Protecting the Intranet Against "JavaScript Malware" and Related Attacks

 

 

The networking functionality of JavaScript is restricted by the Same Origin Policy (SOP). However, as the SOP applies on a document level, JavaScript still possesses certain functionality for cross domain communication. These capabilities can be employed by malicious JavaScript to gain access to intranet resources from the outside. In this paper we exemplify capabilities of such scripts. To protect intranet hosts against JavaScript based threats, we then propose three countermeasures: Element Level SOP, rerouting of cross-site requests, and restricting the local network. These approaches are discussed concerning their respective protection potential and disadvantages. Based on this analysis, the most promising approach, restricting the local network, is evaluated practically. [via]
http://www.informatik.uni-hamburg.de/SVS/pape...

Rating: 0/10

 

Download File

 

Tags: Tag intranet, Tag security, Tag javascript, Tag malware, Tag attack, Tag paper, Tag network, ...

 

Related Files

 

 
Sponsored Links
Free Download Kalorik Manual, Guide, Instructions, available in PDF ebooks format.

Rate this Document

Popular eBooks

ADS

 

Tag Clouds

3d  algorithm  analysis  application  architecture  design  ebook  energy  framework  guide  java  javascript  kernel  linux  manual  network  paper  programming  python  reference  security  software  system  theory  thesis  tutorial  typography  web service  white paper  xml 

 

Last Download

 

BookShelf