conference-proceedings-2nd USENIX Conference on Web Application Development -WebApps ’11-free





GuardRails: A Data-Centric Web Application Security Framework 1
Jonathan Burket, Patrick Mutchler, Michael Weaver, Muzzammil Zaveri, and David Evans, University of
Virginia
PHP Aspis: Using Partial Taint Tracking to Protect Against Injection Attacks .13
Ioannis Papagiannis, Matteo Migliavacca, and Peter Pietzuch, Imperial College London
Secure Data Preservers for Web Services 25
Jayanthkumar Kannan, Google Inc.; Petros Maniatis, Intel Labs; Byung-Gon Chun, Yahoo! Research
1:00–2:30
BenchLab: An Open Testbed for Realistic Benchmarking of Web Applications 37
Emmanuel Cecchet, Veena Udayabhanu, Timothy Wood, and Prashant Shenoy, University of Massachusetts
Amherst
Resource Provisioning of Web Applications in Heterogeneous Clouds .49
Jiang Dejun, VU University Amsterdam and Tsinghua University Beijing; Guillaume Pierre, VU University
Amsterdam; Chi-Hung Chi, Tsinghua University Beijing
C3: An Experimental, Extensible, Reconfigurable Platform for HTML-based Applications 61
Benjamin S. Lerner and Brian Burg, University of Washington; Herman Venter and Wolfram Schulte, Microsoft
Research
3:00–4:30
The Effectiveness of Application Permissions.75
Adrienne Porter Felt, Kate Greenwood, and David Wagner, University of California, Berkeley
Experiences on a Design Approach for Interactive Web Applications87
Janne Kuuskeri, Tampere University of Technology
Exploring the Relationship Between Web Application Development Tools and Security .99
Matthew Finifter and David Wagner, University of California, Berkeley
Thursday, June 16
1:00–2:30
Integrating Long Polling with an MVC Web Framework . 113
Eric Stratmann, John Ousterhout, and Sameer Madan, Stanford University
Detecting Malicious Web Links and Identifying Their Attack Types125
Hyunsang Choi, Korea University; Bin B. Zhu, Microsoft Research Asia; Heejo Lee, Korea University
Maverick: Providing Web Applications with Safe and Flexible Access to Local Devices 137
David W. Richardson and Steven D. Gribble, University of Washington

Click here for free

the complete conference-proceedings





- -

FREE IEEE PAPER