Title :
Using Honeyclients to Detect Malicious Websites
Author :
Qassrawi, Mahmoud T. ; Zhang, HongLi
Author_Institution :
Sch. of Comput. Sci. & Technol., Harbin Inst. of Technol. (HIT), Harbin, China
Abstract :
Using malicious sites to launch attacks against client user applications is a growing threat in recent years. This led to emergence of new technologies to counter and detect this type of client-side attacks. One of these technologies is honeyclient. Honeyclients crawl the Internet to find and identify web servers that exploit client-side vulnerabilities. In this paper, we address honeyclients by studying and analyzing low and high interactive honeyclients. We introduce comparison attributes to evaluate honeyclients, and applying them to compare among HoneyC and Capture as examples on each type. Moreover, we present some techniques can be used by malicious websites to counter and fingerprint honeyclients, and we make recommendations to overcome these evasion techniques.
Keywords :
Internet; Web sites; security of data; Capture; HoneyC; Internet; Web servers; client-side attacks; client-side vulnerabilities; evasion techniques; interactive honeyclients; malicious Websites detection; Computer science; Counting circuits; Fingerprint recognition; Information security; Internet; Intrusion detection; Network servers; Protection; Streaming media; Web server;
Conference_Titel :
e-Business and Information System Security (EBISS), 2010 2nd International Conference on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-5893-6
Electronic_ISBN :
978-1-4244-5895-0
DOI :
10.1109/EBISS.2010.5473642
