Countermeasures against Web-based Malware
- Technological fields
- Information Sharing Platform Technologies
- Keyword
- Security
- Web
- Malware
- Laboratory organization
- NTT Information Sharing Laboratories
Overview
Malware in the form of computer viruses, worms and bots has become a cause of concern and mistrust in the Internet. In fact, there is urgent need for countermeasures against malware because of the recent sharp increase in malicious websites that can cause a user's computer to become infected simply by visiting them. We have been developing technology to detect malicious sites, collect information about attacks, and to make countermeasures based on the collected information.
Features
- Detection Technology
- Accurate detection based on known vulnerabilities of a web browser
- Suspicious behavior detection for dealing with unknown vulnerabilities
- Information collection technology
- Collect information on malicious websites and malware-executables
- Determine malicious website structure composed of redirect chains
- Aggregate information and provide it to countermeasures
Application scenarios
- ISPs*1 and SOCs*2 provide security services for end users
- Higher quality security services (e.g., URL filtering)
- Notify owners of websites with malware on them
- Provide web reputation database composed of aggregated information
- Security services that refer to a web reputation database
- *1 ISP: Internet Service Provider
- *2 SOC: Security Operation Center
