{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,3]],"date-time":"2026-03-03T00:52:57Z","timestamp":1772499177805,"version":"3.50.1"},"reference-count":60,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"4","license":[{"start":{"date-parts":[[2015,7,1]],"date-time":"2015-07-01T00:00:00Z","timestamp":1435708800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2015,7,1]],"date-time":"2015-07-01T00:00:00Z","timestamp":1435708800000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2015,7,1]],"date-time":"2015-07-01T00:00:00Z","timestamp":1435708800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2015,7,1]],"date-time":"2015-07-01T00:00:00Z","timestamp":1435708800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/100000001","name":"NSF","doi-asserted-by":"publisher","award":["1065134"],"award-info":[{"award-number":["1065134"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"NSF","doi-asserted-by":"publisher","award":["1065216"],"award-info":[{"award-number":["1065216"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"NSF","doi-asserted-by":"publisher","award":["1054629"],"award-info":[{"award-number":["1054629"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"NSF","doi-asserted-by":"publisher","award":["1069311"],"award-info":[{"award-number":["1069311"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"NSF","doi-asserted-by":"publisher","award":["1065537"],"award-info":[{"award-number":["1065537"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100004359","name":"Swedish Research Council","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100004359","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2015,7,1]]},"DOI":"10.1109\/tdsc.2014.2355847","type":"journal-article","created":{"date-parts":[[2014,9,10]],"date-time":"2014-09-10T18:48:43Z","timestamp":1410374923000},"page":"443-457","source":"Crossref","is-referenced-by-count":18,"title":["Between Worlds: Securing Mixed JavaScript\/ActionScript Multi-Party Web Content"],"prefix":"10.1109","volume":"12","author":[{"given":"Phu H.","family":"Phung","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Maliheh","family":"Monshizadeh","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Meera","family":"Sridhar","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kevin W.","family":"Hamlen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"V.N.","family":"Venkatakrishnan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","article-title":"AdJail: Practical enforcement of confidentiality and integrity policies on web advertisements","author":"louw","year":"0","journal-title":"Proc 19th USENIX Security Symp"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1145\/2307720.2307721"},{"key":"ref33","year":"0"},{"key":"ref32","first-page":"31","article-title":"Through modeling to synthesis of security automata","author":"martinell","year":"2006","journal-title":"Proc Workshop Security Trust Manage"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.14"},{"key":"ref30","author":"j\u00e4hnig","year":"0"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/2414456.2414460"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420952"},{"key":"ref35","first-page":"61","article-title":"BrowserShield: Vulnerability-driven filtering of dynamic HTML","author":"reis","year":"2006","journal-title":"Proc USENIX Symp Oper Syst Design Implementation"},{"key":"ref34","article-title":"Clickjacking","author":"hansen","year":"2008","journal-title":"SecTheory Internet Security"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1145\/1134744.1134748"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/1375696.1375699"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/1111596.1111601"},{"key":"ref29","year":"2011","journal-title":"ECMAScript Language Specification (ECMA-262)"},{"key":"ref2","year":"0"},{"key":"ref1","year":"0"},{"key":"ref20","author":"wolf","year":"0"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/353323.353382"},{"key":"ref21","author":"elrom","year":"0"},{"key":"ref24","article-title":"Analyzing the cross-domain policies of Flash applications","author":"jang","year":"0","journal-title":"Proc IEEE Work Web 2 0 Security Privacy"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-27937-9_17"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-004-0046-8"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1007\/BF01782772"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242654"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1145\/1190216.1190252"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-04444-1_31"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2009.41"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.4"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2010.71"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2011.87"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076774"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772784"},{"key":"ref52","first-page":"1","article-title":"End-to-end web application security","author":"erlingsson","year":"2007","journal-title":"Proc Workshop Hot Topics in Operating Systems"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2009.11"},{"key":"ref11","article-title":"Run-time enforcement of secure JavaScript subsets","author":"maffeis","year":"2009","journal-title":"Proc IEEE Work Web 2 0 Security Privacy"},{"key":"ref40","first-page":"307","article-title":"WebJail: Least-privilege integration of third-party components in web mashups","author":"acker","year":"2011","journal-title":"Proc Comput Security Appl Conf"},{"key":"ref12","article-title":"Preventing capability leaks in secure JavaScript subsets","author":"finifter","year":"0","journal-title":"Proc Symp Network and Distributed System Security"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.39"},{"key":"ref14","first-page":"12","article-title":"ADsafety: Type-based verification of JavaScript sandboxing","author":"politz","year":"0","journal-title":"Proc 20th USENIX Conf Security Symp"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920289"},{"key":"ref16","article-title":"Security labs report: January–June 2010 recap","year":"2010"},{"key":"ref17","year":"0"},{"key":"ref18","first-page":"12","article-title":"FlashOver: Automated discovery of cross-site scripting vulnerabilities in rich internet applications","author":"acker","year":"0","journal-title":"Proc ACM Sym Inf Comput Commun Security"},{"key":"ref19","author":"zalewski","year":"0"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.36"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/1533057.1533067"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23644-0_15"},{"key":"ref5","doi-asserted-by":"crossref","first-page":"59","DOI":"10.1145\/1869631.1869638","article-title":"Proxies: Design principles for robust object-oriented intercession APIs","author":"cutsem","year":"2010","journal-title":"In proceedings of Dynamic Language Symposium"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/1190216.1190252"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772764"},{"key":"ref49","article-title":"WebShield: Enabling various web defense techniques without client side modifications","author":"li","year":"0","journal-title":"Proc Symp Network and Distributed System Security"},{"key":"ref9","year":"0"},{"key":"ref46","first-page":"151","article-title":"GATEKEEPER: Mostly static enforcement of security and reliability policies for JavaScript code","author":"guarnieri","year":"0","journal-title":"Proc Usenix Security Symp"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.37"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-89330-1_23"},{"key":"ref47","author":"crockford","year":"0"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2013.6575317"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242655"},{"key":"ref44","article-title":"Adnostic: Privacy preserving targeted advertising","author":"toubiana","year":"0","journal-title":"Proc Symp Network and Distributed System Security"},{"key":"ref43","article-title":"Privad: Rearchitecting online advertising for privacy","author":"guha","year":"2009"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"http:\/\/ieeexplore.ieee.org\/ielaam\/8858\/7151895\/6894186-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8858\/7151895\/06894186.pdf?arnumber=6894186","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,4,16]],"date-time":"2022-04-16T20:42:30Z","timestamp":1650141750000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/6894186\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,7,1]]},"references-count":60,"journal-issue":{"issue":"4"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2014.2355847","relation":{},"ISSN":["1545-5971"],"issn-type":[{"value":"1545-5971","type":"print"}],"subject":[],"published":{"date-parts":[[2015,7,1]]}}}