Title :
Automatic attack signature generation technology for malicious javascript
Author :
Soojin Yoon ; Jonghun Jung ; MyoungSun Noh ; Kyungho Chung ; ChaeTae Im
Author_Institution :
Korea Internet & Security Agency, Seoul, South Korea
Abstract :
Most attack on web is Drive-by-Download that malware or worm is downloaded on user´s device, be activated, and attack user´s device or other server. However, new attack appear which can work without downloading. It is HashDoS. HashDoS does not need downloading, it use malicious JavaScript as attack tool. Although there is several research about malicious javascripts, to my best of knowledge, there is no research of generating attack signature for malicious javascripts. This paper proposes automatic attack signature generation technology for malicious javascripts. And it shows test result that proposed technology is suitable for detecting malicious javascripts.
Keywords :
Internet; Java; authoring languages; digital signatures; invasive software; HashDoS; Web attack; attack user device; automatic attack signature generation technology; drive-by-download; malicious JavaScript detection; malware; Grippers; JavaScript; Signature; Signature Generation; Web; Web attack;
Conference_Titel :
Modelling, Identification & Control (ICMIC), 2014 Proceedings of the 6th International Conference on
Conference_Location :
Melbourne, VIC
DOI :
10.1109/ICMIC.2014.7020779