Visible to the public TrustJS: Trusted Client-Side Execution of JavaScript

TitleTrustJS: Trusted Client-Side Execution of JavaScript
Publication TypeConference Paper
Year of Publication2017
AuthorsGoltzsche, David, Wulf, Colin, Muthukumaran, Divya, Rieck, Konrad, Pietzuch, Peter, Kapitza, Rüdiger
Conference NameProceedings of the 10th European Workshop on Systems Security
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4935-2
Keywordscomposability, Intel SGX, JavaScript, pubcrawl, resilience, Resiliency, Trusted Clients, Trusted Computing, web of trust
Abstract

Client-side JavaScript has become ubiquitous in web applications to improve user experience and reduce server load. However, since clients are untrusted, servers cannot rely on the confidentiality or integrity of client-side JavaScript code and the data that it operates on. For example, client-side input validation must be repeated at server side, and confidential business logic cannot be offloaded. In this paper, we present TrustJS, a framework that enables trustworthy execution of security-sensitive JavaScript inside commodity browsers. TrustJS leverages trusted hardware support provided by Intel SGX to protect the client-side execution of JavaScript, enabling a flexible partitioning of web application code. We present the design of TrustJS and provide initial evaluation results, showing that trustworthy JavaScript offloading can further improve user experience and conserve more server resources.

URLhttps://dl.acm.org/doi/10.1145/3065913.3065917
DOI10.1145/3065913.3065917
Citation Keygoltzsche_trustjs:_2017