請用此 Handle URI 來引用此文件:
http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/71030
標題: | 利用網站特徵偵測基於JavaScript之網路攻擊 Detecting JavaScript-based Cyber Attack Using Website Fingerprint |
作者: | Chih-Chun Liu 劉祉君 |
指導教授: | 蕭旭君(Hsu-Chun Hsiao) |
關鍵字: | 基於瀏覽器分散式阻斷服務攻擊,分散式阻斷服務攻擊,廣告植入,網站特徵,布隆過濾器, browser-based DDoS,DDoS,ad-injection,website fingerprint,Bloom filter, |
出版年 : | 2018 |
學位: | 碩士 |
摘要: | 本論文針對基於JavaScript的網路攻擊型態,提出利用網頁特徵之偵測系統。此類攻擊型態利用中間人竄改JavaScript程式碼,透過該程式碼攻擊者可以利用無辜使用者的瀏覽器發起分散式阻斷服務攻擊。除了利用瀏覽器的分散式阻斷服務攻擊外,中間人也可透過植入惡意JavaScript來插入廣告。然而針對此類攻擊之現行偵測方法仍有部分限制例如難以大規模部署或是難以有效設定阻擋規則,故本研究提出一套透過網頁特徵且不需要網頁端協同運作的偵測系統。本研究利用網頁特徵分辨正常流量與攻擊連線,我們將瀏覽器發出之連線請求視為防禦此類攻擊的特徵,並針對大量網站進行特徵擷取分析實驗,同時完成雛形系統開發。經模擬環境實驗證明透過網頁特徵系統,能成功阻擋96.98%的此種網路攻擊。 This thesis presents the design and implementation of a system that uses website fingerprint to detect JavaScript-based cyber attacks. We consider a man-in-the-middle attacker who tries to tamper with JavaScript and leverages innocent users to trigger browser-based DDoS attack by the malicious code they have injected. Additionally, attackers also can inject advertisements by tampering with JavaScript. Current research on mitigating this type of attacks suffers from practical limitations, such as lack of deployment incentives and difficulty to configure policies. In this thesis, we presents a website fingerprint system to detect JavaScript-based cyber attacks. This system can be deployed without server-side cooperation and do not need to set any policy. This fingerprint system detects abnormal traffic by distinguishing the differences between fingerprints. A fingerprint of a website is defined by its dependency on external resources, such as the set of external domains loaded by this website. Our experiments proved that the website fingerprint system can detect 96.98% JavaScript-based cyber attacks in our simulation environment. |
URI: | http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/71030 |
DOI: | 10.6342/NTU201801502 |
全文授權: | 有償授權 |
顯示於系所單位: | 資訊工程學系 |
文件中的檔案:
檔案 | 大小 | 格式 | |
---|---|---|---|
ntu-107-1.pdf 目前未授權公開取用 | 1.01 MB | Adobe PDF |
系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。