A social approach to security: Using social networks to help detect malicious web content

Author

Robertson, Michael ; Pan, Yin ; Yuan, Bo

Author_Institution

Dept. of Networking, Security, & Syst. Adm., Rochester Inst. of Technol., Rochester, NY, USA

fYear

2010

fDate

15-16 Nov. 2010

Firstpage

436

Lastpage

441

Abstract

In the midst of a social networking revolution, social media has become the new vehicle for effective business marketing and transactions. As social aspects to the Internet continue to expand in both quantity and scope, so has the security threat towards enterprise networks and systems. Many social networking users also become main targets of spams, phishing, stalking, and other malware attacks that exploit the trust among social network “friends”. This paper presents a comprehensive method combining traditional security heuristics with social networking data to aid in the detection of malicious web content as it propagates through the user´s network. A Facebook application is implemented to automatically evaluate and detect malicious link content. The results of testing this application against known phishing and malware sites with real-world user profiles have shown encouraging results.

Keywords

Internet; security of data; social networking (online); unsolicited e-mail; Internet; business marketing; business transaction; malicious Web content; malware attack; phishing; social network; spam; stalking; Facebook; Feeds; Malware; Testing; Twitter; Facebook; Social networks; malicious URL; phishing; security; spam detection;

fLanguage

English

Publisher

ieee

Conference_Titel

Intelligent Systems and Knowledge Engineering (ISKE), 2010 International Conference on

Conference_Location

Hangzhou

Print_ISBN

978-1-4244-6791-4

Type

conf

DOI

10.1109/ISKE.2010.5680839

Filename

5680839