Javascript Security and Privacy

Funded by NSF Award CNS-0964702


Modern websites are powered by JavaScript, a flexible dynamic scripting language that executes in client browsers. However, the dynamic nature of JavaScript web applications has also opened up the possibility of a variety of security vulnerabilities. The broad goal of this project is to investigate the use of program analysis for improving the reliability and security of Javascript-based Web 2.0 applications.