English
Related papers

Related papers: A Security Analysis of Browser Extensions

200 papers

Plugin systems are a class of external programmes that provide users with a wide range of functionality, and while they enhance the user experience, their security is always a challenge. Especially due to the diversity and complexity of…

Cryptography and Security · Computer Science 2025-08-19 Ruomai Ren

It is important to design browser security and privacy alerts so as to maximise their value to the end user, and their efficacy in terms of communicating risk. We derived a list of design guidelines from the research literature by carrying…

Human-Computer Interaction · Computer Science 2018-06-15 Lynsay A. Shepherd , Karen Renaud

Usable and secure authentication on the web and beyond is mission-critical. While password-based authentication is still widespread, users have trouble dealing with potentially hundreds of online accounts and their passwords. Alternatives…

Cryptography and Security · Computer Science 2023-11-28 Jan H. Klemmer , Marco Gutfleisch , Christian Stransky , Yasemin Acar , M. Angela Sasse , Sascha Fahl

Modern web browsers are incredibly complex, with millions of lines of code and over one thousand JavaScript functions and properties available to website authors. This work investigates how these browser features are used on the modern,…

Networking and Internet Architecture · Computer Science 2016-05-23 Peter Snyder , Lara Ansari , Cynthia Taylor , Chris Kanich

Web browsers provide the security foundation for our online experiences. Significant research has been done into the security of browsers themselves, but relatively little investigation has been done into how they interact with the…

Cryptography and Security · Computer Science 2025-04-25 Dolière Francis Somé , Moaz Airan , Zakir Durumeric , Cristian-Alexandru Staicu

Modern web browsers have effectively become the new operating system for business applications, yet their security posture is often under-scrutinized. This paper presents a novel, comprehensive Browser Security Posture Analysis…

Cryptography and Security · Computer Science 2025-05-14 Avihay Cohen

With the wave of high-profile supply chain attacks targeting development and client organizations, supply chain security has recently become a focal point. As a result, there is an elevated discussion on securing the development environment…

The most common attacks against web sessions are reviewed in this paper, for example, some attacks against web browsers' honest users attempting to create session with trusted web browser application legally. We have assessed with four…

Software Engineering · Computer Science 2023-10-18 Md. Imtiaz Habib , Abdullah Al Maruf , Md. Jobair Ahmed Nabil

Cloud-application add-ons are microservices that extend the functionality of the core applications. Many application vendors have opened their APIs for third-party developers and created marketplaces for add-ons (also add-ins or apps). This…

Cryptography and Security · Computer Science 2019-11-28 Thanh Bui , Siddharth Rao , Markku Antikainen , Tuomas Aura

Password managers provide significant security benefits to users. However, malicious client-side scripts and browser extensions can steal passwords after the manager has autofilled them into the web page. In this paper, we extend prior work…

Cryptography and Security · Computer Science 2025-10-16 Anuj Gautam , Tarun Yadav , Garrett Smith , Kent Seamons , Scott Ruoti

Internet users are more likely to ignore Internet content verification and more likely to share the content. When it comes to Islamic content, it is crucial to share and spread fake or inaccurate content. Even if the verification process of…

Computers and Society · Computer Science 2017-01-26 Maged M. Eljazzar , Mostafa Abdulhamid , Mahmoud Mouneer , Ayman Salama

This paper presents a systematic evaluation of the privacy behaviors and attributes of eight recent, popular browser agents. Browser agents are software that automate Web browsing using large language models and ancillary tooling. However,…

Cryptography and Security · Computer Science 2025-12-09 Alisha Ukani , Hamed Haddadi , Ali Shahin Shamsabadi , Peter Snyder

Broken access control is one of the most common security vulnerabilities in web applications. These vulnerabilities are the major cause of many data breach incidents, which result in privacy concern and revenue loss. However, preventing and…

Cryptography and Security · Computer Science 2023-04-24 Li Zhong

Websites are capable of learning a wide range of information about the platform on which a browser is executing. One major source of such information is the set of standardised Application Programming Interfaces (APIs) provided within the…

Cryptography and Security · Computer Science 2019-10-17 Zhaoyi Fan

With the development of e-commerce, ssl protocol is more and more widely applied to various network services. It is one of key technologies to keep user's data in secure transmission via internet. This document majorly focuses on "SSLStrip"…

Cryptography and Security · Computer Science 2012-09-18 Fenil Kavathia , Ajay Modi

The status-quo of misinformation moderation is a central authority, usually social platforms, deciding what content constitutes misinformation and how it should be handled. However, to preserve users' autonomy, researchers have explored…

Human-Computer Interaction · Computer Science 2024-03-19 Farnaz Jahanbakhsh , David R. Karger

Nowadays, all major web browsers have a private browsing mode. However, the mode's benefits and limitations are not particularly understood. Through the use of survey studies, prior work has found that most users are either unaware of…

Human-Computer Interaction · Computer Science 2019-06-04 Ruba Abu-Salma , Benjamin Livshits

Most modern web browsers today sacrifice optimal TLS security for backward compatibility. They apply coarse-grained TLS configurations that support (by default) legacy versions of the protocol that have known design weaknesses, and weak…

Cryptography and Security · Computer Science 2018-09-18 Eman Salem Alashwali , Kasper Rasmussen

Modern websites include various types of third-party content such as JavaScript, images, stylesheets, and Flash objects in order to create interactive user interfaces. In addition to explicit inclusion of third-party content by website…

Cryptography and Security · Computer Science 2020-02-17 Sajjad Arshad , Amin Kharraz , William Robertson

Online tracking is a widespread practice on the web with questionable ethics, security, and privacy concerns. While web tracking can offer personalized and curated content to Internet users, it operates as a sophisticated surveillance…

Cryptography and Security · Computer Science 2025-01-07 Seyed Ali Akhavani , Engin Kirda , Amin Kharraz