Basic HTML version of Foils prepared 8 Feb 98

Foil 95 Data Tainting

From Overview of Basic JavaScript -- Web Scripting Language CPS616 Technologies of the Information Age -- Spring Semester 98. by Tom Scavo,Geoffrey C. Fox


1 Data tainting, an alternative to the Same Origin Policy, was experimentally implemented in NN3.0
2 Data tainting allows access to private data (e.g., history[] array) but forbids "export" of this data over the Internet
3 Both data and methods may be tainted
4 Tainting has been disabled in NN4, in favor of signed scripts

in Table To:


© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Sun Nov 29 1998