Extending the Same Origin Policy with Origin Attributes

@inproceedings{Vyas2017ExtendingTS,
  title={Extending the Same Origin Policy with Origin Attributes},
  author={Tanvi Vyas and Andrea Marchesini and Christoph Kerschbaumer},
  booktitle={ICISSP},
  year={2017}
}
The Same Origin Policy (SOP) builds the foundation of the current web security model. As the web evolves, numerous new specifications propose extensions to the SOP in order to improve site security or improve user privacy. Site operators benefit from an extension to the SOP because it allows sites to partition their physical origin space into many different contexts, each representing their own abstract origin. Users benefit from an extension to the SOP because it allows users to separate user… CONTINUE READING

Similar Papers

Citations

Publications citing this paper.

References

Publications referenced by this paper.
SHOWING 1-10 OF 23 REFERENCES

Tor (anonymity network)

The Tor Project
  • https://www.torproject.org/. (checked: October, 2016).
  • 2012
VIEW 14 EXCERPTS
HIGHLY INFLUENTIAL

Suborigins

J. Weinberger, D. Akhawe
  • https://w3c.github.io/webappsec-suborigins/. (checked: October, 2016).
  • 2016
VIEW 4 EXCERPTS
HIGHLY INFLUENTIAL

HTTP State Management Mechanism

  • RFC
  • 2011
VIEW 7 EXCERPTS
HIGHLY INFLUENTIAL

Private Browsing

Mozilla
  • https://support.mozilla. org/en-US/kb/private-browsing-use-firefox-withouthistory. (checked: October, 2016).
  • 2009
VIEW 4 EXCERPTS
HIGHLY INFLUENTIAL

Online Tracking: A 1-million-site Measurement and Analysis

  • ACM Conference on Computer and Communications Security
  • 2016
VIEW 4 EXCERPTS
HIGHLY INFLUENTIAL

Cross-Origin Identifier Unlinkability

M. Perry, E. Clark, S. Murdoch
  • https://www.torproject. org/projects/torbrowser/design/#identifier-linkability. (checked: October, 2016).
  • 2016
VIEW 3 EXCERPTS

Firefox Containers

Mozilla
  • https://wiki.mozilla.org/ Security/Contextual Identity Project/Containers. (checked: October, 2016).
  • 2016
VIEW 3 EXCERPTS

IsolateMe

E. Stark, M. West, J. Weinberger
  • https://wicg.github.io/isolation/explainer.html. (checked: October, 2016).
  • 2016
VIEW 2 EXCERPTS