{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T12:09:25Z","timestamp":1756382965046,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":43,"publisher":"ACM","license":[{"start":{"date-parts":[[2015,12,7]],"date-time":"2015-12-07T00:00:00Z","timestamp":1449446400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-0831298, CNS-1319137"],"award-info":[{"award-number":["CNS-0831298, CNS-1319137"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2015,12,7]]},"DOI":"10.1145\/2818000.2818019","type":"proceedings-article","created":{"date-parts":[[2015,12,11]],"date-time":"2015-12-11T17:06:08Z","timestamp":1449853568000},"page":"151-160","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":11,"title":["JaTE"],"prefix":"10.1145","author":[{"given":"Tung","family":"Tran","sequence":"first","affiliation":[{"name":"Stony Brook University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Riccardo","family":"Pelizzi","sequence":"additional","affiliation":[{"name":"Stony Brook University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"R.","family":"Sekar","sequence":"additional","affiliation":[{"name":"Stony Brook University"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2015,12,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Ad blocking with ad server hostnames. http:\/\/pgl.yoyo.org\/as\/.  Ad blocking with ad server hostnames. http:\/\/pgl.yoyo.org\/as\/."},{"key":"e_1_3_2_1_2_1","unstructured":"Direct and indirect eval. http:\/\/perfectionkills.com\/global-eval-what-are-the-options\/.  Direct and indirect eval. http:\/\/perfectionkills.com\/global-eval-what-are-the-options\/."},{"key":"e_1_3_2_1_3_1","unstructured":"HTML5. http:\/\/www.w3.org\/TR\/html5\/.  HTML5. http:\/\/www.w3.org\/TR\/html5\/."},{"key":"e_1_3_2_1_4_1","unstructured":"JavaScript Attack Vectors. https:\/\/code.google.com\/p\/google-caja\/wiki\/AttackVectors.  JavaScript Attack Vectors. https:\/\/code.google.com\/p\/google-caja\/wiki\/AttackVectors."},{"key":"e_1_3_2_1_5_1","unstructured":"Lexer confusing attack. https:\/\/code.google.com\/p\/google-caja\/wiki\/JsControlFormatChars.  Lexer confusing attack. https:\/\/code.google.com\/p\/google-caja\/wiki\/JsControlFormatChars."},{"key":"e_1_3_2_1_6_1","unstructured":"New York Times Latest Victim of Malware Ad Injections. http:\/\/mashable.com\/2009\/09\/15\/new-york-times-malware\/.  New York Times Latest Victim of Malware Ad Injections. http:\/\/mashable.com\/2009\/09\/15\/new-york-times-malware\/."},{"key":"e_1_3_2_1_7_1","unstructured":"Security advisory 201308013. https:\/\/code.google.com\/p\/google-caja\/wiki\/SecurityAdvisory201308013.  Security advisory 201308013. https:\/\/code.google.com\/p\/google-caja\/wiki\/SecurityAdvisory201308013."},{"key":"e_1_3_2_1_8_1","unstructured":"Yahoo's malware-pushing ads linked to larger malware scheme. http:\/\/www.pcworld.com\/article\/2086700\/yahoo-malvertising-attack-linked-to-larger-malware-scheme.html.  Yahoo's malware-pushing ads linked to larger malware scheme. http:\/\/www.pcworld.com\/article\/2086700\/yahoo-malvertising-attack-linked-to-larger-malware-scheme.html."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420952"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772701"},{"key":"e_1_3_2_1_11_1","volume-title":"http:\/\/www.adsafe.org","author":"Crockford D.","year":"2011","unstructured":"D. Crockford . ADsafe. http:\/\/www.adsafe.org , 2011 . D. Crockford. ADsafe. http:\/\/www.adsafe.org, 2011."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076774"},{"volume-title":"USENIX SECURITY '09","author":"Guarnieri S.","key":"e_1_3_2_1_13_1","unstructured":"S. Guarnieri and B. Livshits . GATEKEEPER: mostly static enforcement of security and reliability policies for JavaScript code . USENIX SECURITY '09 . S. Guarnieri and B. Livshits. GATEKEEPER: mostly static enforcement of security and reliability policies for JavaScript code. USENIX SECURITY '09."},{"volume-title":"USENIX ATC '12","author":"Ingram L.","key":"e_1_3_2_1_14_1","unstructured":"L. Ingram and M. Walfish . Treehouse: JavaScript sandboxes to help web developers help themselves . USENIX ATC '12 . L. Ingram and M. Walfish. Treehouse: JavaScript sandboxes to help web developers help themselves. USENIX ATC '12."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242654"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455526.1455527"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2012.22"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.16"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2009.11"},{"key":"e_1_3_2_1_20_1","volume-title":"Caja: Safe active content in sanitized JavaScript","author":"Miller M. S.","year":"2008","unstructured":"M. S. Mark S Miller , B. Laurie , I. Awad , and M. Stay . Caja: Safe active content in sanitized JavaScript , 2008 . M. S. Mark S Miller, B. Laurie, I. Awad, and M. Stay. Caja: Safe active content in sanitized JavaScript, 2008."