Securely executing malicious code악성코드의 안전한 실행에 대하여
This thesis presents a study of how to securely execute untrusted code. With web browsers being used to execute potentially malicious code for millions of users worldwide, its security is paramount. Designing and implementing new security techniques are inherently challenging, partly due to the complexity of modern browsers. Therefore a set of design principles for building interpreters are designed, using the language Haskell coupled with the building blocks of monad transformers. The implemented framework, named Bowser, serves as proof that interpreters can in fact be secure by design, and that extending it with new security mechanisms is easily achieved. This is demonstrated by adding dynamic taint analysis to the designed framework, with the goal of mitigating common attacks extracting sensitive information.
- Description
- 한국과학기술원 :전산학부,
- Publisher
- 한국과학기술원
- Issue Date
- 2019
- Identifier
- 325007
- Language
- eng
- Description
학위논문(석사) - 한국과학기술원 : 전산학부, 2019.2,[iii, 69 p. :]
- Keywords
Monad transformers▼ataint analysis▼ajavascript engine; 모나드 변환자▼a테인트 분석▼a자바스크립트 엔진
- Appears in Collection
- CS-Theses_Master(석사논문)
- Files in This Item
- There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.