Abstract
Drive-by downloads, which result in the unauthorized installation of code through the browser and into the victim host, have become one of the dominant means through which mass infections now occur. We present BLADE (Block All Drive-by download Exploits), a browserindependent system that seeks to eliminate the drive-by threat. BLADE prudently assumes that the legitimate download of any executable must result from explicit user consent. BLADE transparently redirects every browser download into a non-executable safe zone on disk, unless it is associated with a programmatically inferred user-consent event. BLADE thwarts the necessary underlying transaction on which all drive-by downloads rely, therefore it requires no prior knowledge of the exploit methods, and is not subject to circumvention by obfuscations or zero-day threats. © 2009 Springer Berlin Heidelberg.
Cite
CITATION STYLE
Lu, L., Yegneswaran, V., Porras, P., & Lee, W. (2009). BLADE: Slashing the invisible channel of drive-by download malware. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5758 LNCS, pp. 350–352). https://doi.org/10.1007/978-3-642-04342-0_20
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
