year":"0","journal-title":"Online SpongeBob Games"},{"key":"13","article-title":"Privilege escalation attacks on Android","author":"davi","year":"2010","journal-title":"Proc ISCAS"},{"key":"14","article-title":"FlowFox: A web browser with flexible and precise information flow control","author":"de groef","year":"2012","journal-title":"Proc ACM CCS"},{"key":"37","article-title":"Automated web patrol with strider honeymonkeys","author":"wang","year":"2006","journal-title":"Proc NDSS"},{"key":"11","author":"champagne","year":"0","journal-title":"Hey-Girl"},{"key":"38","year":"0"},{"key":"12","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.4"},{"key":"21","doi-asserted-by":"publisher","DOI":"10.1145\/1978942.1979125"},{"key":"20","doi-asserted-by":"publisher","DOI":"10.1145\/2348283.2348313"},{"key":"42","article-title":"Identity, location, disease and more: Inferring your secrets from Android public resources","author":"zhou","year":"2013","journal-title":"Proc CCS"},{"key":"41","article-title":"Toward principled browser security","author":"yang","year":"2013","journal-title":"Proc HotOS"},{"key":"40","year":"0"},{"key":"22","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866339"},{"key":"23","article-title":"Run-time enforcement of information-flow properties on Android","author":"jia","year":"2013","journal-title":"Proc ESORICS"},{"key":"24","doi-asserted-by":"publisher","DOI":"10.1109\/PASSAT\/SocialCom.2011.25"},{"key":"25","article-title":"Chrome extensions: Threat analysis and countermeasures","author":"liu","year":"2012","journal-title":"Proc NDSS"},{"key":"26","author":"liverani","year":"2009","journal-title":"Abusing Firefox Extensions"},{"key":"27","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420958"},{"key":"28","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.43"},{"key":"29","year":"0"},{"key":"3","year":"0","journal-title":"Cross-site Request Forgery (CSRF) Prevention Cheat Sheet"},{"key":"2","year":"0","journal-title":"Chrome Extensions Overview"},{"key":"10","article-title":"An evaluation of the Google Chrome extension security architecture","author":"carlini","year":"2012","journal-title":"Proc USENIX SEC"},{"key":"1","year":"0","journal-title":"Chrome Extension Keylogger"},{"key":"30","article-title":"Soundcomber: A stealthy and context-aware sound Trojan for smartphones","author":"schlegel","year":"2011","journal-title":"Proc NDSS"},{"key":"7","article-title":"Protecting browsers from extension vulnerabilities","author":"barth","year":"2010","journal-title":"Proc NDSS"},{"key":"6","doi-asserted-by":"publisher","DOI":"10.1145\/1995376.1995398"},{"key":"32","year":"0"},{"key":"5","year":"0","journal-title":"Pixel Perfect Timing Attacks with HTML5"},{"key":"31","article-title":"Trust and protection in the Illinois browser operating system","author":"tang","year":"2010","journal-title":"Proc OSDI"},{"key":"4","year":"0","journal-title":"Getting Around X-Frame-Options DENY in A Chrome Extension"},{"key":"9","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242656"},{"key":"8","author":"barth","year":"0","journal-title":"The Security Architecture of the Chromium Browser"}],"event":{"name":"2014 IEEE Conference on Communications and Network Security (CNS)","location":"San Francisco, CA, USA","start":{"date-parts":[[2014,10,29]]},"end":{"date-parts":[[2014,10,31]]}},"container-title":["2014 IEEE Conference on Communications and Network Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6982337\/6997445\/06997485.pdf?arnumber=6997485","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,10,14]],"date-time":"2020-10-14T14:31:44Z","timestamp":1602685904000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/6997485"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,10]]},"references-count":42,"URL":"https:\/\/doi.org\/10.1109\/cns.2014.6997485","relation":{},"subject":[],"published":{"date-parts":[[2014,10]]}}}