Výsledky vyhledávání - "Marcus Niemietz"

On the Security of Parsing Security-Relevant HTTP Headers in Modern Browsers

Autor: Hendrik Siewert, Martin Kretschmer, Marcus Niemietz, Juraj Somorovsky

Publikováno v: 2022 IEEE Security and Privacy Workshops (SPW).

Externí odkaz: https://explore.openaire.eu/search/publication?articleId=doi_________::a0327e53429af59801c1206f46dbedf4
https://doi.org/10.1109/spw54247.2022.9833880

Zobrazit plný text záznamu

Out of the Dark: UI Redressing and Trustworthy Events

Autor: Marcus Niemietz, Jörg Schwenk

Publikováno v: Cryptology and Network Security ISBN: 9783030026400
CANS

Web applications use trustworthy events consciously triggered by a human user (e.g., a left mouse click) to authorize security-critical changes. Clickjacking and UI redressing (UIR) attacks trick the user into triggering a trustworthy event unconscio

Externí odkaz: https://explore.openaire.eu/search/publication?articleId=doi_________::33c402c54e7480a60ba1ab9e213c08a7
https://doi.org/10.1007/978-3-030-02641-7_11

Zobrazit plný text záznamu

Scriptless attacks: Stealing more pie without touching the sill

Autor: Mario Heiderich, Felix Schuster, Marcus Niemietz, Jörg Schwenk, Thorsten Holz

Publikováno v: Journal of Computer Security. 22:567-599

Due to their high practical impact, Cross-Site Scripting (XSS) attacks have attracted a lot of attention from the members of security community worldwide. In the same way, a plethora of more or less effective defense techniques have been proposed, ad

Externí odkaz: https://explore.openaire.eu/search/publication?articleId=doi_________::9f9cc961238c43e9e921be9af2e22dbc
https://doi.org/10.3233/jcs-130494

Zobrazit plný text záznamu

Waiting for CSP – Securing Legacy Web Applications with JSAgents

Autor: Mario Heiderich, Marcus Niemietz, Jörg Schwenk

Publikováno v: Computer Security--ESORICS 2015 ISBN: 9783319241739
ESORICS (1)

Markup Injection MI attacks, ranging from classical Cross-Site Scripting XSS and DOMXSS to Scriptless Attacks, pose a major threat for web applications, browser extensions, and mobile apps. To mitigate MI attacks, we propose JSAgents, a novel and fle

Externí odkaz: https://explore.openaire.eu/search/publication?articleId=doi_________::46b899e3a7ee8aea33a52968c4c985c0
https://doi.org/10.1007/978-3-319-24174-6_2

Zobrazit plný text záznamu

Elektronická kniha

Clickjacking und UI-Redressing - Vom Klick-Betrug zum Datenklau : Ein Leitfaden für Sicherheitsexperten und Webentwickler

Autor: Marcus Niemietz

Das Buch befasst sich mit den Themen Clickjacking und UI-Redressing. Hierbei handelt es sich um eine Art der Webseitenmanipulation, um Benutzer vermeintlich sichere Aktionen ausführen zu lassen. Ziel des Buches ist es ein tiefgehendes und praxisorie

Zobrazit plný text záznamu

The Bug That Made Me President a Browser- and Web-Security Case Study on Helios Voting

Autor: Marcus Niemietz, Mario Heiderich, Jörg Schwenk, Tilman Frosch

Publikováno v: Lecture Notes in Computer Science ISBN: 9783642327469
VOTE-ID

This paper briefly describes security challenges for critical web applications such as the Helios Voting system. After analyzing the Helios demonstration website we discovered several small flaws that can have a large security critical impact. An att

Externí odkaz: https://explore.openaire.eu/search/publication?articleId=doi_________::e022d10269ab209f15c7949860ff8142
https://doi.org/10.1007/978-3-642-32747-6_6

Zobrazit plný text záznamu

Vyhledávací nástroje:

Upřesnit hledání