Security and integrity checker for JavaScript dependencies
- Autores
- Ravera, Emanuel; Medel, Ricardo; Navarro, Néstor
- Año de publicación
- 2017
- Idioma
- inglés
- Tipo de recurso
- documento de conferencia
- Estado
- versión publicada
- Descripción
- Nowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable.
Sociedad Argentina de Informática e Investigación Operativa (SADIO) - Materia
-
Ciencias Informáticas
PumaScript meta-programming framework
JavaScript dependency injector - Nivel de accesibilidad
- acceso abierto
- Condiciones de uso
- http://creativecommons.org/licenses/by-sa/4.0/
- Repositorio
- Institución
- Universidad Nacional de La Plata
- OAI Identificador
- oai:sedici.unlp.edu.ar:10915/64863
Ver los metadatos del registro completo
id |
SEDICI_3d9b6ae2263ae34a7eb1a9e0519482f0 |
---|---|
oai_identifier_str |
oai:sedici.unlp.edu.ar:10915/64863 |
network_acronym_str |
SEDICI |
repository_id_str |
1329 |
network_name_str |
SEDICI (UNLP) |
spelling |
Security and integrity checker for JavaScript dependenciesRavera, EmanuelMedel, RicardoNavarro, NéstorCiencias InformáticasPumaScript meta-programming frameworkJavaScript dependency injectorNowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable.Sociedad Argentina de Informática e Investigación Operativa (SADIO)2017-09info:eu-repo/semantics/conferenceObjectinfo:eu-repo/semantics/publishedVersionObjeto de conferenciahttp://purl.org/coar/resource_type/c_5794info:ar-repo/semantics/documentoDeConferenciaapplication/pdfhttp://sedici.unlp.edu.ar/handle/10915/64863enginfo:eu-repo/semantics/altIdentifier/url/http://www.clei2017-46jaiio.sadio.org.ar/sites/default/files/Mem/IETFDay/IETFDay-01.pdfinfo:eu-repo/semantics/openAccesshttp://creativecommons.org/licenses/by-sa/4.0/Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0)reponame:SEDICI (UNLP)instname:Universidad Nacional de La Platainstacron:UNLP2025-09-03T10:41:23Zoai:sedici.unlp.edu.ar:10915/64863Institucionalhttp://sedici.unlp.edu.ar/Universidad públicaNo correspondehttp://sedici.unlp.edu.ar/oai/snrdalira@sedici.unlp.edu.arArgentinaNo correspondeNo correspondeNo correspondeopendoar:13292025-09-03 10:41:23.938SEDICI (UNLP) - Universidad Nacional de La Platafalse |
dc.title.none.fl_str_mv |
Security and integrity checker for JavaScript dependencies |
title |
Security and integrity checker for JavaScript dependencies |
spellingShingle |
Security and integrity checker for JavaScript dependencies Ravera, Emanuel Ciencias Informáticas PumaScript meta-programming framework JavaScript dependency injector |
title_short |
Security and integrity checker for JavaScript dependencies |
title_full |
Security and integrity checker for JavaScript dependencies |
title_fullStr |
Security and integrity checker for JavaScript dependencies |
title_full_unstemmed |
Security and integrity checker for JavaScript dependencies |
title_sort |
Security and integrity checker for JavaScript dependencies |
dc.creator.none.fl_str_mv |
Ravera, Emanuel Medel, Ricardo Navarro, Néstor |
author |
Ravera, Emanuel |
author_facet |
Ravera, Emanuel Medel, Ricardo Navarro, Néstor |
author_role |
author |
author2 |
Medel, Ricardo Navarro, Néstor |
author2_role |
author author |
dc.subject.none.fl_str_mv |
Ciencias Informáticas PumaScript meta-programming framework JavaScript dependency injector |
topic |
Ciencias Informáticas PumaScript meta-programming framework JavaScript dependency injector |
dc.description.none.fl_txt_mv |
Nowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable. Sociedad Argentina de Informática e Investigación Operativa (SADIO) |
description |
Nowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable. |
publishDate |
2017 |
dc.date.none.fl_str_mv |
2017-09 |
dc.type.none.fl_str_mv |
info:eu-repo/semantics/conferenceObject info:eu-repo/semantics/publishedVersion Objeto de conferencia http://purl.org/coar/resource_type/c_5794 info:ar-repo/semantics/documentoDeConferencia |
format |
conferenceObject |
status_str |
publishedVersion |
dc.identifier.none.fl_str_mv |
http://sedici.unlp.edu.ar/handle/10915/64863 |
url |
http://sedici.unlp.edu.ar/handle/10915/64863 |
dc.language.none.fl_str_mv |
eng |
language |
eng |
dc.relation.none.fl_str_mv |
info:eu-repo/semantics/altIdentifier/url/http://www.clei2017-46jaiio.sadio.org.ar/sites/default/files/Mem/IETFDay/IETFDay-01.pdf |
dc.rights.none.fl_str_mv |
info:eu-repo/semantics/openAccess http://creativecommons.org/licenses/by-sa/4.0/ Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) |
eu_rights_str_mv |
openAccess |
rights_invalid_str_mv |
http://creativecommons.org/licenses/by-sa/4.0/ Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) |
dc.format.none.fl_str_mv |
application/pdf |
dc.source.none.fl_str_mv |
reponame:SEDICI (UNLP) instname:Universidad Nacional de La Plata instacron:UNLP |
reponame_str |
SEDICI (UNLP) |
collection |
SEDICI (UNLP) |
instname_str |
Universidad Nacional de La Plata |
instacron_str |
UNLP |
institution |
UNLP |
repository.name.fl_str_mv |
SEDICI (UNLP) - Universidad Nacional de La Plata |
repository.mail.fl_str_mv |
alira@sedici.unlp.edu.ar |
_version_ |
1842260280805949440 |
score |
13.13397 |