Name
Title | ||
|---|---|---|
Spyware Security Management via a Public Key Infrastructure for Client-Side Web Communicating Applications |
Abstract | ||
|---|---|---|
Internet technologies continue to revolutionize the legitimate collection of information from targeted host machines and its transmission to remote servers. The term ‘spyware’ refers to that subset of information collection software that operates illicitly and non-consensually. Two fundamental issues continue to complicate spyware legislation development and operational control strategies. Firstly, unlike the clearly criminal distribution of virus infections, the distribution of spyware is mainly a commercial venture. Secondly, spyware utilizes the same technologies that underpin essential, legitimate information collection applications. This paper describes a security framework to manage these two issues. The security framework, at its core, requires the authentication by the host operating system of each outgoing Web session initiated by each software application running on that host machine. This authentication requires that each software application initiating Web communications be uniquely named via a Public Key Infrastructure digital certificate – and must use this name in all initiated Web communications. This framework facilitates the user-management of all Web communication streams emanating from the host – and this in turn supports the identification of software that engages in the deceptive, misleading, and fraudulent practices already proscribed in existing technology-focused legislation. |
Year | DOI | Venue |
|---|---|---|
2010 | 10.1109/CIT.2010.161 | Computer and Information Technology |
Keywords | Field | DocType |
spyware legislation development,host operating system,spyware utilizes,software application,spyware security management,web communication,public key infrastructure,outgoing web session,information collection software,security framework,client-side web communicating applications,host machine,web communication stream,privacy,controls,public key cryptography,computer viruses,digital certificate,message authentication,authentication,web services,operating system,operating systems,security management,servers,business,internet,risk | Public key infrastructure,Client-side,World Wide Web,Authentication,Public key certificate,Computer science,Computer security,Server,Computer network,Web service,The Internet,Security management | Conference |
ISBN | Citations | PageRank |
978-1-4244-7547-6 | 0 | 0.34 |
References | Authors | |
8 | 1 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Peter Clutterbuck | 1 | 0 | 3.38 |