Taxonomy of Spyware and Empirical Study of Network Drive-By-Downloads

Abstract

Spyware has rapidly become a major security concern in government and corporate networks as well as for home computers. Spyware is able to circumvent common security practices, funneling information to remote parties and consuming system resources with impunity. This malicious software has infiltrated common search engines and Internet sectors generally considered safe. Making use of browser vulnerabilities, spyware infection is wide-spread. This thesis considers common infection vectors and reviews current definitions in arriving at an improved definition of spyware. It identifies four common activities present in all spyware which lead to multiple behavioral capabilities. An empirical analysis of network drive-by-downloads shows the presence of spyware in bank, online travel, and real estate-related Internet sectors. The impact of system security patch maintenance on spyware susceptibility, and browser differences in the context of drive-by-downloads is also presented.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Sep 01, 2005
Accession Number
ADA439363

Entities

People

  • Mark A. Barwinski

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Cyber
  • Engineered Resilient Systems
  • Space

DTIC Thesaurus Topics

  • Computer Communications
  • Computer Languages
  • Computer Networks
  • Computer Program Documentation
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Electronic Mail
  • Internet
  • Malware
  • Network Protocols
  • Network Science
  • Operating Systems
  • Software Development
  • Web Browsers

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Fire Suppression Systems Design.
  • Systems Analysis and Design