Please use this identifier to cite or link to this item:
https://doi.org/10.1007/978-3-642-40203-6_5
| DC Field | Value | |
|---|---|---|
| dc.title | A quantitative evaluation of privilege separation in web browser designs | |
| dc.contributor.author | Dong, X. | |
| dc.contributor.author | Hu, H. | |
| dc.contributor.author | Saxena, P. | |
| dc.contributor.author | Liang, Z. | |
| dc.date.accessioned | 2014-07-04T03:11:02Z | |
| dc.date.available | 2014-07-04T03:11:02Z | |
| dc.date.issued | 2013 | |
| dc.identifier.citation | Dong, X., Hu, H., Saxena, P., Liang, Z. (2013). A quantitative evaluation of privilege separation in web browser designs. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) 8134 LNCS : 75-93. ScholarBank@NUS Repository. https://doi.org/10.1007/978-3-642-40203-6_5 | |
| dc.identifier.isbn | 9783642402029 | |
| dc.identifier.issn | 03029743 | |
| dc.identifier.uri | http://scholarbank.nus.edu.sg/handle/10635/77978 | |
| dc.description.abstract | Privilege separation is a fundamental security concept that has been used in designing many secure systems. A number of recent works propose re-designing web browsers with greater privilege separation for better security. In practice, however, privilege-separated designs require a fine balance between security benefits and other competing concerns, such as performance. In fact, performance overhead has been a main cause that prevents many privilege separation proposals from being adopted in real systems. In this paper, we develop a new measurement-driven methodology that quantifies security benefits and performance costs for a given privilege-separated browser design. Our measurements on a large corpus of web sites provide key insights on the security and performance implications of partitioning dimensions proposed in 9 recent browser designs. Our results also provide empirical guidelines to resolve several design decisions being debated in recent browser re-design efforts. © 2013 Springer-Verlag. | |
| dc.description.uri | http://libproxy1.nus.edu.sg/login?url=http://dx.doi.org/10.1007/978-3-642-40203-6_5 | |
| dc.source | Scopus | |
| dc.subject | browser design | |
| dc.subject | measurement | |
| dc.subject | Privilege separation | |
| dc.type | Conference Paper | |
| dc.contributor.department | COMPUTER SCIENCE | |
| dc.description.doi | 10.1007/978-3-642-40203-6_5 | |
| dc.description.sourcetitle | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) | |
| dc.description.volume | 8134 LNCS | |
| dc.description.page | 75-93 | |
| dc.identifier.isiut | NOT_IN_WOS | |
| Appears in Collections: | Staff Publications | |
Show simple item record
Files in This Item:
There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.