Threat Models in JavaScript Applications

In the modern world people want fast access to the right data at the right time. The facilitator of this data transmission and interconnection is the internet. People are sending and receiving data through their different devices. In this so called ubiquitous era service providers are moving from in shop servers to cloud environments and from “multiple implementations for different devices” to a “one application fit all devices” paradigm. These paradigm shifts while attractive, opens systems to previously unknown security risks. The previous man in the middle or black box security model is not sufficient and software security designers should also consider man at the end or white box attacks. In our research we attempt to address software security vulnerabilities, in particular client side code executed in these untrustworthy environments. To this end we will create a novel threat modeling methodology with a focus on web applications consisting of client side code written in JavaScript and HTML5.

Faculty Supervisor:

Dr. Tom Dean

Student:

Mohammad Hassan Nourijelyani

Partner:

Irdeto Canada

Discipline:

Engineering - computer / electrical

Sector:

Information and communications technologies

University:

Queen's University

Program:

Accelerate

Related projects

Discover more projects across a range of sectors and discipline — from AI to cleantech to social innovation.

View all
Current openings

Find the perfect opportunity to put your academic skills and knowledge into practice!

Find Projects

Mitacs Partners

The strong support from governments across Canada, international partners, universities, colleges, companies, and community organizations has enabled Mitacs to focus on the core idea that talent and partnerships power innovation — and innovation creates a better future.

Government
Academic
Industry
Innovation

International

Load More

International

Load More

Join a thriving innovation ecosystem.

Subscribe to our newsletter now!

Subscribe
Canada