论文信息 - Detecting Hit Shaving in Click-Through Payment Schemes

Detecting Hit Shaving in Click-Through Payment Schemes

A web user "clicks through" one web site, the referrer, to another web site, the target, if the user follows a hypertext link to the target's site contained in a web page served from the referrer's site. Numerous click-through payment programs have been established on the web, by which (the webmaster of) a target site pays a referrer site for each click through that referrer to the target. However, typically the referrer has no ability to verify that it is paid for every click-through to the target for which it is responsible. Thus, targets can undetectably omit to pay referrers for some number of click-throughs, a practice called hit shaving. In this paper, we explore simple and immediately useful approaches to enable referrers to monitor the number of click-throughs for which they should be paid.

Michael K. Reiter | Alain J. Mayer | Vinod Anupam

[1] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[2] Alain J. Mayer,et al. Security of Web Browser Scripting Languages: Vulnerabilities, Attacks, and Remedies , 1998, USENIX Security Symposium.

[3] David J. Klein. Succumbing to the dark side of the force: The Internet as seen from an adult web site , 1998 .

[4] Bill Kennedy,et al. HTML: The Definitive Guide , 1996 .

[5] Neil Haller,et al. The S/KEY One-Time Password System , 1995, RFC.

[6] Yossi Matias,et al. How to Make Personalized Web Browising Simple, Secure, and Anonymous , 1997, Financial Cryptography.

[7] Michael K. Reiter,et al. Crowds: anonymity for Web transactions , 1998, TSEC.

[8] Adi Shamir,et al. PayWord and MicroMint: Two Simple Micropayment Schemes , 1996, Security Protocols Workshop.

[9] David Flanagan,et al. JavaScript: The Definitive Guide , 1996 .