Downloads: 129 | Views: 196

M.Tech / M.E / PhD Thesis | Computer Science & Engineering | India | Volume 4 Issue 5, May 2015

Attacks in HTML5

Kailash L. Methawani | Prof. Avinash P. Wadhe

Abstract: Now days, a web user can enjoy chatting, playing games and Internet banking from simple structured text. The browsers have changed from being a simple structured display to supporting complex multimedia application. All these applications have something in common, they can be run on different platforms and in some cases they will run offline. This is possible due to new features in latest specification HTML, specifically, drawing featured canvas. In this paper, after providing some background to HTML5, we are going to discuss attack surface and possible threats. - CSRF and leveraging CORS to bypass SOP - Attacking WebSQL and client side SQL injection - ClickJacking & Phishing by mixing layers and iframe - Stealing information from Storage and Global variables - DOM injections and Hijacking with HTML 5

Keywords: HTML, HTML5, WebSQL, CSS3

Edition: Volume 4 Issue 5, May 2015,

Pages: 760 - 762