Security and integrity checker for JavaScript dependencies

Autores
Ravera, Emanuel; Medel, Ricardo; Navarro, Néstor
Año de publicación
2017
Idioma
inglés
Tipo de recurso
documento de conferencia
Estado
versión publicada
Descripción
Nowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable.
Sociedad Argentina de Informática e Investigación Operativa (SADIO)
Materia
Ciencias Informáticas
PumaScript meta-programming framework
JavaScript dependency injector
Nivel de accesibilidad
acceso abierto
Condiciones de uso
http://creativecommons.org/licenses/by-sa/4.0/
Repositorio
SEDICI (UNLP)
Institución
Universidad Nacional de La Plata
OAI Identificador
oai:sedici.unlp.edu.ar:10915/64863

id SEDICI_3d9b6ae2263ae34a7eb1a9e0519482f0
oai_identifier_str oai:sedici.unlp.edu.ar:10915/64863
network_acronym_str SEDICI
repository_id_str 1329
network_name_str SEDICI (UNLP)
spelling Security and integrity checker for JavaScript dependenciesRavera, EmanuelMedel, RicardoNavarro, NéstorCiencias InformáticasPumaScript meta-programming frameworkJavaScript dependency injectorNowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable.Sociedad Argentina de Informática e Investigación Operativa (SADIO)2017-09info:eu-repo/semantics/conferenceObjectinfo:eu-repo/semantics/publishedVersionObjeto de conferenciahttp://purl.org/coar/resource_type/c_5794info:ar-repo/semantics/documentoDeConferenciaapplication/pdfhttp://sedici.unlp.edu.ar/handle/10915/64863enginfo:eu-repo/semantics/altIdentifier/url/http://www.clei2017-46jaiio.sadio.org.ar/sites/default/files/Mem/IETFDay/IETFDay-01.pdfinfo:eu-repo/semantics/openAccesshttp://creativecommons.org/licenses/by-sa/4.0/Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0)reponame:SEDICI (UNLP)instname:Universidad Nacional de La Platainstacron:UNLP2025-09-03T10:41:23Zoai:sedici.unlp.edu.ar:10915/64863Institucionalhttp://sedici.unlp.edu.ar/Universidad públicaNo correspondehttp://sedici.unlp.edu.ar/oai/snrdalira@sedici.unlp.edu.arArgentinaNo correspondeNo correspondeNo correspondeopendoar:13292025-09-03 10:41:23.938SEDICI (UNLP) - Universidad Nacional de La Platafalse
dc.title.none.fl_str_mv Security and integrity checker for JavaScript dependencies
title Security and integrity checker for JavaScript dependencies
spellingShingle Security and integrity checker for JavaScript dependencies
Ravera, Emanuel
Ciencias Informáticas
PumaScript meta-programming framework
JavaScript dependency injector
title_short Security and integrity checker for JavaScript dependencies
title_full Security and integrity checker for JavaScript dependencies
title_fullStr Security and integrity checker for JavaScript dependencies
title_full_unstemmed Security and integrity checker for JavaScript dependencies
title_sort Security and integrity checker for JavaScript dependencies
dc.creator.none.fl_str_mv Ravera, Emanuel
Medel, Ricardo
Navarro, Néstor
author Ravera, Emanuel
author_facet Ravera, Emanuel
Medel, Ricardo
Navarro, Néstor
author_role author
author2 Medel, Ricardo
Navarro, Néstor
author2_role author
author
dc.subject.none.fl_str_mv Ciencias Informáticas
PumaScript meta-programming framework
JavaScript dependency injector
topic Ciencias Informáticas
PumaScript meta-programming framework
JavaScript dependency injector
dc.description.none.fl_txt_mv Nowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable.
Sociedad Argentina de Informática e Investigación Operativa (SADIO)
description Nowadays, most of web-based software includes heavy usage of external dependencies. However, the control over the security aspects of these dependencies is out of control of the developers, because dependency injectors do not check for the security or integrity. Thus, the software built on top of insecure dependencies become vulnerable too. We propose a novel solution by using the PumaScript meta-programming framework and browser capabilities to generate a safe JavaScript dependency injector that help in generation of software solutions less vulnerable.
publishDate 2017
dc.date.none.fl_str_mv 2017-09
dc.type.none.fl_str_mv info:eu-repo/semantics/conferenceObject
info:eu-repo/semantics/publishedVersion
Objeto de conferencia
http://purl.org/coar/resource_type/c_5794
info:ar-repo/semantics/documentoDeConferencia
format conferenceObject
status_str publishedVersion
dc.identifier.none.fl_str_mv http://sedici.unlp.edu.ar/handle/10915/64863
url http://sedici.unlp.edu.ar/handle/10915/64863
dc.language.none.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv info:eu-repo/semantics/altIdentifier/url/http://www.clei2017-46jaiio.sadio.org.ar/sites/default/files/Mem/IETFDay/IETFDay-01.pdf
dc.rights.none.fl_str_mv info:eu-repo/semantics/openAccess
http://creativecommons.org/licenses/by-sa/4.0/
Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0)
eu_rights_str_mv openAccess
rights_invalid_str_mv http://creativecommons.org/licenses/by-sa/4.0/
Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0)
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:SEDICI (UNLP)
instname:Universidad Nacional de La Plata
instacron:UNLP
reponame_str SEDICI (UNLP)
collection SEDICI (UNLP)
instname_str Universidad Nacional de La Plata
instacron_str UNLP
institution UNLP
repository.name.fl_str_mv SEDICI (UNLP) - Universidad Nacional de La Plata
repository.mail.fl_str_mv alira@sedici.unlp.edu.ar
_version_ 1842260280805949440
score 13.13397