Derailer: interactive security analysis for web applications

Derailer: interactive security analysis for web applications

Derailer is an interactive tool for finding security bugs in web applications. Using symbolic execution, it enumerates the ways in which application data might be exposed. The user is asked to examine these exposures and classify the conditions under which they occur as security-related or not; in s...

Full description

Bibliographic Details
Main Authors:	Near, Joseph Paul, Jackson, Daniel
Other Authors:	Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory
Format:	Article
Language:	en_US
Published:	Association for Computing Machinery (ACM) 2015
Online Access:	http://hdl.handle.net/1721.1/100435 https://orcid.org/0000-0003-4864-078X

Similar Items

Finding Security Bugs in Web Applications using a Catalog of Access Control Patterns
by: Near, Joseph Paul, et al.
Published: (2016)

Rubicon: Bounded Verification of Web Applications
by: Jackson, Daniel, et al.
Published: (2014)

Finding security bugs in web applications using domain-specific static analysis
by: Near, Joseph P. (Joseph Paul)
Published: (2015)

Resignations will not derail universities - Jayum
by: New Sarawak Tribune
Published: (2021)

Probability of derailment under earthquake conditions
by: Guillaud, Lucile M. (Lucile Marie)
Published: (2007)

US-China Conflict : Will ASEAN Centrality Be Derailed?
by: Yang Razali Kassim
Published: (2019)

Diplomacy derailed : the consequences of U.S. diplomatic disengagement
by: Maller, Tara (Tara Jennifer)
Published: (2012)

Renaissance derailed: The politics of infrastructural statecraft in Ethiopia
by: Terrefe, B
Published: (2023)

Regional seismic risk of railway system including derailment consequences
by: Uchiyama, Yayoi Misu
Published: (2007)

2019 Jolo Bombing : Bid to Derail BOL Peace Deal?
by: Syed Huzaifah Othman Alkaff, et al.
Published: (2019)

MINIMISING RISK OF TRAIN DERAILMENT AND ITS SIGNIFICANT CONSEQUENCES IN INDONESIA
by: , DANANG SULISTYAWAN, et al.
Published: (2013)

Averting a malaria disaster: will insecticide resistance derail malaria control?
by: Hemingway, J, et al.
Published: (2016)

The COVID-19 pandemic should not derail global vector control efforts
by: Seelig, F, et al.
Published: (2020)

An imperative extension to Alloy
by: Near, Joseph Paul, et al.
Published: (2011)

Will the failed coup attempt derail the ongoing national reconciliation and political transition in Myanmar?
by: Maung Aung Myoe.
Published: (2008)

Security and vulnerability analysis of web applications
by: Le, Ha Thanh
Published: (2011)

A lightweight code analysis and its role in evaluation of a dependability case
by: Near, Joseph Paul, et al.
Published: (2012)

Model-based, event-driven programming paradigm for interactive web applications
by: Milicevic, Aleksandar, et al.
Published: (2014)

Symbolic Execution for (Almost) Free: Hijacking an Existing Implementation to Perform Symbolic Execution
by: Near, Joseph P., et al.
Published: (2014)

Alloy*: A General-Purpose Higher-Order Relational Constraint Solver
by: Milicevic, Aleksandar, et al.
Published: (2018)

Multiverse databases for secure web applications
by: Araújo, Lara Timbó
Published: (2018)

Security auditing of web security vulnerabilities using program analysis : mobile application recommendation
by: Yong, Chen Feng
Published: (2019)

Directions for Web and E-Commerce Applications Security
by: Thuraisingham, Bhavani, et al.
Published: (2003)

Wildcard: Spreadsheet-Driven Customization of Web Applications
by: Litt, Geoffrey, et al.
Published: (2022)

Application of elliptic curve cryptography in web security
by: Pham, Tan Phat.
Published: (2009)

Semantic security against web application attacks
by: Razzaq, A, et al.
Published: (2013)

Multi-representational security analysis
by: Kang, Eunsuk, et al.
Published: (2018)

Web servers, databases, and algorithms for the analysis of protein interaction networks
by: Park, Daniel K. (Daniel Kyu)
Published: (2013)

Development of Security Identification and Monitoring System for Web Application
by: Dani, Norizawati
Published: (1999)

From client-side encryption to secure web applications
by: Stark, Emily (Emily Margarete)
Published: (2013)

Practical security for multi-user web application databases
by: Redfield, Catherine M. S
Published: (2013)

Interactively Adding Web Service Interfaces to Existing Web Applications
by: Baumgartner, R, et al.
Published: (2004)

An imperative extension to alloy and a compiler for its execution
by: Near, Joseph P. (Joseph Paul)
Published: (2010)

Equality and Hashing for (almost) Free: Generating Implementations from Abstraction Functions
by: Rayside, Derek, et al.
Published: (2010)

Design and development of an intelligent security layer for web-based applications
by: Abdullah, Abdul Hanan, et al.
Published: (2005)

Developing a secure web application using OWASP guidelines.
by: Sedek, Khairul Anwar, et al.
Published: (2009)

Towards Enhancing Web Application Security Using Trusted Execution
by: Namiluko, C, et al.
Published: (2013)

Alloy*: A Higher-Order Relational Constraint Solver
by: Milicevic, Aleksandar, et al.
Published: (2014)

Alloy*: a general-purpose higher-order relational constraint solver
by: Milicevic, Aleksandar, et al.
Published: (2021)

Analysis of web worm attack on web application
by: Mohd. Ghazzali, Amalina
Published: (2008)