default search action
Ben Stock
Person information
- affiliation: CISPA, Saarbrücken, Germany
- affiliation: Saarland University, Saarbrücken, Germany
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
2020 – today
- 2024
- [j4]Zubair Ahmad, Stefano Calzavara, Samuele Casarin, Ben Stock:
Information flow control for comparative privacy analyses. Int. J. Inf. Sec. 23(5): 3199-3216 (2024) - [c46]Jannis Rautenstrauch, Ben Stock:
Who's Breaking the Rules? Studying Conformance to the HTTP Specifications and its Security Impact. AsiaCCS 2024 - [c45]Shubham Agarwal, Aurore Fass, Ben Stock:
Peeking through the window: Fingerprinting Browser Extensions through Page-Visible Execution Traces and Interactions. CCS 2024: 2117-2131 - [c44]Jannis Rautenstrauch, Metodi Mitkov, Thomas Helbrecht, Lorenz Hetterich, Ben Stock:
To Auth or Not To Auth? A Comparative Analysis of the Pre- and Post-Login Security Landscape. SP 2024: 1500-1516 - [c43]Florian Hantke, Sebastian Roth, Rafael Mrowczynski, Christine Utz, Ben Stock:
Where Are the Red Lines? Towards Ethical Server-Side Scans in Security and Privacy Research. SP 2024: 4405-4423 - [c42]Sebastian Roth, Lea Gröber, Philipp Baus, Katharina Krombholz, Ben Stock:
Trust Me If You Can - How Usable Is Trusted Types In Practice? USENIX Security Symposium 2024 - [i1]Ritik Roongta, Mitchell Zhou, Ben Stock, Rachel Greenstadt:
From Blocking to Breaking: Evaluating the Impact of Adblockers on Web Usability. CoRR abs/2410.23504 (2024) - 2023
- [j3]Christine Utz, Matthias Michels, Martin Degeling, Ninja Marnau, Ben Stock:
Comparing Large-Scale Privacy and Security Notifications. Proc. Priv. Enhancing Technol. 2023(3): 173-193 (2023) - [j2]Giorgio Di Tizio, Patrick Speicher, Milivoj Simeonovski, Michael Backes, Ben Stock, Robert Künnemann:
Pareto-optimal Defenses for the Web Infrastructure: Theory and Practice. ACM Trans. Priv. Secur. 26(2): 18:1-18:36 (2023) - [c41]Florian Hantke, Stefano Calzavara, Moritz Wilhelm, Alvise Rabitti, Ben Stock:
You Call This Archaeology? Evaluating Web Archives for Reproducible Web Security Measurements. CCS 2023: 3168-3182 - [c40]Seongil Wi, Trung Tin Nguyen, Jihwan Kim, Ben Stock, Sooel Son:
DiffCSP: Finding Browser Bugs in Content Security Policy Enforcement through Differential Testing. NDSS 2023 - [c39]Leon Trampert, Ben Stock, Sebastian Roth:
Honey, I Cached our Security Tokens Re-usage of Security Tokens in the Wild. RAID 2023: 714-726 - [c38]Jannis Rautenstrauch, Giancarlo Pellegrino, Ben Stock:
The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web. SP 2023: 2744-2760 - [c37]Birk Blechschmidt, Ben Stock:
Extended Hell(o): A Comprehensive Large-Scale Study on Email Confidentiality and Integrity Mechanisms in the Wild. USENIX Security Symposium 2023: 4895-4912 - 2022
- [c36]Trung Tin Nguyen, Michael Backes, Ben Stock:
Freely Given Consent?: Studying Consent Notice of Third-Party Tracking and Its Violations of GDPR in Android Apps. CCS 2022: 2369-2383 - [c35]David Klein, Thomas Barber, Souphiane Bensalim, Ben Stock, Martin Johns:
Hand Sanitizers in the Wild: A Large-scale Study of Custom JavaScript Sanitizer Functions. EuroS&P 2022: 236-250 - [c34]Florian Hantke, Ben Stock:
HTML violations and where to find them: a longitudinal analysis of specification violations in HTML. IMC 2022: 358-373 - [c33]Peter Stolz, Sebastian Roth, Ben Stock:
To hash or not to hash: A security assessment of CSP's unsafe-hashes expression. SP (Workshops) 2022: 1-12 - [c32]Sebastian Roth, Stefano Calzavara, Moritz Wilhelm, Alvise Rabitti, Ben Stock:
The Security Lottery: Measuring Client-Side Web Security Inconsistencies. USENIX Security Symposium 2022: 2047-2064 - 2021
- [c31]Gordon Meiser, Pierre Laperdrix, Ben Stock:
