基于脚本的网络攻击防护技术

通讯和计算机:中英文版 Pub Date : 2015-01-01 DOI:10.17265/1548-7709/2015.02.008

Jonghun Jung, Hwankuk Kim, Hyun-lock Choo, Lim ByungUk

{"title":"基于脚本的网络攻击防护技术","authors":"Jonghun Jung, Hwankuk Kim, Hyun-lock Choo, Lim ByungUk","doi":"10.17265/1548-7709/2015.02.008","DOIUrl":null,"url":null,"abstract":"Recent web-based cyber attacks are evolving into a new form of attacks such as private information theft and DDoS attack exploiting JavaScript within a web page. These attacks can be made just by accessing a web site without distribution of malicious codes and infection. Script-based cyber attacks are hard to detect with traditional security equipments such as Firewall and IPS because they inject malicious scripts in a response message for a normal web request. Furthermore, they are hard to trace because attacks such as DDoS can be made just by visiting a web page. Due to these reasons, it is expected that they could result in direct damages and great ripple effects. To cope with these issues, in this article, a proposal is made for techniques that are used to detect malicious scripts through real-time web content analysis and to automatically generate detection signatures for malicious JavaScript.","PeriodicalId":69156,"journal":{"name":"通讯和计算机:中英文版","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2015-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"The Protection Technology of Script-Based Cyber Attack\",\"authors\":\"Jonghun Jung, Hwankuk Kim, Hyun-lock Choo, Lim ByungUk\",\"doi\":\"10.17265/1548-7709/2015.02.008\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Recent web-based cyber attacks are evolving into a new form of attacks such as private information theft and DDoS attack exploiting JavaScript within a web page. These attacks can be made just by accessing a web site without distribution of malicious codes and infection. Script-based cyber attacks are hard to detect with traditional security equipments such as Firewall and IPS because they inject malicious scripts in a response message for a normal web request. Furthermore, they are hard to trace because attacks such as DDoS can be made just by visiting a web page. Due to these reasons, it is expected that they could result in direct damages and great ripple effects. To cope with these issues, in this article, a proposal is made for techniques that are used to detect malicious scripts through real-time web content analysis and to automatically generate detection signatures for malicious JavaScript.\",\"PeriodicalId\":69156,\"journal\":{\"name\":\"通讯和计算机:中英文版\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"通讯和计算机:中英文版\",\"FirstCategoryId\":\"1093\",\"ListUrlMain\":\"https://doi.org/10.17265/1548-7709/2015.02.008\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"通讯和计算机:中英文版","FirstCategoryId":"1093","ListUrlMain":"https://doi.org/10.17265/1548-7709/2015.02.008","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

最近，基于web的网络攻击正在演变成一种新的攻击形式，例如窃取私人信息和利用网页内的JavaScript进行DDoS攻击。这些攻击可以通过访问网站进行，而不会传播恶意代码和感染。基于脚本的网络攻击很难被传统的安全设备(如防火墙和IPS)检测到，因为它们在正常的web请求的响应消息中注入恶意脚本。此外，他们很难追踪，因为DDoS等攻击可以通过访问网页进行。由于这些原因，预计会造成直接损失和巨大的连锁反应。为了解决这些问题，本文提出了一种通过实时web内容分析来检测恶意脚本并自动生成恶意JavaScript检测签名的技术。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

The Protection Technology of Script-Based Cyber Attack

Recent web-based cyber attacks are evolving into a new form of attacks such as private information theft and DDoS attack exploiting JavaScript within a web page. These attacks can be made just by accessing a web site without distribution of malicious codes and infection. Script-based cyber attacks are hard to detect with traditional security equipments such as Firewall and IPS because they inject malicious scripts in a response message for a normal web request. Furthermore, they are hard to trace because attacks such as DDoS can be made just by visiting a web page. Due to these reasons, it is expected that they could result in direct damages and great ripple effects. To cope with these issues, in this article, a proposal is made for techniques that are used to detect malicious scripts through real-time web content analysis and to automatically generate detection signatures for malicious JavaScript.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

通讯和计算机:中英文版

自引率

0.00%

发文量

843