Research Group Giancarlo Pellegrino at CISPA

2023-05-22

It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses

Conference / Medium

SP
44th IEEE Symposium on Security and Privacy44th IEEE Symposium on Security and Privacy

Tags

Secure Connected and Mobile Systems

Authors

Download Visit Detail Page

2022-05

The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies

Conference / Medium

SP
43rd IEEE Symposium on Security and Privacy (S&P '22)

Tags

Secure Connected and Mobile Systems

Authors

Download Visit Detail Page

2021-10

Where We Stand (or Fall): An Analysis of CSRF Defenses in Web Frameworks

Conference / Medium

RAID
24th International Symposium on Research in Attacks, Intrusions and Defenses (RAID ’21)

Tags

Secure Connected and Mobile Systems

Authors

Download Visit Detail Page

2021-08

JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals

Conference / Medium

USENIX-Security
USENIX Security Symposium30th USENIX Security Symposium (USENIX Security'21)

Tags

Secure Connected and Mobile Systems

Authors

Download Visit Detail Page

2021-05

Black Widow: Blackbox Data-driven Web Scanning

Conference / Medium

SP
proceedings of IEEE SSP 2021IEEE Symposium on Security and Privacy, Proceedings of SSP 2021

Tags

Secure Connected and Mobile Systems

Authors

Benjamin Eriksson
Giancarlo Pellegrino
Andrei Sabelfeld

Download Visit Detail Page

Pellegrino

Head of Group

Email

Address

Members

Soheil Khodayari

Giada Martina Stivala

Aleksei Stafeev

Gianluca De Stefano

Luy Seiwert

Andrea Mengascini

Most Recent Publications

Year 2023

Year 2022

Year 2021