• DocumentCode
    240729
  • Title

    Automatic attack signature generation technology for malicious javascript

  • Author

    Soojin Yoon ; Jonghun Jung ; MyoungSun Noh ; Kyungho Chung ; ChaeTae Im

  • Author_Institution
    Korea Internet & Security Agency, Seoul, South Korea
  • fYear
    2014
  • fDate
    3-5 Dec. 2014
  • Firstpage
    351
  • Lastpage
    354
  • Abstract
    Most attack on web is Drive-by-Download that malware or worm is downloaded on user´s device, be activated, and attack user´s device or other server. However, new attack appear which can work without downloading. It is HashDoS. HashDoS does not need downloading, it use malicious JavaScript as attack tool. Although there is several research about malicious javascripts, to my best of knowledge, there is no research of generating attack signature for malicious javascripts. This paper proposes automatic attack signature generation technology for malicious javascripts. And it shows test result that proposed technology is suitable for detecting malicious javascripts.
  • Keywords
    Internet; Java; authoring languages; digital signatures; invasive software; HashDoS; Web attack; attack user device; automatic attack signature generation technology; drive-by-download; malicious JavaScript detection; malware; Grippers; JavaScript; Signature; Signature Generation; Web; Web attack;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Modelling, Identification & Control (ICMIC), 2014 Proceedings of the 6th International Conference on
  • Conference_Location
    Melbourne, VIC
  • Type

    conf

  • DOI
    10.1109/ICMIC.2014.7020779
  • Filename
    7020779
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=240729