Paper Info
Title
OSNGuard: Detecting Worms with User Interaction Traces in Online Social Networks
Abstract
In the last few years we have witnessed an incredible development of online social networks (OSNs), which unfortunately causes new security threats, e.g., OSN worms. Different from traditional worms relying on software vulnerabilities, these new worms are able to exploit trust between friends in OSNs. In this paper, a new worm propagation model was proposed, named EP-Model, to find out the common characteristics of OSN worms including XSS-based JavaScript worms and Social-Engineering-based Executable worms. And then we designed OSNGuard, a client-side defense mechanism which could prevent the propagation of OSN worms conforming to the EP-Model. Particularly, starting from tracing relevant user interactions with client processes visiting OSNs, our system could identify and block malicious payload-submissions from worms by analyzing these traced user activities. To prove the effectiveness of OSNGuard, we presented a prototype implementation for Microsoft Windows platform and evaluated it on a small-scale OSN website. The system evaluations showed that OSNGuard could sufficiently protect users against OSN worms in a real-time manner and the performance tests also revealed that our system introduced less than 2.5% memory overhead when simultaneously monitoring up to 10 processes.
Year
DOI
Venue
2013
10.1007/978-3-319-02726-5_5
ICICS
Keywords
Field
DocType
online social networks,user interaction trace,worm detection
World Wide Web,Microsoft Windows,Social network,Computer security,Computer science,Exploit,Software,Cross-site scripting,Tracing,JavaScript,Executable
Conference
Volume
Issue
ISSN
8233 LNCS
null
16113349
Citations 
PageRank 
References 
0
0.34
15
Authors
7
Name
Order
Citations
PageRank
Liang He150.78
Deng-Guo Feng21991190.95
Purui Su39413.71
Lingyun Ying4243.41
Yi Yang500.34
Huafeng Huang600.34
Huipeng Fang700.34