商业系统中二维蜜罐阻止网络机器人的方法

2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN) Pub Date : 2012-11-01 DOI:10.1109/CASoN.2012.6412411

N. Nassar, G. Miller

{"title":"商业系统中二维蜜罐阻止网络机器人的方法","authors":"N. Nassar, G. Miller","doi":"10.1109/CASoN.2012.6412411","DOIUrl":null,"url":null,"abstract":"The security of web applications is an ongoing dilemma. Hackers and bots are getting more and more innovative in bypassing the various defensive tools implemented to enforce security. e-Commerce Applications, such as those used for the transaction processes, could be in a placed in a position of not providing a fair chance to all consumers because because can interact more quickly. This is especially true when a commerce site offers hot inventory items where many traders are competing to get a limited supply item. The e-Commerce site's security is compromised when some traders utilize pre-formatted scripts or spiders to place orders, thus giving them an unfair advantage The problem is: how to eliminate scripts/spiders in a given web application flow by using a solution that is difficult to crack while requiring no additional actions taken by the end user. Our paper introduces an innovative multi-layer approach to honeypots where cashing or bypassing the honeypot is technically impractical.","PeriodicalId":431370,"journal":{"name":"2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN)","volume":"111 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Method for a two dimensional honeypot to deter web bots in commerce systems\",\"authors\":\"N. Nassar, G. Miller\",\"doi\":\"10.1109/CASoN.2012.6412411\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The security of web applications is an ongoing dilemma. Hackers and bots are getting more and more innovative in bypassing the various defensive tools implemented to enforce security. e-Commerce Applications, such as those used for the transaction processes, could be in a placed in a position of not providing a fair chance to all consumers because because can interact more quickly. This is especially true when a commerce site offers hot inventory items where many traders are competing to get a limited supply item. The e-Commerce site's security is compromised when some traders utilize pre-formatted scripts or spiders to place orders, thus giving them an unfair advantage The problem is: how to eliminate scripts/spiders in a given web application flow by using a solution that is difficult to crack while requiring no additional actions taken by the end user. Our paper introduces an innovative multi-layer approach to honeypots where cashing or bypassing the honeypot is technically impractical.\",\"PeriodicalId\":431370,\"journal\":{\"name\":\"2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN)\",\"volume\":\"111 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CASoN.2012.6412411\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CASoN.2012.6412411","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

web应用程序的安全性一直是一个难题。黑客和机器人在绕过为加强安全而实施的各种防御工具方面变得越来越创新。电子商务应用程序(例如用于事务处理的应用程序)可能处于不能为所有消费者提供公平机会的位置，因为它们的交互速度更快。当一个商业站点提供热门库存商品时尤其如此，因为许多商人都在争夺有限的供应商品。当一些交易者使用预格式化的脚本或蜘蛛来下订单时，电子商务网站的安全性就会受到损害，从而给他们带来不公平的优势。问题是:如何通过使用一种难以破解的解决方案来消除给定web应用程序流中的脚本/蜘蛛，同时不需要最终用户采取额外的操作。我们的论文介绍了一种创新的多层蜜罐方法，其中兑现或绕过蜜罐在技术上是不切实际的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Method for a two dimensional honeypot to deter web bots in commerce systems

The security of web applications is an ongoing dilemma. Hackers and bots are getting more and more innovative in bypassing the various defensive tools implemented to enforce security. e-Commerce Applications, such as those used for the transaction processes, could be in a placed in a position of not providing a fair chance to all consumers because because can interact more quickly. This is especially true when a commerce site offers hot inventory items where many traders are competing to get a limited supply item. The e-Commerce site's security is compromised when some traders utilize pre-formatted scripts or spiders to place orders, thus giving them an unfair advantage The problem is: how to eliminate scripts/spiders in a given web application flow by using a solution that is difficult to crack while requiring no additional actions taken by the end user. Our paper introduces an innovative multi-layer approach to honeypots where cashing or bypassing the honeypot is technically impractical.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN)

自引率

0.00%

发文量