embedded devices
We address the challenge of building secure embedded web interfaces by proposing WebDroid: the first framework specifically dedicated to this purpose. Our design extends the Android Framework, and enables developers to create easily secure web interfaces for their applications. To motivate our work, we perform an in-depth study of the security of web interfaces embedded in consumer electronics devices, uncover significant vulnerabilities in all the devices examined, and categorize the vulnerabilities. We demonstrate how our framework's security mechanisms prevent embedded applications from suffering the vulnerabilities exposed by our audit. Finally we evaluate the efficiency of our framework in terms of performance and security.
Downloads
paper
slides
You might also like reading

study 2010

State of the Art Automated Black-Box Web Application Vulnerability Testing

embedded devices 2009

XCS cross channel scripting and its impact on web applications

security 2010

Web Security Trends 2010

education 2010

Webseclab Security Education Workbench

clickjacking 2010

Busting Frame Busting a Study of Clickjacking Vulnerabilities on Popular Sites

Comments
About me
Lead Google's anti-abuse research. Develop new ways to protect users and disrupt bad guys. Make Chrome safer and faster. Help keeping G+ and Gmail clean. Wear berets. Do magic tricks.
Performance
headers: 0.000639915466309
files: 0.0010998249054
sidebar: 0.0254800319672
related: 0.0278799533844
get publication: 0.0724802017212
total: 0.127599954605