Botnet in the Browser: Understanding Threats Caused by Malicious Browser Extensions

Raffaello Perrotta; Feng Hao

首页> 外文期刊>IEEE security & privacy >Botnet in the Browser: Understanding Threats Caused by Malicious Browser Extensions

【24h】

Botnet in the Browser: Understanding Threats Caused by Malicious Browser Extensions

机译：浏览器中的僵尸网络：了解恶意浏览器扩展引起的威胁

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Browser extension systems risk exposing APIs, which are too permissive and cohesive with the browser’s internal structure, leaving a hole for malicious developers to exploit security critical functionality. We present a botnet framework based on malicious browser extensions and provide an exhaustive range of attacks that can be launched in this framework.

机译：浏览器扩展系统存在暴露API的风险，这些API过于宽松且与浏览器的内部结构紧密结合，给恶意开发人员利用安全关键功能留下了漏洞。我们提出了一个基于恶意浏览器扩展的僵尸网络框架，并提供了可以在此框架中发起的详尽的攻击范围。

著录项

来源
《IEEE security & privacy》 |2018年第4期|66-81|共16页
作者
Raffaello Perrotta; Feng Hao;
展开▼
作者单位

Newcastle University;

Newcastle University;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Browsers; Botnet; Computer security; Computer architecture; Androids; Humanoid robots; Application programming interfaces;

机译：浏览器;僵尸网络;计算机安全;计算机体系结构;安卓;人形机器人;应用编程接口;

相似文献

外文文献
中文文献
专利

1. DOMtegrity: ensuring web page integrity against malicious browser extensions [J] . Ehsan Toreini, Siamak F. Shahandashti, Maryam Mehrnezhad, International Journal of Information Security . 2019,第6期

机译：domptegrity：确保对恶意浏览器扩展的网页完整性
2. Secure authentication scheme to thwart RT MITM, CR MITM and malicious browser extension based phishing attacks [J] . Gaurav Varshney, Manoj Misra, Pradeep Atrey Information Security Technical Report . 2018,第OCTa期

机译：安全身份验证方案可阻止RT MITM，CR MITM和基于恶意浏览器扩展的网络钓鱼攻击
3. Isolating malicious content scripts of browser extensions [J] . Kailas Patil International journal of information privacy, security and integrity . 2017,第1期

机译：隔离浏览器扩展的恶意内容脚本
4. Malicious browser extensions: A growing threat: A case study on Google Chrome: Ongoing work in progress [C] . Gaurav Varshney, Sumant Bagade, Shreya Sinha International Conference on Information Networking . 2018

机译：恶意浏览器扩展：日益严重的威胁：关于Google Chrome的案例研究：正在进行的工作
5. Analysis of Security Policies in Major Web Browsers and Development of a Multibrowser and Multiplatform Browser Configuration Tool: Open Browser GP. [D] . Bhandari, Venkata Anirudh. 2015

机译：分析主要Web浏览器中的安全策略以及开发多浏览器和多平台浏览器配置工具：打开浏览器GP。
6. DOMtegrity: ensuring web page integrity against malicious browser extensions [O] . Ehsan Toreini, Siamak F. Shahandashti, Maryam Mehrnezhad, -1

机译：DOMtegrity：针对恶意浏览器扩展确保网页完整性
7. Botnet in the Browser: Understanding Threats Caused by Malicious Browser Extensions [O] . Perrotta, Raffaello, Hao, Feng 2017

机译：浏览器中的僵尸网络：了解恶意浏览器引起的威胁扩展

Botnet in the Browser: Understanding Threats Caused by Malicious Browser Extensions

摘要

著录项

相似文献

相关主题

期刊订阅