Single Sign-On (SSO) with OAuth 2.0 and OpenID Connect 1.0 is essential for user
authentication and autho-rization on the Internet. Billions of users rely on SSO services …

When browsing the web, none of us want sites to infer which other sites we may have visited
before or are logged in to. However, attacker-controlled sites may infer this state through …

Request forgery attacks are among the oldest threats to Web applications, traditionally
caused by server-side confused deputy vulnerabilities. However, recent advancements in …

Mobile operating systems provide developers with various mobile-to-Web bridges to display
Web pages inside native applications. A recently introduced component called Custom Tab …

In our society, protecting users' privacy is of utmost importance, especially when users
access websites. Increased awareness of privacy concerns has led web browsers to …

DNS root servers are the starting point of most DNS queries. To ensure their security and
stability, multiple anycast instances are operated worldwide, and new root instances have …

Detection and mitigation of critical web vulnerabilities and attacks like cross-site scripting
(XSS), and cross-site request forgery (CSRF) have been a great concern in the field of web …

The Single Sign-On based account linking process (SSOLinking in short) allows users to link
their accounts at Service Provider (SP) websites to their Identity Providers (IdP) accounts …

Advertising and tracking service (ATS) blocking has been safeguarding the privacy of
millions of Internet users from privacy-invasive tracking behaviors. Previous research has …

Despite stringent data protection regulations, such as the General Data Protection
Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other country-specific …