[转载]Mashup Component Isolation via Server-Side Analysis and Instrumention

文章作者：Michael Steiner and K. Vikram
原始出处：http://seclab.cs.rice.edu/w2sp/2007/

本文章是Web 2.0 Security & Privacy 2007大会议题。

Web 2.0 and mashups provide opportunities for exciting new applications. However, the security model of the underlying browser technology is quite inadequate to deal with the new trust and security issues. In particular, it provides no good and easy way to isolate mashup components from each other. While browsers might eventually fix these problem, this will take its time. One promising approach which works with current browsers is based on server-side analysis and code instrumentation.