White Papers
Protecting the Intranet Against "JavaScript Malware" and Related Attacks
Category: Software and Web Development, Security
Overview The networking functionality of JavaScript is restricted by the Same Origin Policy (SOP). However, as the SOP applies on a document level, JavaScript still possesses certain functionality for cross domain communication. These capabilities can be employed by malicious JavaScript to gain access to intranet resources from the outside. This paper exemplifies capabilities of such scripts. To protect intranet hosts against JavaScript based threats, the paper then proposes three countermeasures: Element Level SOP, rerouting of cross-site requests, and restricting the local network. These approaches are discussed concerning their respective protection potential and disadvantages. Based on this analysis, the most promising approach, restricting the local network, is evaluated practically.
- Publisher
- Springer Science+Business Media
- File Format
- Date Published
- Oct 22, 2008
- Format
- White Papers
- Topics
- Spyware, Intranet, Network Security
Springer Science+Business Media White Papers
Open-Source PC-Based Software Routers: A Viable Approach to High-Performance Packet Switching
This paper considers IP routers based on off-the-shelf Personal Computer (PC) hardware running the Linux open-source ope
Publisher: Springer Science+Business Media | Tags: ip, linux, pc, pcs, routers, software
Multi-path Routing Protocols in Wireless Mobile Ad Hoc Networks: A Quantitative Comparison
Multi-path routing represents a promising routing method for wireless mobile ad hoc networks. Multi-path routing achieve
Publisher: Springer Science+Business Media
TCP Over CDMA2000 Networks: A Cross-Layer Measurement Study
Modern cellular channels in 3G networks incorporate sophisticated power control and dynamic rate adaptation which can ha
Publisher: Springer Science+Business Media | Tags: cdma, cdma2000, cellular, ip
Architectural Decisions and Patterns for Transactional Workflows in SOA
An important architectural style for constructing enterprise applications is to use transactional workflows in SOA. In t
Publisher: Springer Science+Business Media | Tags: applications, enterprise applications, soa
Channel Capacity of TDD-OFDM-MIMO for Multiple Access Points in a Wireless Single-Frequency-Network
The Multiple-Input-Multiple-Output (MIMO) technique is the most attractive candidate to improve the spectrum efficiency
Publisher: Springer Science+Business Media | Tags: data
Featured white papers
-
The Value of Location Intelligence in the Communications Industry
Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...
-
Best Practices for Translating Customer Satisfaction into Revenue
Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...
-
HP print solutions and 3M
The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...
-
Check out these top business apps for your iPhone
-
Inside a Microsoft datacentre
-
Green IT without losing your edge
-
Peter Cochrane's latest video blog
-
What you need to know about Windows 7