},{"volume-title":"NDSS '10","author":"Mettler A.","key":"e_1_3_2_1_21_1","unstructured":"A. Mettler , D. Wagner , and T. Close . Joe-E: A security-oriented subset of java . NDSS '10 . A. Mettler, D. Wagner, and T. Close. Joe-E: A security-oriented subset of java. NDSS '10."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.36"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.24"},{"key":"e_1_3_2_1_24_1","unstructured":"M. Miller. Secure EcmaScript 5. http:\/\/code.google.com\/p\/es-lab\/wiki\/SecureEcmaScript.  M. Miller. Secure EcmaScript 5. http:\/\/code.google.com\/p\/es-lab\/wiki\/SecureEcmaScript."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382274"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/2414456.2414458"},{"volume-title":"USENIX SECURITY '11","author":"Politz J. G.","key":"e_1_3_2_1_28_1","unstructured":"J. G. Politz , S. A. Eliopoulos , A. Guha , and S. Krishnamurthi . ADsafety: Type-based verification of JavaScript sandboxing . USENIX SECURITY '11 . J. G. Politz, S. A. Eliopoulos, A. Guha, and S. Krishnamurthi. ADsafety: Type-based verification of JavaScript sandboxing. USENIX SECURITY '11."},{"volume-title":"OSDI '06","author":"Reis C.","key":"e_1_3_2_1_29_1","unstructured":"C. Reis , J. Dunagan , H. J. Wang , O. Dubrovsky , and S. Esmeir . BrowserShield: vulnerability-driven filtering of dynamic HTML . OSDI '06 . C. Reis, J. Dunagan, H. J. Wang, O. Dubrovsky, and S. Esmeir. BrowserShield: vulnerability-driven filtering of dynamic HTML. OSDI '06."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/945445.945448"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772784"},{"volume-title":"OSDI '14","author":"Stefan D.","key":"e_1_3_2_1_32_1","unstructured":"D. Stefan , E. Z. Yang , P. Marchenko , A. Russo , D. Herman , B. Karp , and D. Mazieres . Protecting users by confining JavaScript with COWL . OSDI '14 . D. Stefan, E. Z. Yang, P. Marchenko, A. Russo, D. Herman, B. Karp, and D. Mazieres. Protecting users by confining JavaScript with COWL. OSDI '14."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.35"},{"volume-title":"USENIX SECURITY '10","author":"Ter Louw M.","key":"e_1_3_2_1_34_1","unstructured":"M. Ter Louw , K. T. Ganesh , and V. N. Venkatakrishnan . Adjail: Practical enforcement of confidentiality and integrity policies on web advertisements . USENIX SECURITY '10 . M. Ter Louw, K. T. Ganesh, and V. N. Venkatakrishnan. Adjail: Practical enforcement of confidentiality and integrity policies on web advertisements. USENIX SECURITY '10."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.33"},{"key":"e_1_3_2_1_36_1","unstructured":"T. Tran and R. Pelizzi. JaTE System. Available for download from http:\/\/www.seclab.cs.sunysb.edu\/seclab\/download.html.  T. Tran and R. Pelizzi. JaTE System. Available for download from http:\/\/www.seclab.cs.sunysb.edu\/seclab\/download.html."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2818000.2818019"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076775"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-39038-8_7"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/844102.844113"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/1993478.1993496"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294263"},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.25"},{"volume-title":"Understanding and monitoring embedded web scripts","author":"Zhou Y.","key":"e_1_3_2_1_44_1","unstructured":"Y. Zhou and D. Evans . Understanding and monitoring embedded web scripts . IEEE S &P '15. Y. Zhou and D. Evans. Understanding and monitoring embedded web scripts. IEEE S&P '15."}],"event":{"name":"ACSAC 2015: 2015 Annual Computer Security Applications Conference","sponsor":["ACSA Applied Computing Security Assoc"],"location":"Los Angeles CA USA","acronym":"ACSAC 2015"},"container-title":["Proceedings of the 31st Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2818000.2818019","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2818000.2818019","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T05:43:26Z","timestamp":1750225406000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2818000.2818019"}},"subtitle":["Transparent and Efficient JavaScript Confinement"],"short-title":[],"issued":{"date-parts":[[2015,12,7]]},"references-count":43,"alternative-id":["10.1145\/2818000.2818019","10.1145\/2818000"],"URL":"https:\/\/doi.org\/10.1145\/2818000.2818019","relation":{},"subject":[],"published":{"date-parts":[[2015,12,7]]},"assertion":[{"value":"2015-12-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}