论文信息 - Chapter 28 – Man-in-the-Browser Attacks in Modern Web Browsers

Chapter 28 – Man-in-the-Browser Attacks in Modern Web Browsers

Man-in-the-browser is a Trojan that infects a Web browser. A Trojan has the ability to modify Web pages and online transaction content, or insert itself in a covert manner, without the user noticing anything suspicious. This chapter presents a study of several man-in-the-browser attacks that tamper with the user’s transactions and examines different attack vectors on several software layers. We conclude that there are many possible points of attack on different software layers and components of a Web browser, as the user’s transaction data flows through these layers. We also propose some countermeasures to mitigate these attacks. Our conceptual solution is based on cryptographic identification and integrity monitoring of software components.

Ville Leppänen | Sampsa Rauti | V. Leppänen | Sampsa Rauti

[1] V. N. Venkatakrishnan,et al. Enhancing web browser security against malware extensions , 2007, Journal in Computer Virology.

[2] Marianne Winslett,et al. VEX: Vetting Browser Extensions for Security Vulnerabilities , 2010, USENIX Security Symposium.

[3] Ville Leppänen,et al. Browser extension-based man-in-the-browser attacks against Ajax applications with countermeasures , 2012, CompSysTech '12.

[4] Kevin Curran,et al. Man in the Browser Attacks , 2012, Int. J. Ambient Comput. Intell..

[5] Richard J. Enbody,et al. Spying on the browser: dissecting the design of malicious extensions , 2011, Netw. Secur..

[6] Galen C. Hunt,et al. Detours: binary interception of Win32 functions , 1999 .

[7] Proteus Valre Kresten. Windows Filtering Platform , 2012 .

[8] Marianne Winslett,et al. Vetting browser extensions for security vulnerabilities with VEX , 2011, CACM.

[9] M. Ståhlberg. THE TROJAN MONEY SPINNER , 2007 .

[10] Michael W. Godfrey,et al. A reference architecture for Web browsers , 2005, 21st IEEE International Conference on Software Maintenance (ICSM'05).