Advanced Search

Browse by Discipline

Scientific Societies

E-print Alerts

Add E-prints

E-print Network

  Advanced Search  

A Dynamic Browser Containment Environment for Countering Web-based Malware

Summary: A Dynamic Browser Containment Environment for Countering
Web-based Malware
Octavian Purdila
Andreas Terzis
During the last few years we have experienced a rise in
malware that use so called drive-by web downloads to in-
fect end-hosts. In response, several research efforts have
proposed host-based mechanisms to prevent such attacks
or to minimize their impact. These mechanisms sandbox
the browser either through virtual machines (VMs) or via
system call interposition. However, the effectiveness and
usability of these techniques depend on the policies set
to control either the browser's system calls or the VM's
access to the host environment and the network. In this
paper we present the first, as far as we know, interposition
technique that dynamically modifies the policy ruleset to
allow only system calls that originate from user requests
while denying all other system calls. We do so by in-
tercepting user GUI actions, parsing the contents of web


Source: Amir, Yair - Department of Computer Science, Johns Hopkins University


Collections: Computer Technologies and Information Sciences