Systematic Techniques for Finding and Preventing Script Injection Vulnerabilities
- Author(s): Saxena, Prateek
- Advisor(s): Song, Dawn
- et al.
Computer users trust web applications to protect their financial transactions and online identities from attacks by cyber criminals. However, web applications today are riddled with security flaws which can compromise the security of their web sessions. In this thesis, we address the problem of automatically finding and preventing script injection vulnerabilities, one of the most prominent classes of web application vulnerabilities at present. Specifically, this thesis makes three contributions towards addressing script injection vulnerabilities. First, we