Abstract
Recently, major portal sites are suffering from a number of attacks and it is growing exponentially. July 2009, there has been system failure on government sites and some of the major portal sites due to the DDoS (Distributed Denial of Service) attack. Moreover, portal sites are exploited by a cross-site scripting vulnerability in 2010. To solve these problems, each portal site made an effort to eliminate the security vulnerability of the website and to protect personal information such as ID and password. However, portal sites still have the security vulnerabilities against ARP (Address Resolution Protocol) poisoning attack and the certificate spoofing attack. In this paper, we show the results of our penetration test and present the countermeasures on the ARP (Address Resolution Protocol) poisoning attack and the certificate spoofing attack.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 5th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2011 |
| Publisher | Association for Computing Machinery |
| ISBN (Electronic) | 9781450305716 |
| DOIs | |
| Publication status | Published - 2011 Feb 21 |
| Externally published | Yes |
| Event | 5th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2011 - Seoul, Korea, Republic of Duration: 2011 Feb 21 → 2011 Feb 23 |
Publication series
| Name | ACM International Conference Proceeding Series |
|---|
Other
| Other | 5th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2011 |
|---|---|
| Country/Territory | Korea, Republic of |
| City | Seoul |
| Period | 11/2/21 → 11/2/23 |
Bibliographical note
Publisher Copyright:© 2011 Association for Computing Machinery. All rights reserved.
Keywords
- ARP poisoning attack
- Certificate spoofing
- Portal site
ASJC Scopus subject areas
- Human-Computer Interaction
- Computer Networks and Communications
- Computer Vision and Pattern Recognition
- Software