December 11, 2017
Comments Off on Mitigating Cross-Site Scripting Attacks with a Content Security Policy
Posted in: IEEE 2017, Java
Mitigating Cross-Site Scripting Attacks with a Content Security Policy Abstract A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors’ CSP implementation successfully mitigated all XSS attack types in four popular browsers.
December 11, 2017
Comments Off on Dynamic and Public Auditing with Fair Arbitration for Cloud Data
Posted in: IEEE 2017, Java
Dynamic and Public Auditing with Fair Arbitration for Cloud Data Abstract Cloud users no longer physically possess their data, so how to ensure the integrity of their outsourceddata becomes a challenging task. Recently proposed schemes such as “provable data possession” and “proofs of retrievability” are designed to address this problem, but they are designed to audit static archive data and therefore lack of data dynamics support. Moreover, […]