Not So Incognito: Exploiting Resource-Based Side Channels in JavaScript Engines

Not So Incognito: Exploiting Resource-Based Side Channels in JavaScript Engines

In this thesis, a resource-based side channel vulnerability is shown to exist in the JavaScript engines deployed in today's front-running internet browsers. A remote attack is constructed to exploit this vulnerability at a distance, and three distinct attacker models leveraging the side channel...

Full description

Bibliographic Details
Main Author:	Booth, Jo
Format:	Others
Language:	en
Published:	Harvard University 2015
Subjects:	Computer Science
Online Access:	http://nrs.harvard.edu/urn-3:HUL.InstRepos:17417578

Similar Items

Elmulating JavaScript
by: Eriksson, Nils, et al.
Published: (2016)

Chunked DASH in JavaScript
by: Alnesjö, Robert
Published: (2018)

JavaScript DOM Manipulation Performance : Comparing Vanilla JavaScript and Leading JavaScript Front-end Frameworks
by: Persson, Morgan
Published: (2020)

Performance Analysis of JavaScript
by: Smedberg, Fredrik
Published: (2010)

CSRF protection in JavaScript frameworks and the security of JavaScript applications
by: Ksenia Peguero, et al.
Published: (2021-12-01)

Evaluating JavaScript Frameworks
by: Salomaa, Josefin
Published: (2020)

JavaScript and Web Integration of AgX Multiphysics Engine
by: Brännström, Tomas
Published: (2011)

JavaScript Generators
by: Daniel Constantin Ghita
Published: (2010-09-01)

Design and Implementation of Thread-Level Speculation in JavaScript Engines
by: Martinsen, Jan Kasper
Published: (2014)

Comparing performance between plain JavaScript and popular JavaScript frameworks
by: Ladan, Zlatko
Published: (2015)

JavaScript Performance and Optimization : Removing bottlenecks
by: Rosqvist Åkerblom, Linn
Published: (2015)

Applying design patterns and testing it in JavaScript
by: Skoko, Dennis
Published: (2018)

Investigation of Reason as a substitute for JavaScript
by: Pettersson, Axel
Published: (2020)

Jämförelse av funktionsbibliotek för JavaScript
by: Andersson, Petter, et al.
Published: (2011)

Type inference for JavaScript
by: Anderson, Christopher Lyon
Published: (2006)

Verification and validation of JavaScript
by: Xiong, Wei
Published: (2013)

On the detection, localization and repair of client-side JavaScript faults
by: Ocariza, Frolin S.
Published: (2016)

DepTracker : tracking JavaScript dependencies on the web
by: Goyal, Ameesh Kumar
Published: (2015)

Approaches to optimizing V8 JavaScript engine
by: Dmitry Botcharniko
Published: (2018-10-01)

Normalizing Object-oriented Class Styles in JavaScript
by: Gama, WIDD
Published: (2013)

Performance study of JavaScript WebSocket frameworks
by: Hansson, Jakob
Published: (2020)

Realtidsgenomsökning efter säkerhetsrisker i JavaScript-kod
by: Abi-Haidar, Layal
Published: (2015)

Evaluating cyclomatic complexity on functional JavaScript
by: Håkansson, Jesper, et al.
Published: (2016)

Applying the SOLID principles to JavaScript’s React library
by: Trodin, Matilda
Published: (2021)

Certified semantics and analysis of JavaScript
by: Bodin, Martin
Published: (2016)

Unit Testing with TDD in JavaScript
by: Kleivane, Tine Flåten
Published: (2011)

Implementation Isomorphic JavaScript Applications
by: Hernán Alejandro Quintana-Cruz
Published: (2015-04-01)

Interactive learning aided by JavaScript
by: A. Wise
Published: (1999-12-01)

RacketScript: a Racket to JavaScript compiler.
Published: ()

Improving search engine interfaces for blind users by applying Specialized Client-Side JavaScript
by: Chung-Ho Fang, et al.
Published: (2007)

Dynamic updates of mobile apps using JavaScript
by: Spetz-Nyström, Simon
Published: (2015)

Performance of Multi-threaded Web Applications using Web Workers in Client-side JavaScript
by: Djärv Karltorp, Johan, et al.
Published: (2020)

Mayall: A Framework for Desktop JavaScript Auditing and Post-Exploitation Analysis
by: Adam Rapley, et al.
Published: (2018-12-01)

From FLOWCORE to JITFLOW| Improving the speed of Information Flow in JavaScript
by: Hennigan, Eric
Published: (2015)

Securing JavaScript applications within theSpotify web player
by: GUSTAFSSON, FREDRIK
Published: (2014)

Sorteringsbara tabeller med JavaScript och MVC-ramverk
by: Fredriksson, Johan
Published: (2017)

A comparison of functional and object-orientedprogramming paradigms in JavaScript
by: Svensson Sand, Kim, et al.
Published: (2017)

Web-based mapping : An evaluation of four JavaScript APIs
by: Näslund, Magnus
Published: (2008)

Practical Analysis of the Dynamic Characteristics of JavaScript
by: Wei, Shiyi
Published: (2015)

Forced Event Triggering on JavaScript Testing
by: Jheng, Guang-Lun, et al.
Published: (2019)