A lattice-based approach to mashup security
Paper in proceeding, 2010
A web mashup is a web application that integrates content from different providers to create a new service, not offered by the content providers. As mashups grow in popularity, the problem of securing information flow between mashup components becomes increasingly important. This paper presents a security lattice-based approach to mashup security, where the origins of the different components of the mashup are used as levels in the security lattice. Declassification allows controlled information release between the components. We formalize a notion of composite delimited release policy and provide considerations for practical (static as well as runtime) enforcement of mashup information-flow security policies in a web browser. © 2010 ACM.
web mashups
security policies
noninterference
declassification
information flow
lattices
Author
Jonas Magazinius
Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)
Aslan Askarov
Andrei Sabelfeld
Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)
5th ACM Symposium on Information, Computer and Communication Security, ASIACCS 2010; Beijing; 13 April 2010 through 16 April 2010
15-23
978-160558936-7 (ISBN)
Areas of Advance
Information and Communication Technology
Subject Categories
Software Engineering
Computer Science
DOI
10.1145/1755688.1755691
ISBN
978-160558936-7