English
Related papers

Related papers: Tricking Johnny into Granting Web Permissions

200 papers

This paper reports an interview study about how consent to sexual activity is computer-mediated. The study's context of online dating is chosen due to the prevalence of sexual violence, or nonconsensual sexual activity, that is associated…

Human-Computer Interaction · Computer Science 2021-05-18 Douglas Zytko , Nicholas Furlo , Bailey Carlin , Matthew Archer

Progressive Web Applications (PWAs) blend the advantages of web and native apps, offering features like offline access, push notifications, and installability. Beyond these, modern PWAs are increasingly granted system-level capabilities…

Cryptography and Security · Computer Science 2025-09-18 Mengxiao Wang , Guofei Gu

Current smartphone operating systems regulate application permissions by prompting users on an ask-on-first-use basis. Prior research has shown that this method is ineffective because it fails to account for context: the circumstances under…

Cryptography and Security · Computer Science 2017-03-08 Primal Wijesekera , Arjun Baokar , Lynn Tsai , Joel Reardon , Serge Egelman , David Wagner , Konstantin Beznosov

Modern Web APIs allow developers to provide extensively customized experiences for website visitors, but the richness of the device information they provide also make them vulnerable to being abused to construct browser fingerprints,…

Cryptography and Security · Computer Science 2024-03-26 Enrico Bacis , Igor Bilogrevic , Robert Busa-Fekete , Asanka Herath , Antonio Sartori , Umar Syed

Mobile devices that connect to the Internet via cellular networks are rapidly becoming the primary medium for accessing Web content. Cellular service providers (CSPs) commonly deploy Web proxies and other middleboxes for security,…

Networking and Internet Architecture · Computer Science 2015-11-17 Huijing Zhang , David Choffnes

Web-based agents powered by large language models are increasingly used for tasks such as email management or professional networking. Their reliance on dynamic web content, however, makes them vulnerable to prompt injection attacks:…

To protect users' privacy, legislators have regulated the usage of tracking technologies, mandating the acquisition of users' consent before collecting data. Consequently, websites started showing more and more consent management modules --…

Cryptography and Security · Computer Science 2022-09-14 Nikhil Jha , Martino Trevisan , Luca Vassio , Marco Mellia

This article provides a quantitative analysis of privacy-compromising mechanisms on 1 million popular websites. Findings indicate that nearly 9 in 10 websites leak user data to parties of which the user is likely unaware; more than 6 in 10…

Cryptography and Security · Computer Science 2015-11-03 Timothy Libert

Browser fingerprinting is a pervasive online tracking technique used increasingly often for profiling and targeted advertising. Prior research on the prevalence of fingerprinting heavily relied on automated web crawls, which inherently…

Cryptography and Security · Computer Science 2025-02-04 Meenatchi Sundaram Muthu Selva Annamalai , Igor Bilogrevic , Emiliano De Cristofaro

IT professionals have no simple tool to create phishing websites and raise the awareness of users. We developed a prototype that can dynamically mimic websites by using enriched screenshots, which requires no additional programming…

Cryptography and Security · Computer Science 2021-11-08 Pascal Gadient , Pascal Gerig , Oscar Nierstrasz , Mohammad Ghafari

The rise of Large Language Model (LLM)-based web agents represents a significant shift in automated interactions with the web. Unlike traditional crawlers that follow simple conventions, such as robots$.$txt, modern agents engage with…

With the ever growing networking capabilities and services offered to users, attack surfaces have been increasing exponentially, additionally, the intricacy of network architectures has increased the complexity of cyber-defenses, to this…

Cryptography and Security · Computer Science 2019-03-22 Xavier Bellekens , Gayan Jayasekara , Hanan Hindy , Miroslav Bures , David Brosset , Christos Tachtatzis , Robert Atkinson

Mobile gaming apps are woven into children's daily lives. Given their ongoing cognitive and emotional development, children are especially vulnerable and depend on designs that safeguard their well-being. When apps feature manipulative…

Due to the amount of data that smartphone applications can potentially access, platforms enforce permission systems that allow users to regulate how applications access protected resources. If users are asked to make security decisions too…

Cryptography and Security · Computer Science 2015-04-16 Primal Wijesekera , Arjun Baokar , Ashkan Hosseini , Serge Egelman , David Wagner , Konstantin Beznosov

Browser agents enable autonomous web interaction but face critical reliability and security challenges in production. This paper presents findings from building and operating a production browser agent. The analysis examines where current…

Software Engineering · Computer Science 2025-11-26 Aram Vardanyan

The quality of experience with the mobile web remains poor, partially as a result of complex websites and design choices that worsen performance, particularly for users in suboptimal networks or devices. Prior proposed solutions have seen…

Networking and Internet Architecture · Computer Science 2021-11-22 Byungjin Jun , Fabian E. Bustamante , Ben Greenstein , Ian Clelland

Modern web browsers have accrued an incredibly broad set of features since being invented for hypermedia dissemination in 1990. Many of these features benefit users by enabling new types of web applications. However, some features also…

Cryptography and Security · Computer Science 2017-09-06 Peter Snyder , Cynthia Taylor , Chris Kanich

Among populations with limited literacy in emerging digital markets, the adoption of mobile phones, combined with comprehension barriers and poor cybersecurity hygiene, has created hidden privacy risks. This paper examines how informed…

This Work-In-Progress Paper for the Innovative Practice Category presents a novel experiment in active learning of cybersecurity. We introduced a new workshop on hacking for an existing science-popularizing program at our university. The…

Computers and Society · Computer Science 2019-03-12 Valdemar Švábenský , Jan Vykopal

Phishing is an online fraudulent technique, which aims to steal sensitive information such as usernames, passwords and online banking details from its victims. To prevent this, anti-phishing education needs to be considered. This research…

Computers and Society · Computer Science 2015-11-06 Nalin Asanka Gamagedara Arachchilage , Steve Love , Carsten Maple
‹ Prev 1 2 3 10 Next ›