BitTorrent / Netgear / Samsung / Dell / IBM / Kodak / Panasonic / Barnes&Noble / HP / Intel / Microsoft / / /
IndustryTerm
web applications / web management interface / open-source web server / smart phone or embedded device / open-source web framework / web attacker / embedded web interfaces / e-book / web application / web browser / Web Application Security / embedded web servers / web request / web application logic / secure web interfaces / web browser attacks / enterprise-grade devices / security policy management / embedded web / web client / pre-processing step / given web application / secure web servers / particular site / web-based management interface / Web application configuration interface / Web Interfaces Baptiste Gourdin LSV ENS-Cachan gourdin@lsv.ens-cachan.fr Chinmay Soman Stanford University cpsoman@stanford.edu Hristo Bojinov Stanford University hristo@cs.stanford.edu Elie Bursztein Stanford University elie@cs.stanford.edu / command line tools / embedded devices / secure embedded web interfaces / malicious web attacker / consumer devices / web server / Request processing / web framework / direct web attacks / web server components / network-capable devices / Web browser connecting / lights-out management / consumer electronics / multiples devices / network communications / cross-site / local network / embedded web interface / vulnerable applications / router web interface / external web sites / Internet photo feed / external web site / embedded web interface content / web application attack / web application parameters / web resource / web server configuration / secure web server implementation / severe web security problems / web server configuration interface / web management interfaces / attacker Web Device / phone web applications / Web server configuration sample field / media hubs / Web server logs / non-web communication channel / web site framing / consumer electronics devices / web application vulnerabilities / web interface / consumer device / security audit / embedded single-user devices / remote server / web server overall statistics / web servers / lower-level network / embedded services / malicious web / millions active web servers / embedded web applications / web-based interface / embedded web application / typical embedded web application / web interfaces / web application developer / post-processing security mechanisms / /
OperatingSystem
Android / DoS / /
Organization
Stanford University / /
Person
Elie Bursztein / Paul Stone / Hristo Bojinov / /
Position
web server administrator / administrator / Cookie check Configuration manager / Configuration Manager / manager - cookie path / /
Product
SQL injections / Tornado open-source web server / SQL injection / Tornado / /
ProgrammingLanguage
SQL / XML / JavaScript / HTML / /
SportsLeague
Stanford University / /
Technology
SNMP / XML / JSON / 4 Type LOM NAS Photo frame Router / API / doing data encryption / operating system / HTML / DHTML / 3G / control network / SMS / smart phone / MAC address / Android / SSL / Ethernet / two specific protocols / firewall / HTTP / web server / /
Toward Secure Embedded Web Interfaces Baptiste Gourdin LSV ENS-Cachan [removed] Chinmay Soman