[talks] Colloquium Speaker Arjun Guha Thurs Nov 21, 4:30pm
Nicole E. Wagenblast
nwagenbl at CS.Princeton.EDU
Wed Nov 20 15:36:15 EST 2013
Reclaiming Security for Web Programmers
Arjun Guha , University of Massachusetts, Amherst
Thursday, November 21, 4:30pm
Computer Science, 105
The Web enables new classes of programs that pose new security risks. For example, because Web programs freely mix data and code from untrusted sources, major websites have been compromised by third-party components, such as malicious ads. In addition, users cannot fully control which programs run; Web programs are visited, not installed. Therefore, Web security is entirely in the hands of programmers, not users.
Programming language techniques can give us mathematical proofs of security, but attackers attack implementations, not theorems. I discuss our approach to doing principled, real-world Web security research, which combines semantics with systems. I also review additional projects that use our tools and techniques.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the talks