2021 Help me understand this report
Caught in the Web: DoS Vulnerabilities in Parsers for Structured Data
Abstract: We study a class of denial-of-service (DoS) vulnerabilities that occur in parsing structured data. These vulnerabilities enable low bandwidth DoS attacks with input that causes algorithms to execute in disproportionately large time and / or space. We generalise the characteristics of these vulnerabilities, and frame them in terms of three aspects, TTT: (1) the Topology of composite data structures formed by the internal representation of parsed data, (2) the presence of recursive functions for the Traversal of…
Search citation statements
Paper Sections
Select...
Citation Types
0
0
0
Year Published
2024
2024
Publication Types
Select...
1
Relationship
0
1
Authors
Journals
Cited by 1 publication
References 22 publications
(31 reference statements)
0
0
0
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
Copyright © 2025 scite LLC. All rights reserved.
Made with 💙 for researchers