Careful Who You Trust: Studying the Pitfalls of Cross-Origin Communication. AsiaCCS 2021: 110-122 - [c30]Aurore Fass, Dolière Francis Somé, Michael Backes, Ben Stock:
DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale. CCS 2021: 1789-1804 - [c29]Sebastian Roth, Lea Gröber, Michael Backes, Katharina Krombholz, Ben Stock:
12 Angry Developers - A Qualitative Study on Developers' Struggles with CSP. CCS 2021: 3085-3103 - [c28]Stefano Calzavara, Tobias Urban, Dennis Tatang, Marius Steffens, Ben Stock:
Reining in the Web's Inconsistencies with Site Policy. NDSS 2021 - [c27]Marius Steffens, Marius Musch, Martin Johns, Ben Stock:
Who's Hosting the Block Party? Studying Third-Party Blockage of CSP and SRI. NDSS 2021 - [c26]Trung Tin Nguyen, Michael Backes, Ninja Marnau, Ben Stock:
Share First, Ask Later (or Never?) Studying Violations of GDPR's Explicit Consent in Android Apps. USENIX Security Symposium 2021: 3667-3684 - 2020
- [c25]Sebastian Roth, Michael Backes, Ben Stock:
Assessing the Impact of Script Gadgets on CSP at Scale. AsiaCCS 2020: 420-431 - [c24]Marius Steffens, Ben Stock:
PMForce: Systematically Analyzing postMessage Handlers at Scale. CCS 2020: 493-505 - [c23]Stefano Calzavara, Ben Stock:
SecWeb 2020 Preface. EuroS&P Workshops 2020: 645 - [c22]Sebastian Roth, Timothy Barron, Stefano Calzavara, Nick Nikiforakis, Ben Stock:
Complex Security Policy? A Longitudinal Analysis of Deployed Content Security Policies. NDSS 2020 - [c21]Stefano Calzavara, Sebastian Roth, Alvise Rabitti, Michael Backes, Ben Stock:
A Tale of Two Headers: A Formal Analysis of Inconsistent Click-Jacking Protection on the Web. USENIX Security Symposium 2020: 683-697
2010 – 2019
- 2019
- [c20]Aurore Fass, Michael Backes, Ben Stock:
JStap: a static pre-filter for malicious JavaScript detection. ACSAC 2019: 257-269 - [c19]Marius Musch, Marius Steffens, Sebastian Roth, Ben Stock, Martin Johns:
ScriptProtect: Mitigating Unsafe Third-Party JavaScript Practices. AsiaCCS 2019: 391-402 - [c18]Aurore Fass, Michael Backes, Ben Stock:
HideNoSeek: Camouflaging Malicious JavaScript in Benign ASTs. CCS 2019: 1899-1913 - [c17]Marius Steffens, Christian Rossow, Martin Johns, Ben Stock:
Don't Trust The Locals: Investigating the Prevalence of Persistent Client-Side Cross-Site Scripting in the Wild. NDSS 2019 - 2018
- [c16]Aurore Fass, Robert P. Krawczyk, Michael Backes, Ben Stock:
JaSt: Fully Syntactic Detection of Malicious (Obfuscated) JavaScript. DIMVA 2018: 303-325 - [c15]Ben Stock, Giancarlo Pellegrino, Frank Li, Michael Backes, Christian Rossow:
Didn't You Hear Me? - Towards More Successful Web Vulnerability Notifications. NDSS 2018 - 2017
- [c14]Michael Backes, Konrad Rieck, Malte Skoruppa, Ben Stock, Fabian Yamaguchi:
Efficient and Flexible Discovery of PHP Application Vulnerabilities. EuroS&P 2017: 334-349 - [c13]Ben Stock, Martin Johns, Marius Steffens, Michael Backes:
How the Web Tangled Itself: Uncovering the History of Client-Side Web (In)Security. USENIX Security Symposium 2017: 971-987 - 2016
- [j1]Ben Stock, Martin Johns:
Client-Side XSS in Theorie und Praxis. Datenschutz und Datensicherheit 40(11): 707-712 (2016) - [c12]Ben Stock, Giancarlo Pellegrino, Christian Rossow, Martin Johns, Michael Backes:
POSTER: Mapping the Landscape of Large-Scale Vulnerability Notifications. CCS 2016: 1787-1789 - [c11]Ben Stock, Benjamin Livshits, Benjamin G. Zorn:
Kizzle: A Signature Compiler for Detecting Exploit Kits. DSN 2016: 455-466 - [c10]Michael Backes, Thorsten Holz, Christian Rossow, Teemu Rytilahti, Milivoj Simeonovski, Ben Stock:
On the Feasibility of TTL-Based Filtering for DRDoS Mitigation. RAID 2016: 303-322 - [c9]Ben Stock, Giancarlo Pellegrino, Christian Rossow, Martin Johns, Michael Backes:
Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification. USENIX Security Symposium 2016: 1015-1032 - 2015
- [b1]Benjamin Stock:
Untangling the Web of Client-Side Cross-Site Scripting. University of Erlangen-Nuremberg, 2015 - [c8]Ben Stock, Stephan Pfistner, Bernd Kaiser, Sebastian Lekies, Martin Johns:
From Facepalm to Brain Bender: Exploring Client-Side Cross-Site Scripting. CCS 2015: 1419-1430 - [c7]Sebastian Lekies, Ben Stock, Martin Wentzel, Martin Johns:
The Unexpected Dangers of Dynamic JavaScript. USENIX Security Symposium 2015: 723-735 - 2014
- [c6]Ben Stock, Martin Johns:
Protecting users against XSS-based password manager abuse. AsiaCCS 2014: 183-194 - [c5]Ben Stock, Sebastian Lekies, Martin Johns:
DOM-basiertes Cross-Site Scripting im Web: Reise in ein unerforschtes Land. Sicherheit 2014: 53-64 - [c4]Ben Stock, Sebastian Lekies, Tobias Mueller, Patrick Spiegel, Martin Johns:
Precise Client-side Protection against DOM-based Cross-Site Scripting. USENIX Security Symposium 2014: 655-670 - 2013
- [c3]Sebastian Lekies, Ben Stock, Martin Johns:
25 million flows later: large-scale detection of DOM-based XSS. CCS 2013: 1193-1204 - [c2]Martin Johns, Sebastian Lekies, Ben Stock:
Eradicating DNS Rebinding with the Extended Same-origin Policy. USENIX Security Symposium 2013: 621-636 - 2011
- [c1]Zinaida Benenson, Andreas Dewald, Hans-Georg Eßer, Felix C. Freiling, Tilo Müller, Christian Moch, Stefan Vömel, Sebastian Schinzel, Michael Spreitzenbarth, Ben Stock, Johannes Stüttgen:
Exploring the Landscape of Cybercrime. SysSec@DIMVA 2011: 71-74
Coauthor Index
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
Unpaywalled article links
Add open access links from to the list of external document links (if available).
Privacy notice: By enabling the option above, your browser will contact the API of unpaywall.org to load hyperlinks to open access articles. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Unpaywall privacy policy.
Archived links via Wayback Machine
For web page which are no longer available, try to retrieve content from the of the Internet Archive (if available).
Privacy notice: By enabling the option above, your browser will contact the API of archive.org to check for archived content of web pages that are no longer available. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Internet Archive privacy policy.
Reference lists
Add a list of references from , , and to record detail pages.
load references from crossref.org and opencitations.net
Privacy notice: By enabling the option above, your browser will contact the APIs of crossref.org, opencitations.net, and semanticscholar.org to load article reference information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Crossref privacy policy and the OpenCitations privacy policy, as well as the AI2 Privacy Policy covering Semantic Scholar.
Citation data
Add a list of citing articles from and to record detail pages.
load citations from opencitations.net
Privacy notice: By enabling the option above, your browser will contact the API of opencitations.net and semanticscholar.org to load citation information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the OpenCitations privacy policy as well as the AI2 Privacy Policy covering Semantic Scholar.
OpenAlex data
Load additional information about publications from .
Privacy notice: By enabling the option above, your browser will contact the API of openalex.org to load additional information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the information given by OpenAlex.
last updated on 2024-12-23 20:32 CET by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint