Lam, Van, Welch, Ian, Gao, P. and Komisarczuk, Peter (2013) Anatomy of drive-by download attack. In: Eleventh Australasian Information Security Conference, 29 Jan - 01 Feb 2013, Adelaide, Australia.

Full text not available from this repository.

Abstract

Drive-by download attacks where web browsers are subverted by malicious content delivered by web servers have become a common attack vector in recent years. Several methods for the detection of malicious content on web pages using data mining techniques to classify web pages as malicious or benign have been proposed in the literature. However, each proposed method uses different content features in order to do the classification and there is a lack of a high-level frameworks for comparing these methods based upon their choice of detection features. The lack of a framework makes it problematic to develop experiments to compare the effectiveness of methods based upon different selections of features. This paper presents such a framework derived from an analysis of of drive-by download attacks that focus upon potential state changes seen when Internet browsers render HTML documents. This framework can be used to identify potential features that have not yet been exploited and to reason about the challenges for using those features in detection drive-by download attack.

Item Type:	Conference or Workshop Item (Paper)
ISBN:	9781921770234
Page Range:	pp. 49-58
Keywords:	Internet Security; Drive-by-download; malicious web pages
Subjects:	Computing
Depositing User:	Vani Aul
Date Deposited:	21 Mar 2014 16:06
Last Modified:	28 Aug 2021 07:17
URI:	https://repository.uwl.ac.uk/id/eprint/761

Actions (login required)

View Item