WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages

Jung Min Kang; Ki Wook Sohn; Soon Young Jung

doi:10.1109/NCM.2009.82

WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages

Jung Min Kang, Ki Wook Sohn, Soon Young Jung

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.

Original language	English
Title of host publication	NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC
Pages	635-637
Number of pages	3
DOIs	https://doi.org/10.1109/NCM.2009.82
Publication status	Published - 2009
Event	NCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications - Seoul, Korea, Republic of Duration: 2009 Aug 25 → 2009 Aug 27

Publication series

Name	NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC

Other

Other	NCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications
Country/Territory	Korea, Republic of
City	Seoul
Period	09/8/25 → 09/8/27

ASJC Scopus subject areas

Computer Graphics and Computer-Aided Design
Computer Science Applications
Software

Access to Document

10.1109/NCM.2009.82

Cite this

WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages. / Kang, Jung Min; Sohn, Ki Wook; Jung, Soon Young.
NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC. 2009. p. 635-637 5331798 (NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Kang, JM, Sohn, KW & Jung, SY 2009, WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages. in NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC., 5331798, NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC, pp. 635-637, NCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications, Seoul, Korea, Republic of, 09/8/25. https://doi.org/10.1109/NCM.2009.82

@inproceedings{3108c47cdff540198d7e538254c0bd56,

title = "WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages",

abstract = "As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.",

author = "Kang, {Jung Min} and Sohn, {Ki Wook} and Jung, {Soon Young}",

year = "2009",

doi = "10.1109/NCM.2009.82",

language = "English",

isbn = "9780769537696",

series = "NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC",

pages = "635--637",

booktitle = "NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC",

note = "NCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications ; Conference date: 25-08-2009 Through 27-08-2009",

}

TY - GEN

T1 - WebVaccine

T2 - NCM 2009 - 5th International Joint Conference on Int. Conf. on Networked Computing, Int. Conf. on Advanced Information Management and Service, and Int. Conf. on Digital Content, Multimedia Technology and its Applications

AU - Kang, Jung Min

AU - Sohn, Ki Wook

AU - Jung, Soon Young

PY - 2009

Y1 - 2009

N2 - As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.

AB - As a solution for malicicous web page attacks, we need a client-side prevention system with deobfuscation mechanism. In this paper we introduce WebVaccine, that is a client-side realtime prevention system against obfuscated malicious web pages. For secure web surfing, before the navigation to be completed, WebVaccine inserts a deobfuscation function call routine prior to the vulnerable script functions in malicious web pages, and makes the inserted function to extract the deobfuscated script string so that the string can be analyzed by a signature based detection subsystem or third party detection tools. We rest assured that the WebVaccine framework does not affect the execution of dynamic script interpretation while running web browsers and is likely to be of success.

UR - http://www.scopus.com/inward/record.url?scp=73549092504&partnerID=8YFLogxK

U2 - 10.1109/NCM.2009.82

DO - 10.1109/NCM.2009.82

M3 - Conference contribution

AN - SCOPUS:73549092504

SN - 9780769537696

T3 - NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC

SP - 635

EP - 637

BT - NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC

Y2 - 25 August 2009 through 27 August 2009

ER -

WebVaccine: A client-side realtime prevention system against obfuscated malicious web pages

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this