Anatomy of drive-by download attack

Lam, Van, Welch, I., Gao, P. and Komisarczuk, Peter (2013) Anatomy of drive-by download attack. In: The Eleventh Australasian Information Security Conference, 29 January - 01 February 2013, Adelaide Australia.

Full text not available from this repository.


Drive-by download attacks where web browsers are
subverted by malicious content delivered by web
servers have become a common attack vector in recent
years. Several methods for the detection of malicious
content on web pages using data mining techniques
to classify web pages as malicious or benign
have been proposed in the literature. However, each
proposed method uses different content features in
order to do the classification and there is a lack of
a high-level frameworks for comparing these methods
based upon their choice of detection features. The
lack of a framework makes it problematic to develop
experiments to compare the effectiveness of methods
based upon different selections of features. This paper
presents such a framework derived from an analysis of
of drive-by download attacks that focus upon potential
state changes seen when Internet browsers render
HTML documents. This framework can be used to
identify potential features that have not yet been exploited
and to reason about the challenges for using
those features in detection drive-by download attack.

Item Type: Conference or Workshop Item (Paper)
Subjects: Computing
Depositing User: Vani Aul
Date Deposited: 21 Mar 2014 16:06
Last Modified: 11 Dec 2015 14:34

Actions (login required)

View Item View Item