Semantics and Security Issues in JavaScript

Abstract : There is a plethora of research articles describing the deep semantics of JavaScript. Nevertheless, such articles are often difficult to grasp for readers not familiar with formal semantics. In this report, we propose a digest of the semantics of JavaScript centered around security concerns. This document proposes an overview of the JavaScript language and the misleading semantic points in its design. The first part of the document describes the main characteristics of the language itself. The second part presents how those characteristics can lead to problems. It finishes by showing some coding patterns to avoid certain traps and presents some ECMAScript 5 new features.
Complete list of metadatas

Cited literature [13 references]  Display  Hide  Download

https://hal.inria.fr/hal-00763421
Contributor : Damien Cassou <>
Submitted on : Monday, December 10, 2012 - 5:26:28 PM
Last modification on : Thursday, February 21, 2019 - 10:52:50 AM
Long-term archiving on : Saturday, December 17, 2016 - 11:45:00 PM

Files

deliverable1.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-00763421, version 1
  • ARXIV : 1212.2341

Collections

Citation

Stéphane Ducasse, Nicolas Petton, Guillermo Polito, Damien Cassou. Semantics and Security Issues in JavaScript. [Research Report] 2012. ⟨hal-00763421⟩

Share

Metrics

Record views

355

Files downloads

175