Anomaly Behavior Analysis for Web Page Inspection

Chia-Mei Chen; Wan-Yi Tsai; Hsiao-Chung Lin

doi:10.1109/NetCoM.2009.72

N
NETCOM
2009
2009 First International Conference on Networks & Communications
Abstract - Anomaly Behavior Analysis for Web Page Inspection

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Chia-Mei Chen Articles by Wan-Yi Tsai Articles by Hsiao-Chung Lin

2009 First International Conference on Networks & Communications

Anomaly Behavior Analysis for Web Page Inspection

Chennai, India

December 27-December 29

ISBN: 978-0-7695-3924-9

	ASCII Text	x
	Chia-Mei Chen, Wan-Yi Tsai, Hsiao-Chung Lin, "Anomaly Behavior Analysis for Web Page Inspection," Networks & Communications, International Conference on, pp. 358-363, 2009 First International Conference on Networks & Communications, 2009.

	BibTex	x
	@article{ 10.1109/NetCoM.2009.72, author = {Chia-Mei Chen and Wan-Yi Tsai and Hsiao-Chung Lin}, title = {Anomaly Behavior Analysis for Web Page Inspection}, journal ={Networks & Communications, International Conference on}, volume = {0}, year = {2009}, isbn = {978-0-7695-3924-9}, pages = {358-363}, doi = {http://doi.ieeecomputersociety.org/10.1109/NetCoM.2009.72}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Networks & Communications, International Conference on TI - Anomaly Behavior Analysis for Web Page Inspection SN - 978-0-7695-3924-9 SP358 EP363 A1 - Chia-Mei Chen, A1 - Wan-Yi Tsai, A1 - Hsiao-Chung Lin, PY - 2009 KW - Malicious webpage KW - Drive-by download KW - Anomaly behavior VL - 0 JA - Networks & Communications, International Conference on ER -

Chia-Mei Chen

Wan-Yi Tsai

Hsiao-Chung Lin

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/NetCoM.2009.72

As the Internet prevails, people access web services directly via web browsers over the network. However, most websites are not developed with sufficient security consideration. Hackers have taken the advantage of web application vulnerabilities to inject malicious codes into web pages. A victim who visits such a malicious web page will be compromised. Therefore, an efficient malicious web detection method is needed to prevent users from being compromised. Based on our observation, malicious web pages have uncommon behavior in order to evade from detection of Antivirus software. The anomaly behavior such as code encoding makes malicious web pages different from normal benign web pages. Current researches have noticed pattern-matching approach is not suitable to detect malicious web pages anymore, and then proposes a new detection method. The proposed method, a client-side malicious web page detection method, is based on anomaly behavior analysis. It focuses on distinguishing the behavior difference between malicious and benign web pages. The experimental results show that the proposed method can identify malicious web pages and alarm the website visitors efficiently.

Index Terms:

Malicious webpage, Drive-by download, Anomaly behavior

Citation:

Chia-Mei Chen, Wan-Yi Tsai, Hsiao-Chung Lin, "Anomaly Behavior Analysis for Web Page Inspection," netcom, pp.358-363, 2009 First International Conference on Networks & Communications, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.