Bibliotheek
-
HTTPS-Only: Upgrading all connections to https in Web Browsers
25 februari 2021Julian Gaibler, Arthur Edelstein, Christoph Kerschbaumer, Thyla van der MerweInternet health -
Hardening Firefox against Injection Attacks
3 februari 2020Frederik Braun, Christoph Kerschbaumer, Tom RitterPrivacy, security & trackingWeb browsers display content using HTML, CSS, and JavaScript, which can be untrusted and potentially malicious. Firefox uses these same technologies for both its interface and web content, creating security challenges.
-
Can we build a privacy-preserving web browser we all deserve?
1 december 2018Luke Crouch, Tanvi Vyas, Christoph Kerschbaumer, Tom RitterInternet health / Privacy, security & trackingThe web is the biggest legacy application ever developed or supported by software engineers, but it's also blurring the line between the consumption of data and the leaking of personal details. Browser makers may be the only line of defense.
-
Extending the Same Origin Policy with Origin Attributes
1 december 2017Tanvi Vyas, Christoph Kerschbaumer, Andrea MarchesiniPrivacy, security & trackingThis work re-designs a web browsers architecture and builds Origin Attributes directly into a browsers rendering engine to allow any specification or web technology to integrate into Origin Attributes with minimal engineering effort and reduces the risk of jeopardizing an end user’s security.
-
Enforcing Content Security by Default within Web Browsers
1 december 2016Christoph KerschbaumerPrivacy, security & tracking -
Injecting CSP for Fun and Security
1 december 2016Christoph Kerschbaumer, Sid Stamm, Stefan BrunthalerPrivacy, security & tracking
