English
Related papers

Related papers: TaintAssembly: Taint-Based Information Flow Contro…

200 papers

Many important security properties can be formulated in terms of flows of tainted data, and improved taint analysis tools to prevent such flows are of critical need. Most existing taint analyses use whole-program static analysis, leading to…

Programming Languages · Computer Science 2025-05-02 Nima Karimipour , Kanak Das , Manu Sridharan , Behnaz Hassanshahi

The increasing heterogeneity of hardware and software in the Internet of Things (IoT) poses a major challenge for the portability, maintainability and deployment of software on devices with limited resources. WebAssembly (WASM), originally…

Hardware Architecture · Computer Science 2025-12-02 Mislav Has , Tao Xiong , Fehmi Ben Abdesslem , Mario Kušek

Performance debugging in WebAssembly (Wasm) runtimes is essential for ensuring the robustness of Wasm, especially since performance issues have frequently occurred in Wasm runtimes, which can significantly degrade the capabilities of hosted…

Software Engineering · Computer Science 2026-04-16 Ruiying Zeng , Shuyao Jiang , Wenxuan Zhao , Yangfan Zhou

In real-world scenarios, trusted execution environments (TEEs) frequently host applications that lack the trust of the infrastructure provider, as well as data owners who have specifically outsourced their data for remote processing. We…

Cryptography and Security · Computer Science 2023-12-15 Jämes Ménétrey , Marcelo Pasin , Pascal Felber , Valerio Schiavoni , Giovanni Mazzeo , Arne Hollum , Darshan Vaydia

WebAssembly (Wasm) is a low-level binary format for web applications, which has found widespread adoption due to its improved performance and compatibility with existing software. However, the popularity of Wasm has also led to its…

Cryptography and Security · Computer Science 2023-05-25 Nils Loose , Felix Mächtle , Claudius Pott , Volodymyr Bezsmertnyi , Thomas Eisenbarth

WebAssembly has become a crucial part of the modern web, offering a faster alternative to JavaScript in browsers. While boosting rich applications in browser, this technology is also very efficient to develop cryptojacking malware. This has…

Software Engineering · Computer Science 2023-06-08 Javier Cabrera-Arteaga , Martin Monperrus , Tim Toady , Benoit Baudry

A key strength of managed runtimes over hardware is the ability to gain detailed insight into the dynamic execution of programs with instrumentation. Analyses such as code coverage, execution frequency, tracing, and debugging, are all made…

Programming Languages · Computer Science 2024-03-14 Ben L. Titzer , Elizabeth Gilbert , Bradley Wei Jie Teo , Yash Anand , Kazuyuki Takayama , Heather Miller

WebAssembly is an instruction set architecture and binary format standard, designed for secure execution by an interpreter. Previous work has shown that WebAssembly is vulnerable to buffer overflow due to the lack of effective protection…

Cryptography and Security · Computer Science 2024-10-24 Quentin Michaud , Yohan Pipereau , Olivier Levillain , Dhouha Ayed

WebAssembly (Wasm) is a low-level bytecode format that can run in modern browsers. With the development of standalone runtimes and the improvement of the WebAssembly System Interface (WASI), Wasm has further provided a more complete…

Software Engineering · Computer Science 2024-09-17 Chenxi Mao , Yuxin Su , Shiwen Shan , Dan Li

The emergence of WebAssembly allows attackers to hide the malicious functionalities of JavaScript malware in cross-language interoperations, termed JavaScript-WebAssembly multilingual malware (JWMM). However, existing anti-virus solutions…

Cryptography and Security · Computer Science 2024-04-22 Yifan Xia , Ping He , Xuhong Zhang , Peiyu Liu , Shouling Ji , Wenhai Wang

WebAssembly (Wasm) is a portable bytecode format that serves as a compilation target for high-level languages, enabling their secure and efficient execution across diverse platforms, including web browsers and embedded systems. To improve…

Programming Languages · Computer Science 2025-06-23 Byeongjee Kang , Harsh Desai , Limin Jia , Brandon Lucia

Taint analysis is a security analysis technique used to track the flow of potentially dangerous data through an application and its dependent libraries. Investigating why certain unexpected flows appear and why expected flows are missing is…

Software Engineering · Computer Science 2025-12-05 Burak Yetiştiren , Hong Jin Kang , Miryung Kim

WebAssembly is quickly becoming a popular compilation target for a variety of code. However, vulnerabilities in the source languages translate to vulnerabilities in the WebAssembly binaries. This work proposes a methodology and a…

Cryptography and Security · Computer Science 2026-04-07 Weiqi Feng

Dynamic taint tracking is the process of assigning label to variables in a program and then tracking the flow of the labels as the program executes. Dynamic taint tracking for java applications is achieved by instrumenting the application…

Cryptography and Security · Computer Science 2024-12-02 Manoj RameshChandra Thakur

WebAssembly (Wasm) has risen as a widely used technology to distribute computing workloads on different platforms. The platform independence offered through Wasm makes it an attractive solution for many different applications that can run…

Cryptography and Security · Computer Science 2025-12-17 Markus Berthilsson , Christian Gehrmann

Memory corruption attacks remain the primary threat for computer security. Information flow tracking or taint analysis has been proven to be effective against most memory corruption attacks. However, there are two shortcomings with current…

Cryptography and Security · Computer Science 2015-03-13 Pankaj Kohli

WebAssembly's (Wasm) monolithic linear memory model facilitates memory corruption attacks that can escalate to cross-site scripting in browsers or go undetected when a malicious host tampers with a module's state. Existing defenses rely on…

Cryptography and Security · Computer Science 2026-03-26 Oussama Draissi , Mark Günzel , Ahmad-Reza Sadeghi , Lucas Davi

WebAssembly (Wasm) has emerged as a powerful technology for executing high-performance code and reusing legacy code in web browsers. With its increasing adoption, ensuring the reliability of WebAssembly code becomes paramount. In this…

Software Engineering · Computer Science 2024-12-31 Sara Baradaran , Liyan Huang , Mukund Raghothaman , Weihang Wang

As the expansion of IoT connectivity continues to provide quality-of-life improvements around the world, they simultaneously introduce increasing privacy and security concerns. The lack of a clear definition in managing shared and protected…

Cryptography and Security · Computer Science 2026-01-22 Botong Ou , Baijian Yang

Machine learning is often used for malicious website detection, but an approach incorporating WebAssembly as a feature has not been explored due to a limited number of samples, to the best of our knowledge. In this paper, we propose…

Cryptography and Security · Computer Science 2023-06-12 Chika Komiya , Naoto Yanai , Kyosuke Yamashita , Shingo Okamura