Enforcing Security Boundaries and Protecting Application Data

To achieve fast development times, high level scripting languages have become the main choice of developers. Among these, JavaScript is the most popular choice in the context of full-stack web applications. Researches prior to this work were mainly focused on vulnerabilities introduced by the language itself and not on its interactions with dependencies written in low-level languages. This work explores how it is possible to restrict the privileges given to such components when employed by JavaScript runtimes and WASM runtimes that are WASI compliant. Finally, this research proposes techniques to strengthen the privacy and confidentiality requirements of data collections included in the security boundaries guaranteed by the above mentioned researches.