In capability-safe languages, components can access a resource only if they possess a
capability for that resource. As a result, a programmer can prevent an untrusted component …

TreatJS is a language embedded, higher-order contract system for JavaScript which
enforces contracts by run-time monitoring. Beyond providing the standard abstractions for …

On October 5, 2018, a GitHub user announced a critical security vulnerability in event-
stream, a JavaScript package meant to simplify working with data-streams. The vulnerability …

Proxies are the swiss army knives of object adaptation. They introduce a level of indirection
to intercept select operations on a target object and divert them as method calls to a handler …

This paper presents a new solution to the containment problem for extended regular
expressions that extends basic regular expressions with intersection and complement …

Dynamic program analysis is a long-standing technique for obtaining information about
program execution. We present module recontextualization, a new dynamic analysis …

In this paper, we propose a method to construct hedge algebra based type-2 fuzzy logic
systems (HA-T2FLS). In these fuzzy logic systems, the footprints of uncertainty (FOU) of type …

Today's JavaScript applications are composed of scripts from different origins that are
loaded at run time. As not all of these origins are equally trusted, the execution of these …

A proxy, in general, is an object mediating access to an arbitrary target object. The proxy is
then intended to be used in place of the target object. Ideally, a proxy is not distinguishable …

The complex architecture of browser technologies and dynamic characteristics of JavaScript
make it difficult to ensure security in client-side web applications. Browser-level policies …