$\require{mediawiki-texvc}$

연합인증

연합인증 가입 기관의 연구자들은 소속기관의 인증정보(ID와 암호)를 이용해 다른 대학, 연구기관, 서비스 공급자의 다양한 온라인 자원과 연구 데이터를 이용할 수 있습니다.

이는 여행자가 자국에서 발행 받은 여권으로 세계 각국을 자유롭게 여행할 수 있는 것과 같습니다.

연합인증으로 이용이 가능한 서비스는 NTIS, DataON, Edison, Kafe, Webinar 등이 있습니다.

한번의 인증절차만으로 연합인증 가입 서비스에 추가 로그인 없이 이용이 가능합니다.

다만, 연합인증을 위해서는 최초 1회만 인증 절차가 필요합니다. (회원이 아닐 경우 회원 가입이 필요합니다.)

연합인증 절차는 다음과 같습니다.

최초이용시에는
ScienceON에 로그인 → 연합인증 서비스 접속 → 로그인 (본인 확인 또는 회원가입) → 서비스 이용

그 이후에는
ScienceON 로그인 → 연합인증 서비스 접속 → 서비스 이용

연합인증을 활용하시면 KISTI가 제공하는 다양한 서비스를 편리하게 이용하실 수 있습니다.

자바스크립트 품질 및 테스팅 기술 동향과 안전한 자바스크립트 프로그램 개발을 위한 'SAFE' 사례
Towards Development of Sound JavaScript Programs: Technology Trends and a Case Study of 'SAFE' 원문보기

정보과학회지 = Communications of the Korean Institute of Information Scientists and Engineers, v.31 no.5, 2013년, pp.25 - 31  

류석영 (한국과학기술원)

초록이 없습니다.

참고문헌 (32)

  1. European Association for Standardizing Information and Communication Systems(ECMA). ECMA-262: ECMAScript Language Specification. Fifth edition, 2009. 

  2. Tizen: An open source, standards-based software platform for multiple device categories. http://www.tizen.org 

  3. Smart TV. http://developer.samsung.com/smarttv 

  4. Caja. http://code.google.com/p/google-caja 

  5. FBJS. http://developers.facebook.com/docs/fbjs 

  6. Douglas Crockford. ADsafe: Making JavaScript safe for advertising. http://www.adsafe.org 

  7. Joe Gibbs Politz, Spiridon Aristides Eliopoulos, Arjun Guha, and Shriram Krishnamurthi. ADsafety: Type-based verification of JavaScript sandboxing. In Proceedings of the 20th USENIX Security Symposium, 2011. 

  8. Sergio Maffeis and Ankur Taly. Language-based isolation of untrusted JavaScript. In Proceedings of the 2009 IEEE Computer Security Foundations Symposium. 

  9. Matthew Finifter, Joel Weinberger, and Adam Barth. Preventing capability leaks in secure JavaScript subsets. In Proceedings of the 2010 Network and Distributed System Security Symposium. 

  10. Sergio Maffeis, John C. Mitchell, and Ankur Taly. An operational semantics for JavaScript. In Proceedings of the 6th Asian Symposium on Programming Languages and Systems, 2008. 

  11. Arjun Guha, Claudiu Saftoiu, and Shriram Krishnamurthi. The essence of JavaScript. In Proceedings of the 24th European Conference on Object-Oriented Programming, 2010. 

  12. The Coq development team. The Coq proof assistant.http://coq.inria.fr 

  13. Martin Bodin, Arthur Chargueraud, Daniele Filaretti, Philippa Gardner, Sergio Maffeis, Daiva Naudziuniene, Alan Schmitt, and Gareth Smith. JSCert: Certified Java-Script. http://jscert.org 

  14. Hakjoo Oh, Kihong Heo, Wonchan Lee, and Kwangkeun Yi. Design and implementation of sparse global analyses for C-like languages. In Proceedings of the 33rd ACM Conference on Programming Language Design and Implementation, 2012. 

  15. Christopher Anderson, Paola Giannini, and Sophia Drossopoulou. Towards type inference for JavaScript. In Proceedings of the 19th European Conference on Object- Oriented Programming, 2005. 

  16. Peter Thiemann. Towards a type system for analyzing JavaScript programs. In Proceedings of the 14th European Symposium on Programming, 2005. 

  17. Simon Holm Jensen, Anders M0ller, and Peter Thiemann. Type analysis for JavaScript. In Proceedings of the 2009 Static Analysis Symposium. 

  18. Simon Holm Jensen, Anders M0ller, and Peter Thiemann. Interprocedural analysis with lazy propagation. In Proceedings of the 2010 Static Analysis Symposium. 

  19. TAJS: Type Analyzer for JavaScript. http://www.brics.dk/TAJS 

  20. Dachuan Yu, Ajay Chander, Nayeem Islam, and Igor Serikov. JavaScript instrumentation for browser security. In Proceedings of the ACM Symposium on Principles of Programming Languages, 2007. 

  21. Adam Barth, Joel Weinberger, and Dawn Song. Crossorigin JavaScript capability leaks: Detection, exploitation, and defense. In Proceedings of the 18th USENIX Security Symposium, 2009. 

  22. Salvatore Guarnieri and Benjamin Livshits. GateKeeper: Mostly static enforcement of security and reliability policies for JavaScript code. In Proceedings of the 18th USENIX Security Symposium, 2009. 

  23. Ravi Chugh, Jeffrey A. Meister Ranjit, and Jhala Sorin Lerner. Staged information flow for JavaScript. In Proceedings of the 30th ACM Conference on Programming Language Design and Implementation, 2009. 

  24. Gary Wassermann, Dachuan Yu, Ajay Chander, Dinakar Dhurjati, Hiroshi Inamura, Zhendong Su. Dynamic test input generation for web applications. In Proceedings of the ACM International Symposium on Software Testing and Analysis, 2008. 

  25. Shay Artzi, Julian Dolby, Simon Holm Jensen, Anders Møller, and Frank Tip. A framework for automated testing of JavaScript web applications. In Proceedings of the 33rd International Conference on Software Engineering, 2011. 

  26. Hongki Lee, Sooncheol Won, Joonho Jin, Junhee Cho, and Sukyoung Ryu. SAFE: Formal specification and implementation of a Scalable Analysis Framework for ECMAScript. In 2012 International Workshop on Foundations of Object-Oriented Languages(FOOL'12), 2012. 

  27. KAIST PLRG. SAFE: Scalable Analysis Framework for ECMAScript. http://plrg.kkaist.ac.kr/research/safe 

  28. Rats!. http://cs.nyu.edu/rgrimm/xtc/rats-intro.html 

  29. ASTGen. http://astgen.sourceforge.net 

  30. Seonghoon Kang and Sukyoung Ryu. Formal specification of a JavaScript module system. In Proceedings of the Conference on Object-Oriented Programming Systems, Languages, and Applications, 2012. 

  31. Scala. http://www.scala-lang.org 

  32. Web IDL. http://www.w3.org/TR/WebIDL/ 

저자의 다른 논문 :

관련 콘텐츠

저작권 관리 안내
섹션별 컨텐츠 바로가기

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

AI-Helper 아이콘
AI-Helper
안녕하세요, AI-Helper입니다. 좌측 "선택된 텍스트"에서 텍스트를 선택하여 요약, 번역, 용어설명을 실행하세요.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.

선택된 텍스트

맨위로