ALICE@home: Distributed Framework for Detecting Malicious Sites

Erete, Ikpeme; Yegneswaran, Vinod; Porras, Phillip

doi:10.1007/978-3-642-04342-0_25

Ikpeme Erete¹⁸,
Vinod Yegneswaran¹⁹ &
Phillip Porras¹⁹

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 5758))

Included in the following conference series:

International Workshop on Recent Advances in Intrusion Detection

1649 Accesses
2 Citations

Abstract

Malware silently infects millions of systems every year through drive-by downloads, i.e., client-side exploits against web browsers or browser helper objects that are triggered when unsuspecting users visit a page containing malicious content. Identifying and blacklisting websites that distribute malicious content or redirect to a distributing page is an important part of our defense strategy against such attacks. However, building such lists is fraught with challenges of scale, timeliness and deception due to evasive strategies employed by adversaries. In this work, we describe alice@home, a distributed approach to overcoming these challenges and actively identifying malware distribution sites.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Moshchuk, A., Bragin, T., Deville, D., Gribble, S.D., Levy, H.M.: Spyproxy: Execution-based detection of malicious web content. In: 16th USENIX Security Symposium (August 2007)
Google Scholar
Moshchuk, A., Bragin, T., Gribble, S.D., Levy, H.M.: A crawler-based study of spyware on the web. In: Network and Distributed System Security Symposium (February 2006)
Google Scholar
Nazario, J.: Phoneyc: A virtual client honeypot. In: 2nd USENIX Workshop on Large-Scale and Emergent Threats, Boston, MA (April 2009)
Google Scholar
Provos, N., Mavrommatis, P., Rajab, M.A., Monrose, F.: All your iframes point to us. In: 17th USENIX Security Symposium (2008)
Google Scholar
Anagnostakis, K.G., Antonatos, S., Markatos, E.P.: Honey@home: A new approach to large-scale threat monitor. In: 5th ACM Workshop on Recurring Malcode (2007)
Google Scholar
Wang, Y.-M., Beck, D., Jiang, X., Roussev, R., Verbowski, C., Chen, S., King, S.: Automated web patrol with strider honeymonkeys: Finding web sites that exploit browser vulnerabilities. In: Network and Distributed System Security Symposium (NDSS), San Diego, CA (2006)
Google Scholar

Download references

Author information

Authors and Affiliations

Georgia Institute of Technology, USA
Ikpeme Erete
SRI International, USA
Vinod Yegneswaran & Phillip Porras

Authors

Ikpeme Erete
View author publications
You can also search for this author in PubMed Google Scholar
Vinod Yegneswaran
View author publications
You can also search for this author in PubMed Google Scholar
Phillip Porras
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Institute Eurecom, 2229 Route des Cretes, 06560, Sophia-Antipolis Cedex, France
Engin Kirda & Davide Balzarotti &
Computer Sciences Department, University of Wisconsin, 53706, Madison, WI, USA
Somesh Jha

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Erete, I., Yegneswaran, V., Porras, P. (2009). ALICE@home: Distributed Framework for Detecting Malicious Sites. In: Kirda, E., Jha, S., Balzarotti, D. (eds) Recent Advances in Intrusion Detection. RAID 2009. Lecture Notes in Computer Science, vol 5758. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-04342-0_25

Download citation

DOI: https://doi.org/10.1007/978-3-642-04342-0_25
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-04341-3
Online ISBN: 978-3-642-04342-0
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics