| With dramatic progress in the past decade, especially the past 5 years with improvement on networks, computers, programming technology and users' demands for interaction, Internet was brought into the era of Web 2.0, which enabled everyone to publish information, promoted the concept of equality, collaboration and integration, and made remarkable user experience to be the typical feature. Correspondingly, Web 1.0, the traditional Internet Pattern which has explicit provider and consumer of information is fading out of the stage.As a typical application of Web 2.0, Mashup integrates logically related content from different sites and provides a unified interface to users. However, most of current browsers are designed for Web 1.0 and some functions, such as Same Origin Policy and browser level based local access control, are not proper for Mashup. As a result, some security threats were revealed.The thesis analyzed technologies and security issues of Mashup, proposed models of attacks, and summarized requirements. Then, ICAM, a new browser security model based on Independent Component Aggregation was introduced to solve the security issues. Besides, a prototype based on Internet Explorer was achieved with detailed design of modules. Finally, ICAM feasibility was demonstrated by evaluation on both functions and performance.Because of content integration in Web 2.0 application like Mashup, the structure of information sources in a page will become more and more complex. With the solution for browser architectures, ICAM plays a positive role in the evolution of Web 2.0 oriented browser technology. |
PDF Full Text Request