1. NCCU Academic Hub
  2. 學術產出
  3. College of Commerce
  4. Periodical Articles
  5. Item

學術產出-Periodical Articles

Article View/Open

Publication Export

Google ScholarTM

政大圖書館

Citation Infomation

題名 A Secure Proxy-Based Cross-Domain Communication for Web Mashup
作者 蕭舜文
孫雅麗
陳孟彰
Hsiao, Shun-Wen
Sun, Yeali S.
Ao, Fu-Chi
Chen, Meng Chang
貢獻者 資管系
日期 2013-07
上傳時間 6-Sep-2017 16:36:16 (UTC+8)
摘要 A web mashup is a web application that integrates content from heterogeneous sources to provide users with a more integrated and seamless browsing experience. Client-side mashups differ from server-side mashups in that the content is integrated in the browser using the client-side scripts. However, the legacy same origin policy (SOP) implemented by the browsers cannot provide a flexible client-side communication mechanism to exchange information between different sources. To address this problem, we propose a secure client-side cross-domain communication model facilitated by a trusted proxy and the HTML 5 post Message method. The proxy-based model supports fine-grained access control for elements that belong to different sources in web mashups, and the design guarantees the confidentiality, integrity, and authenticity during cross-domain communications. The proxy-based design also allows users to browse mashups without installing browser plug-ins. For mashups developers, the provided API minimizes the amount of code modification. The results of experiments demonstrate that the overhead in-curred by our proxy model is low and reasonable.
關聯 Journal of Web Engineering, Vol.12, No.3&4, pp.291-316
資料類型 article
DOI https://doi.org/10.1109/ECOWS.2011.10
dc.contributor 資管系zh_TW
dc.creator (作者) 蕭舜文zh_TW
dc.creator (作者) 孫雅麗zh_TW
dc.creator (作者) 陳孟彰zh_TW
dc.creator (作者) Hsiao, Shun-Wenen_US
dc.creator (作者) Sun, Yeali S.en_US
dc.creator (作者) Ao, Fu-Chien_US
dc.creator (作者) Chen, Meng Changen_US
dc.date (日期) 2013-07
dc.date.accessioned 6-Sep-2017 16:36:16 (UTC+8)-
dc.date.available 6-Sep-2017 16:36:16 (UTC+8)-
dc.date.issued (上傳時間) 6-Sep-2017 16:36:16 (UTC+8)-
dc.identifier.uri (URI) http://nccur.lib.nccu.edu.tw/handle/140.119/112548-
dc.description.abstract (摘要) A web mashup is a web application that integrates content from heterogeneous sources to provide users with a more integrated and seamless browsing experience. Client-side mashups differ from server-side mashups in that the content is integrated in the browser using the client-side scripts. However, the legacy same origin policy (SOP) implemented by the browsers cannot provide a flexible client-side communication mechanism to exchange information between different sources. To address this problem, we propose a secure client-side cross-domain communication model facilitated by a trusted proxy and the HTML 5 post Message method. The proxy-based model supports fine-grained access control for elements that belong to different sources in web mashups, and the design guarantees the confidentiality, integrity, and authenticity during cross-domain communications. The proxy-based design also allows users to browse mashups without installing browser plug-ins. For mashups developers, the provided API minimizes the amount of code modification. The results of experiments demonstrate that the overhead in-curred by our proxy model is low and reasonable.en_US
dc.format.extent 120 bytes-
dc.format.mimetype text/html-
dc.relation (關聯) Journal of Web Engineering, Vol.12, No.3&4, pp.291-316en_US
dc.title (題名) A Secure Proxy-Based Cross-Domain Communication for Web Mashupen_US
dc.type (資料類型) article
dc.identifier.doi (DOI) 10.1109/ECOWS.2011.10
dc.doi.uri (DOI) https://doi.org/10.1109/ECOWS.2011.10