IEEE EuroS&P 2022 - Papers on Web security

Web security

aaeCAPTCHA: The Design and Implementation of Audio Adversarial CAPTCHA

Md Imran Hossen (University of Louisiana at Lafayette), Xiali Hei (University of Louisiana at Lafayette)

Captcha me if you can: Imitation Games with Reinforcement Learning

Ilias Tsingenopoulos (imec-DistriNet, KU Leuven), Davy Preuveneers (imec-DistriNet, KU Leuven), Lieven Desmet (imec-DistriNet, KU Leuven), Wouter Joosen (imec-DistriNet, KU Leuven)

[Artifact]

Hand Sanitizers in the Wild: A Large-scale Study of Custom JavaScript Sanitizer Functions

David Klein (Technische Universität Braunschweig), Thomas Barber (SAP Security Research), Souphiane Bensalim (SAP Security Research), Ben Stock (CISPA Helmholtz Center for Information Security), Martin Johns (Technische Universität Braunschweig)

[Artifact]

Lethe: Practical Data Breach Detection with Zero Persistent Secret State

Antreas Dionysiou (University of Cyprus), Elias Athanasopoulos (University of Cyprus)

[Artifact]

SoK: All or Nothing - A Postmortem of Solutions to the Third-Party Script Inclusion Permission Model and a Path Forward

Steven Sprecher (Northeastern University), Christoph Kerschbaumer (Mozilla Corporation), Engin Kirda (Northeastern University)

[Artifact]

SoK: Oblivious Pseudorandom Functions

Sílvia Casacuberta (Harvard University), Julia Hesse (IBM Research Europe - Zurich), Anja Lehmann (Hasso-Plattner-Institute, University of Potsdam)

[Paper]