| Presentation | 2011-01-21 A detection method using WAF to identify obfuscated malicious JavaScript Yoshinori MATSUMOTO, Takuho MITSUNAGA, Nobuaki KONDO, Yukio RIKISO, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | This paper presents a detection method to identify obfuscated malicious JavaScript codes. Recently, there has been an increase in number of Cross Site Scripting (XSS) attaccks with JavaScript. There are also attaccks with obfuscated malicious JavaScript. As these attacks are executed on the browsers of many compromised users, they can make victims download malware. We present Web Application Firewall (WAF) to protect Web servers from these attacks. It audits requests, and identifies obfuscated malicious JavaScript codes. If detected, WAF prevents the forwarding of the malicious JavaScript codes to Web servers. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Security / Web Application / Cross Site Scripting / Obfuscating / WAF / JavaScript |
| Paper # | ICM2010-50,LOIS2010-61 |
| Date of Issue |
| Conference Information | |
| Committee | LOIS |
|---|---|
| Conference Date | 2011/1/13(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Life Intelligence and Office Information Systems (LOIS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | A detection method using WAF to identify obfuscated malicious JavaScript |
| Sub Title (in English) | |
| Keyword(1) | Security |
| Keyword(2) | Web Application |
| Keyword(3) | Cross Site Scripting |
| Keyword(4) | Obfuscating |
| Keyword(5) | WAF |
| Keyword(6) | JavaScript |
| 1st Author's Name | Yoshinori MATSUMOTO |
| 1st Author's Affiliation | Graduate School of Applied Informatics, University of Hyogo() |
| 2nd Author's Name | Takuho MITSUNAGA |
| 2nd Author's Affiliation | Kobe Digital Lab.inc |
| 3rd Author's Name | Nobuaki KONDO |
| 3rd Author's Affiliation | Kobe Digital Lab.inc |
| 4th Author's Name | Yukio RIKISO |
| 4th Author's Affiliation | Graduate School of Applied Informatics, University of Hyogo |
| Date | 2011-01-21 |
| Paper # | ICM2010-50,LOIS2010-61 |
| Volume (vol) | vol.110 |
| Number (no) | 375 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |