Type-specific Languages to Fight Injection Attacks
| Title | Type-specific Languages to Fight Injection Attacks |
| Publication Type | Conference Paper |
| Year of Publication | 2014 |
| Authors | Kurilova, Darya, Omar, Cyrus, Nistor, Ligia, Chung, Benjamin, Potanin, Alex, Aldrich, Jonathan |
| Conference Name | Proceedings of the 2014 Symposium and Bootcamp on the Science of Security |
| Publisher | ACM |
| Conference Location | Raleigh, NC, USA |
| ISBN Number | 978-1-4503-2907-1 |
| Keywords | ACM CCS, Foundations, science of security, Secure Control Systems, Software and Application Security, Web Application Security |
| Abstract | Injection vulnerabilities have topped rankings of the most critical web application vulnerabilities for several years [1, 2]. They can occur anywhere where user input may be erroneously executed as code. The injected input is typically aimed at gaining unauthorized access to the system or to private information within it, corrupting the system's data, or disturbing system availability. Injection vulnerabilities are tedious and difficult to prevent. |
| URL | http://doi.acm.org/10.1145/2600176.2600194 |
| DOI | 10.1145/2600176.2600194 |
| Citation Key | Kurilova:2014:TLF:2600176.2600194 |