Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security 2011
DOI: 10.1145/1966913.1966971
|View full text |Cite
|
Sign up to set email alerts
|

Diesel

Adrienne Porter Felt
1
,
Matthew Finifter
2
,
Joel Weinberger
3
et al.

Abstract: Database-backed applications typically grant complete database access to every part of the application. In this scenario, a flaw in one module can expose data that the module never uses for legitimate purposes. Drawing parallels to traditional privilege separation, we argue that database data should be subject to limitations such that each section of code receives access to only the data it needs. We call this data separation. Data separation defends against SQL-based errors including buggy queries and SQL inj… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

0
0
0

Year Published

2013
2013
2023
2023

Publication Types

Select...
4
1

Relationship

0
5

Authors

Journals

citations
Cited by 12 publications
references
References 15 publications
0
0
0
Order By: Relevance

You Can’t Be Me: Enabling Trusted Paths and User Sub-origins in Web Browsers

Budianto
1
,
Jia
2
,
Dong
3
et al. 2014
Research in Attacks, Intrusions and Defenses
8
0
3
0
View full textAdd to dashboardCite

You Can’t Be Me: Enabling Trusted Paths and User Sub-origins in Web Browsers

Budianto
1
,
Jia
2
,
Dong
3
et al. 2014
Research in Attacks, Intrusions and Defenses
8
0
3
0
View full textAdd to dashboardCite

Minimizing Databases Attack Surface Against SQL Injection Attacks

Geneiatakis
1
2016
Information and Communications Security
2
0
1
0
View full textAdd to dashboardCite

Securing Web Applications with Predicate Access Control

Yang1,
Levchenko2
2017
Data and Applications Security and Privacy XXXI
0
0
0
0
View full textAdd to dashboardCite
show abstract
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2025 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.