See More

%PDF-1.4 %ÐÔÅØ 1 0 obj << /S /GoTo /D (section.1) >> endobj 4 0 obj (1 Introduction) endobj 5 0 obj << /S /GoTo /D (section.2) >> endobj 8 0 obj (2 A Survey of Frame busting Code) endobj 9 0 obj << /S /GoTo /D (section.3) >> endobj 12 0 obj (3 Generic Attacks) endobj 13 0 obj << /S /GoTo /D (subsection.3.1) >> endobj 16 0 obj (3.1 Double framing) endobj 17 0 obj << /S /GoTo /D (subsection.3.2) >> endobj 20 0 obj (3.2 The onBeforeUnload event) endobj 21 0 obj << /S /GoTo /D (subsection.3.3) >> endobj 24 0 obj (3.3 onBeforeUnload \205 204 Flushing) endobj 25 0 obj << /S /GoTo /D (subsection.3.4) >> endobj 28 0 obj (3.4 Exploiting the XSS filter) endobj 29 0 obj << /S /GoTo /D (subsection.3.5) >> endobj 32 0 obj (3.5 Referrer checking problems) endobj 33 0 obj << /S /GoTo /D (subsection.3.6) >> endobj 36 0 obj (3.6 Clobbering top.location) endobj 37 0 obj << /S /GoTo /D (subsection.3.7) >> endobj 40 0 obj (3.7 IE Restricted Zone) endobj 41 0 obj << /S /GoTo /D (subsection.3.8) >> endobj 44 0 obj (3.8 Sandbox attribute) endobj 45 0 obj << /S /GoTo /D (subsection.3.9) >> endobj 48 0 obj (3.9 Design mode) endobj 49 0 obj << /S /GoTo /D (subsection.3.10) >> endobj 52 0 obj (3.10 Mobile Sites) endobj 53 0 obj << /S /GoTo /D (section.4) >> endobj 56 0 obj (4 Site Specific Attacks) endobj 57 0 obj << /S /GoTo /D (subsection.4.1) >> endobj 60 0 obj (4.1 Shedding a Ray of Light in the Darkness) endobj 61 0 obj << /S /GoTo /D (subsection.4.2) >> endobj 64 0 obj (4.2 Domain checking errors) endobj 65 0 obj << /S /GoTo /D (subsection.4.3) >> endobj 68 0 obj (4.3 Trust problems) endobj 69 0 obj << /S /GoTo /D (section.5) >> endobj 72 0 obj (5 Frame busting securely) endobj 73 0 obj << /S /GoTo /D (subsection.5.1) >> endobj 76 0 obj (5.1 X-FRAME-OPTIONS) endobj 77 0 obj << /S /GoTo /D (subsection.5.2) >> endobj 80 0 obj (5.2 Content Security Policy) endobj 81 0 obj << /S /GoTo /D (subsection.5.3) >> endobj 84 0 obj (5.3 Using JavaScript) endobj 85 0 obj << /S /GoTo /D (section.6) >> endobj 88 0 obj (6 Related Work) endobj 89 0 obj << /S /GoTo /D (section.7) >> endobj 92 0 obj (7 Conclusion) endobj 93 0 obj << /S /GoTo /D [94 0 R /FitH ] >> endobj 101 0 obj << /Length 2619 /Filter /FlateDecode >> stream xڝYmoÜ6þž_±ýtZ RD½+‡Ú¤MÑw¸«}-Š¶h‰ëe£•6¢×ýõ7ϵ޵å8¶Èáˇ3ÏÌÐñævo¾}ÿÅ÷Íõ‹WïT±Qe”¨<Û\ï6I’FEYlè7J "µ›_‚7³›l» Ó8 ÞmË*õÁ «–±×Ûß®ßoB×´,Ù„‰ŠjUÉr-¯¦¹½—æ°“ïÛÎ6Û¤>ü®é[ì6TA¿Ugö#˜Í]oF}c;;Yãü½|ÿåÃqîôè¹Ø‰æ0t²r£HŒ