Web scraping bots are now using so-called Residential IP Proxy (RESIP) services to defeat state-of-the-art commercial bot countermeasures. RESIP providers promise their customers to give them access to tens of millions of residential IP addresses, which belong to legitimate users. They dramatically complicate the task of the existing anti-bot solutions and give the upper hand to the malicious actors. New specific detection methods are needed to identify and stop scrapers from taking advantage of these parties. This work, thanks to a 4 months-long experiment, validates the feasibility, soundness, and practicality of a detection method based on network measurements. This technique enables contacted servers to identify whether an incoming request comes directly from a client device or if it has been proxied through another device.
BADPASS: Bots taking ADvantage of proxy as a service
ISPEC 2022, 17th international Conference of Information Security Practice and Experience, 23-25 November 2022, Taipei, Taiwan / Also published in Lecture Notes in Computer Science, vol 13620
Type:
Conférence
City:
Taipei
Date:
2022-11-23
Department:
Sécurité numérique
Eurecom Ref:
7056
Copyright:
© Springer. Personal use of this material is permitted. The definitive version of this paper was published in ISPEC 2022, 17th international Conference of Information Security Practice and Experience, 23-25 November 2022, Taipei, Taiwan / Also published in Lecture Notes in Computer Science, vol 13620 and is available at : https://doi.org/10.1007/978-3-031-21280-2_18
See also:
PERMALINK : https://www.eurecom.fr/publication/7056
