WebVaccine

A client-side realtime prevention system against obfuscated malicious web pages

JungMin Kang, KiWook Sohn, Soon Young Jung

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.

Original languageEnglish
Title of host publicationNCM 2009 - 5th International Joint Conference on INC, IMS, and IDC
Pages635-637
Number of pages3
DOIs
Publication statusPublished - 2009 Dec 1
EventNCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications - Seoul, Korea, Republic of
Duration: 2009 Aug 252009 Aug 27

Other

OtherNCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications
CountryKorea, Republic of
CitySeoul
Period09/8/2509/8/27

Fingerprint

Websites
Web browsers
World Wide Web
Navigation

ASJC Scopus subject areas

  • Computer Graphics and Computer-Aided Design
  • Computer Science Applications
  • Software

Cite this

Kang, J., Sohn, K., & Jung, S. Y. (2009). WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages. In NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC (pp. 635-637). [5331798] https://doi.org/10.1109/NCM.2009.82

WebVaccine : A client-side realtime prevention system against obfuscated malicious web pages. / Kang, JungMin; Sohn, KiWook; Jung, Soon Young.

NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC. 2009. p. 635-637 5331798.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Kang, J, Sohn, K & Jung, SY 2009, WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages. in NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC., 5331798, pp. 635-637, NCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications, Seoul, Korea, Republic of, 09/8/25. https://doi.org/10.1109/NCM.2009.82
Kang J, Sohn K, Jung SY. WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages. In NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC. 2009. p. 635-637. 5331798 https://doi.org/10.1109/NCM.2009.82
Kang, JungMin ; Sohn, KiWook ; Jung, Soon Young. / WebVaccine : A client-side realtime prevention system against obfuscated malicious web pages. NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC. 2009. pp. 635-637
@inproceedings{3108c47cdff540198d7e538254c0bd56,
title = "WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages",
abstract = "As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.",
author = "JungMin Kang and KiWook Sohn and Jung, {Soon Young}",
year = "2009",
month = "12",
day = "1",
doi = "10.1109/NCM.2009.82",
language = "English",
isbn = "9780769537696",
pages = "635--637",
booktitle = "NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC",

}

TY - GEN

T1 - WebVaccine

T2 - A client-side realtime prevention system against obfuscated malicious web pages

AU - Kang, JungMin

AU - Sohn, KiWook

AU - Jung, Soon Young

PY - 2009/12/1

Y1 - 2009/12/1

N2 - As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.

AB - As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.

UR - http://www.scopus.com/inward/record.url?scp=73549092504&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=73549092504&partnerID=8YFLogxK

U2 - 10.1109/NCM.2009.82

DO - 10.1109/NCM.2009.82

M3 - Conference contribution

SN - 9780769537696

SP - 635

EP - 637

BT - NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC

ER -