Microsoft Research Builds BrowserShield

[bugtraq () cgisecurity net]

"With BrowserShield, Wang argues, many such attacks could be blocked. BrowserShield can be used as a framework that 
rewrites HTML pages to deny any attempt at executing harmful code on browsers. 

"We basically intercept the Web page, inject our logic and transform the page that is eventually rendered on the 
browser," Wang said. "We're inserting our layer of code at run-time to make the Web page safe for the end user." 

URL: http://www.eweek.com/article2/0,1895,2011765,00.asp

-z
http://www.cgisecurity.com/ Website Security news, and More
http://www.cgisecurity.com/index.rss [RSS Web Feed]

-------------------------------------------------------------------------
Sponsored by: Watchfire

As web applications become increasingly complex, tremendous amounts of 
sensitive data - personal, medical and financial - are exchanged, and 
stored. Consumers expect and demand security for this information. This 
whitepaper examines a few vulnerability detection methods - specifically 
comparing and contrasting manual penetration testing with automated 
scanning tools. Download "Automated Scanning or Manual Penetration 
Testing?" today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008Vmm
--------------------------------------------------------------------------