INETSEC 2009, Open Research Problems in Network Security,
23-24 April 2009, Zurich, Switzerland / Also published in IFIP "Advances in Information and Communication Technology", Vol 309, ISSN: 1868-4238
23-24 April 2009, Zurich, Switzerland / Also published in IFIP "Advances in Information and Communication Technology", Vol 309, ISSN: 1868-4238
Malicious web sites perform drive-by download attacks to infect their visitors with malware. Current protection approaches rely on black- or whitelisting techniques that are difficult to keep up-to-date. As todays drive-by attacks already employ encryption to evade network level detection we propose a series of techniques that can be implemented in web browsers to protect the user from such threats. In addition, we discuss challenges and open problems that these mechanisms face in order to be effective and efficient.
Type:
Conférence
City:
Zurich
Date:
2009-04-23
Department:
Sécurité numérique
Eurecom Ref:
2777
Copyright:
© Springer. Personal use of this material is permitted. The definitive version of this paper was published in INETSEC 2009, Open Research Problems in Network Security,
23-24 April 2009, Zurich, Switzerland / Also published in IFIP "Advances in Information and Communication Technology", Vol 309, ISSN: 1868-4238 and is available at : http://dx.doi.org/10.1007/978-3-642-05437-2_5
23-24 April 2009, Zurich, Switzerland / Also published in IFIP "Advances in Information and Communication Technology", Vol 309, ISSN: 1868-4238 and is available at : http://dx.doi.org/10.1007/978-3-642-05437-2_5