A Proposed Web Access Control System Request Policy Framework for Cooperation of DNS and a Web Browser

2011 Sixth International Conference on Availability, Reliability and Security Pub Date : 2011-08-22 DOI:10.1109/ARES.2011.84

Takashi Uemura, S. Takagi, Yusuke Kosuda, R. Sasaki

引用次数: 2

Abstract

The incidence of Gumblar attacks, which compromise websites by infecting them with a virus and direct operations, has been increasing rapidly in recent years. Existing measures to detect dangerous scripts using a Web browser cannot protect against all of the attacks, because it is difficult for everyone to find dangerous scripts. Therefore, the authors devised a mechanism named RPF (Request Policy Framework) that uses a highly accuracy white list obtained by using a Web browser cooperating with the DNS server. This paper reports the detailed mechanism of RPF, the prototype program, evaluation results of its function and performance, and the consideration of coverage by RPF.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

一种基于DNS和Web浏览器合作的Web访问控制系统请求策略框架

近年来，通过感染病毒和直接操作来破坏网站的黑客攻击事件一直在迅速增加。使用Web浏览器检测危险脚本的现有措施不能防止所有攻击，因为很难让每个人都找到危险脚本。因此，作者设计了一种名为RPF (Request Policy Framework)的机制，该机制使用Web浏览器与DNS服务器合作获得的高精度白名单。本文详细介绍了RPF的原理、原型程序、功能和性能的评价结果，以及RPF对覆盖的考虑。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2011 Sixth International Conference on Availability, Reliability and Security

自引率

0.00%

发文量

期刊最新文献

Security Issues in a Synchronous e-Training Platform Deriving Current State RBAC Models from Event Logs Hidden Price of User Authentication: Cost Analysis and Stakeholder Motivation A Proposed Web Access Control System Request Policy Framework for Cooperation of DNS and a Web Browser Non-Parallelizable and Non-Interactive Client Puzzles from Modular Square Roots