Web developers can (and do) include subresources such as scripts, stylesheets and images
in their webpages. Such subresources might be stored on content delivery networks (CDNs) …

The number of public and private web archives has increased, and we implicitly trust content
delivered by these archives. Fixity is checked to ensure an archived resource has remained …

Internet users can download software for their computers from app stores (eg, Mac App
Store and Windows Store) or from other sources, such as the developers' websites. Most …

Widespread growth of open wireless hotspots has made it easy to carry out man-in-the-
middle attacks and impersonate web sites. Although HTTPS can be used to prevent such …

App stores provide access to millions of different programs that users can download on their
computers. Developers can also make their programs available for download on their …

Most Web sites rely on resources hosted by third parties such as CDNs. Third parties may be
compromised or coerced into misbehaving, eg delivering a malicious script or stylesheet …

On-the-fly web content integrity check boosts users' confidence Page 1 To strengthen the
security of Web systems, we have developed and implemented a server-side Web content …

The modern web is a collection of remote resources that are identified by their location and
composed of interleaving networks of trust. Supply chain attacks compromise the users of a …

We describe challenges related to web archiving, replaying archived web resources, and
verifying their authenticity. We show that Web Packaging has significant potential to help …

The Web has grown into the most widely used application platform for our daily lives. First-
party Web applications thrive due to many different third parties they rely on to provide …