On the Disparity of Display Security in Mobile and Traditional Web Browsers

Show simple item record

dc.contributor.author Amrutkar, Chaitrali
dc.contributor.author Singh, Kapil
dc.contributor.author Verma, Arunabh
dc.contributor.author Traynor, Patrick
dc.date.accessioned 2011-02-23T19:56:31Z
dc.date.available 2011-02-23T19:56:31Z
dc.date.issued 2011
dc.identifier.uri http://hdl.handle.net/1853/36978
dc.description Research area: Information Security and Cryptography, Internet Security, Wireless and Mobile Networking
dc.description.abstract Mobile web browsers now provide nearly equivalent features when compared to their desktop counterparts. However, smaller screen size and optimized features for constrained hardware make the web experience on mobile browsers significantly different. In this paper, we present the first comprehensive study of the display-related security issues in mobile browsers. We identify two new classes of display-related security problems in mobile browsers and devise a range of real world attacks against them. Additionally, we identify an existing security policy for display on desktop browsers that is inappropriate on mobile browsers. Our analysis is comprised of eight mobile and five desktop browsers. We compare security policies for display in the candidate browsers to infer that desktop browsers are significantly more compliant with the policies as compared to mobile browsers. We conclude that mobile browsers create new security challenges and are not simply miniature versions of their desktop counterparts. en_US
dc.language.iso en_US en_US
dc.publisher Georgia Institute of Technology en_US
dc.relation.ispartofseries SCS Technical Report ; GT-CS-11-02 en_US
dc.subject Access control policies en_US
dc.subject Desktop web browsers en_US
dc.subject Display-related security en_US
dc.subject Information security en_US
dc.subject Mobile web browsers en_US
dc.subject Security policies en_US
dc.subject Webpages en_US
dc.subject Websites en_US
dc.title On the Disparity of Display Security in Mobile and Traditional Web Browsers en_US
dc.type Technical Report en_US
dc.contributor.corporatename Georgia Institute of Technology. College of Computing
dc.contributor.corporatename Georgia Institute of Technology. School of Computer Science
dc.contributor.corporatename Georgia Institute of Technology. Converging Infrastructure Security (CISEC) Laboratory

Files in this item

Files Size Format View
GT-CS-11-02.pdf 640.8Kb PDF View/ Open

This item appears in the following Collection(s)

Show simple item record