Title :
Malfree web server response
Author :
Ahmad, Mahmood ; Munir, Rana Faisal
Author_Institution :
Sch. of Electr. Eng. & Comput. Sci.(SEECS), Nat. Univ. of Sci. & Technol.(NUST), Islamabad, Pakistan
Abstract :
The trend of spreading malicious web contents through legitimate but compromised websites is not very rare to find. Websites bearing the trust of millions of clients are chosen to exploit the trust of its users by installing unwanted and malevolent contents on client machines through drive by download. This stealthier mechanism is aimed to convert a client machine into a botnet and to gain access on its resources like stored passwords, sensitive information and fingerprinting of running softwares. To deal with it, there are different solutions like honeypots and system state observers but all these antidotes are client resident. In this paper we have devised a heuristic based solution which resides on web servers and circumvents the movement of malicious contents toward client machines while keeping the server repute trusted and its availability 24/7 even after the compromise. Instead of blocking the complete website or any of its page, only malevolent contents are sanitized which adds novelty to the proposed system.
Keywords :
Internet; Web sites; client-server systems; computer network security; resource allocation; Malfree Web server response; Web site blocking; client machine; client resident; honeypots; malevolent contents; malicious Web contents; resource access; stealthier mechanism; system state observer; unwanted contents; Browsers; HTML; Internet; Malware; Servers; Software; Web pages;
Conference_Titel :
Emerging Technologies (ICET), 2011 7th International Conference on
Conference_Location :
Islamabad
Print_ISBN :
978-1-4577-0769-8
DOI :
10.1109/ICET.2011.6048478
