Extending the Same Origin Policy with Origin Attributes

  title={Extending the Same Origin Policy with Origin Attributes},
  author={Tanvi Vyas and A. Marchesini and Christoph Kerschbaumer},
  • Tanvi Vyas, A. Marchesini, Christoph Kerschbaumer
  • Published in ICISSP 2017
  • Computer Science
  • The Same Origin Policy (SOP) builds the foundation of the current web security model. [...] Key Method Instead of spending considerable engineering effort to patch the browser for every new specification that proposes to extend the SOP, we re-design a web browsers architecture and build Origin Attributes directly into a browsers rendering engine. Our implementation allows any specification or web technology to integrate into Origin Attributes with minimal engineering effort and reduces the risk of jeopardizing…Expand Abstract
    Automated discovery of privacy violations on the web
    • 5
    • PDF
    Hardening Firefox against Injection Attacks


    Publications referenced by this paper.
    The Web Never Forgets: Persistent Tracking Mechanisms in the Wild
    • 338
    • PDF
    Online Tracking: A 1-million-site Measurement and Analysis
    • 325
    • Highly Influential
    • PDF
    Cookies That Give You Away: The Surveillance Implications of Web Tracking
    • 137
    • PDF
    Protecting Users by Confining JavaScript with COWL
    • 72
    • PDF
    The Web Origin Concept
    • 132
    • PDF
    XRay: Enhancing the Web's Transparency with Differential Correlation
    • 100
    • PDF
    HTTP State Management Mechanism
    • 88
    • Highly Influential
    • PDF
    Exposing the Hidden Web: An Analysis of Third-Party HTTP Requests on 1 Million Websites
    • 58
    • PDF