Michele Spagnuolo

Learn More
i My rst debt of gratitude is due to my advisor Stefano Zanero for his help, guidance and general kindness. I owe him my heartfelt appreciation. Discussions with Stefano and Federico Maggi greatly contributed to the exposition and development of this thesis and material submitted to conferences and workshops. I would like to thank the following friends,(More)
Content Security Policy is a web platform mechanism designed to mitigate cross-site scripting (XSS), the top security vulnerability in modern web applications. In this paper, we take a closer look at the practical benefits of adopting CSP and identify significant flaws in real-world deployments that result in bypasses in 94.72% of all distinct policies. We(More)
  • 1