首页    期刊浏览 2024年12月02日 星期一
登录注册

文章基本信息

  • 标题:Analysis on Infection Path of Web Exploit Kits Information Security Management: Focused on A Life Insurance Company
  • 本地全文:下载
  • 作者:JaeCheol Lee ; Hyo-Jeong Shin ; Hyong-Shik Kim
  • 期刊名称:Journal of Security Engineering
  • 印刷版ISSN:1738-7531
  • 出版年度:2016
  • 卷号:13
  • 期号:4
  • 页码:299-314
  • DOI:10.14257/jse.2016.08.04
  • 出版社:SERSC
  • 摘要:As the web browsers are used in a broad range of applications recently, the damages caused by web exploit kits also increase, however, it is known to difficult to detect them. When a user accesses a web page infected by a web exploit kit, the page would be redirected to another page without the user's intention, and the new page would begin downloading a malicious code, thus having the malicious code make an intrusion damage on the system. In this paper, we analyze the infection path of a web exploit kit using open traffic data which have been captured on a victim system as well as some intermediate systems. We trace both the redirection process from the infected web page to another web pages and the downloading process at the malware distribution site, and show the visual information on the infection path in a graphical way. The graph information on infection path could be utilized to detect and countermeasure the web exploit kits.
  • 关键词:web exploit kit; web browser; graph representation; packet traffic analysis
国家哲学社会科学文献中心版权所有