The prevailing of mobile network provides increasing web applications and services available on mobile devices. However, most of the websites are developed with limited security consideration, let alone web services for mobile users. Hackers take advantage of the web-based vulnerabilities to inject malicious JavaScript into compromised web pages, and a mobile victim visits the site will be compromised. Current anti-virus software for mobile devices is not adequate to protect mobile users from malicious web pages. Based on our observation, mobile malicious web pages have unusual behaviors for evading detection which makes them different form normal ones. Therefore, we propose a client-side malicious web page detection method based on anomaly behaviors observed from web page analysis. Based on the experimental results, our method can identify malicious web page efficiently and warn the website visitors before browsing.
展开▼