TC: Medium: Securing JavaScript Web Applications via Staged Policy Enforcement

TC：中：通过分阶段策略执行保护 JavaScript Web 应用程序

• 批准号: 0964702
• 负责人: Ranjit Jhala
• 金额: $ 115.19万
• 依托单位: University of California-San Diego
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2010
• 资助国家: 美国
• 起止时间: 2010-04-01 至 2015-03-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0964702&HistoricalAwards=false
• 关键词: TC; Medium; Securing; JavaScript; Web

JavaScript is the lingua franca of modern Internet computing. Unlike traditional code, JavaScript is highly dynamic and malleable. While JavaScript is increasingly used in security-critical applications that manipulate sensitive information like banking information and social security numbers, Web browsers' sandboxing mechanism for JavaScript (the "same-origin policy") is too coarse to adequately secure "mashups" that combine code at runtime from mutually distrusting origins.This project provides tools to secure JavaScript applications from buggy or malicious code by enforcing security policies, written by developers and users, that specify what code should be trusted and what data must be protected.Faced with dynamic applications like mashups, traditional enforcement mechanisms call for either one incomplete initial analysis or expensive from-scratch re-analysis whenever code is added. This project instead introduces staged program analysis. At each stage, as much analysis as possible is performed as possible given the known code; the remainder of the analysis computation is deferred until more code becomes available.The system, implemented in a browser and evaluated on real Web sites, must be scalable enough to use with complex, popular sites; precise enough to produce few false positives; efficient enough to run on end users' browsers without noticeable performance degradation; and user-friendly in minimizing user intervention and providing a faithful rendition of protected sites.For users, the project will make Web 2.0 applications safer and more reliable, without degrading the browsing experience. For developers, it will provide early error detection and the guarantee of safe execution for dynamic Web 2.0 applications.

JavaScript是现代互联网计算的通用弗兰卡。 与传统代码不同，JavaScript具有高度的动态性和可塑性。 虽然JavaScript越来越多地用于操纵银行信息和社会安全号码等敏感信息的安全关键型应用程序，但Web浏览器的JavaScript沙箱机制（“同源策略”）太粗糙，无法充分保护“混搭”，即在运行时将来自相互不信任的源的联合收割机代码组合在一起。该项目提供了通过强制执行安全策略来保护JavaScript应用程序免受错误或恶意代码的工具，由开发人员和用户编写，指定哪些代码应该被信任，哪些数据必须被保护。面对mashup这样的动态应用程序，传统的强制执行机制要么需要一个不完整的初始分析，要么需要在添加代码时进行昂贵的从头开始的重新分析。 这个项目引入了阶段式程序分析。 在每个阶段，在给定已知代码的情况下执行尽可能多的分析;分析计算的剩余部分被推迟到更多代码可用时。在浏览器中实现并在真实的网站上评估的系统必须具有足够的可伸缩性以用于复杂的、流行的网站;足够精确以产生很少的误报;足够高效，可以在最终用户的浏览器上运行，而不会出现明显的性能下降;并且在最小化用户干预和提供受保护站点的忠实再现方面是用户友好的。对于用户，该项目将使Web 2.0应用程序更安全、更可靠，而不会降低浏览体验。 对于开发人员来说，它将为动态Web 2.0应用程序提供早期错误检测和安全执行的保证。