ProVerif is an automatic symbolic protocol verifier. It supports a wide range of cryptographic
primitives, defined by rewrite rules or by equations. It can prove various security properties …

In this article, we survey the most common attacks against web sessions, that is, attacks that
target honest web browser users establishing an authenticated session with a trusted web …

The OAuth 2.0 protocol is one of the most widely deployed authorization/single sign-on
(SSO) protocols and also serves as the foundation for the new SSO standard OpenID …

Social sign-on and social sharing are becoming an ever more popular feature of web
applications. This success is largely due to the APIs and support offered by prominent social …

Web-based single sign-on (SSO) services such as Google Sign-In and Log In with Paypal
are based on the OpenID Connect protocol. This protocol enables so-called relying parties …

The web constitutes a complex infrastructure and, as demonstrated by numerous attacks,
rigorous analysis of standards and web applications is indispensable. Inspired by successful …

Single sign-on (SSO) systems, such as OpenID and OAuth, allow web sites, so-called
relying parties (RPs), to delegate user authentication to identity providers (IdPs), such as …

In the last few years, many security researchers proposed to endow the web platform with
more rigorous foundations, thus allowing for a precise reasoning on web security issues …

Video streams, either in form of on-demand streaming or live streaming, usually have to be
converted (ie, transcoded) based on the characteristics of clients' devices (eg, spatial …

Purpose–The interoperability of cloud data between web applications and mobile devices
has vastly improved over recent years. The popularity of social media, smartphones and …