embedded devices
We address the challenge of building secure embedded web interfaces by proposing WebDroid: the first framework specifically dedicated to this purpose. Our design extends the Android Framework, and enables developers to create easily secure web interfaces for their applications. To motivate our work, we perform an in-depth study of the security of web interfaces embedded in consumer electronics devices, uncover significant vulnerabilities in all the devices examined, and categorize the vulnerabilities. We demonstrate how our framework's security mechanisms prevent embedded applications from suffering the vulnerabilities exposed by our audit. Finally we evaluate the efficiency of our framework in terms of performance and security.
Downloads
paper
slides
You might also like reading

study 2010

State of the Art Automated Black-Box Web Application Vulnerability Testing

embedded devices 2009

XCS cross channel scripting and its impact on web applications

security 2010

Web Security Trends 2010

education 2010

Webseclab Security Education Workbench

clickjacking 2010

Busting Frame Busting a Study of Clickjacking Vulnerabilities on Popular Sites

Comments
About me
Lead Google's anti-abuse research. Develop new ways to protect users and disrupt bad guys. Make Chrome safer and faster. Help keeping G+ and Gmail clean. Wear berets. Do magic tricks.
Performance
headers: 0.000570058822632
files: 0.00128984451294
get publication: 0.0692400932312
sidebar: 0.0917401313782
related: 3.01346993446
total: 3.17632007599