POSTER: Context-aware web security threat prevention

Lung Hao Lee, Yen Cheng Juan, Kuei Ching Lee, Wei Lin Tseng, Hsin Hsi Chen, Yuen Hsien Tseng

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

This paper studies the feasibility of an early warning system that prevents users from the dangerous situations they may fall into during web surfing. Our approach adopts behavioral Hidden Markov Models to explore collective intelligence embedded in users' browsing behaviors for context-aware category prediction, and applies the results to web security threat prevention. Largescale experiments show that our proposed method performs accuracy 0.463 for predicting the fine-grained categories of users' next accesses. In real-life filtering simulations, our method can achieve macro-averaging blocking rate 0.4293 to find web security threats that cannot be detected by the existing security protection solutions at the early stage, while accomplishes a low macro-averaging over-blocking rate 0.0005 with the passage of time. In addition, behavioral HMM is able to alert users for avoiding security threats by 8.4 hours earlier than the current URL filtering engine does. Our simulations show that the shortening of this lag time is critical to avoid severe diffusions of security threats.

Original languageEnglish
Title of host publicationCCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security
Pages992-994
Number of pages3
DOIs
Publication statusPublished - 2012
Event2012 ACM Conference on Computer and Communications Security, CCS 2012 - Raleigh, NC, United States
Duration: 2012 Oct 162012 Oct 18

Other

Other2012 ACM Conference on Computer and Communications Security, CCS 2012
CountryUnited States
CityRaleigh, NC
Period12/10/1612/10/18

Fingerprint

Macros
Alarm systems
Hidden Markov models
Websites
Engines
Experiments

Keywords

  • Collaborative filtering
  • Collective intelligence
  • Security assurance

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Cite this

Lee, L. H., Juan, Y. C., Lee, K. C., Tseng, W. L., Chen, H. H., & Tseng, Y. H. (2012). POSTER: Context-aware web security threat prevention. In CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security (pp. 992-994) https://doi.org/10.1145/2382196.2382302

POSTER : Context-aware web security threat prevention. / Lee, Lung Hao; Juan, Yen Cheng; Lee, Kuei Ching; Tseng, Wei Lin; Chen, Hsin Hsi; Tseng, Yuen Hsien.

CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security. 2012. p. 992-994.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Lee, LH, Juan, YC, Lee, KC, Tseng, WL, Chen, HH & Tseng, YH 2012, POSTER: Context-aware web security threat prevention. in CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security. pp. 992-994, 2012 ACM Conference on Computer and Communications Security, CCS 2012, Raleigh, NC, United States, 12/10/16. https://doi.org/10.1145/2382196.2382302
Lee LH, Juan YC, Lee KC, Tseng WL, Chen HH, Tseng YH. POSTER: Context-aware web security threat prevention. In CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security. 2012. p. 992-994 https://doi.org/10.1145/2382196.2382302
Lee, Lung Hao ; Juan, Yen Cheng ; Lee, Kuei Ching ; Tseng, Wei Lin ; Chen, Hsin Hsi ; Tseng, Yuen Hsien. / POSTER : Context-aware web security threat prevention. CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security. 2012. pp. 992-994
@inproceedings{d31978e91e30475b8dffd138f506b009,
title = "POSTER: Context-aware web security threat prevention",
abstract = "This paper studies the feasibility of an early warning system that prevents users from the dangerous situations they may fall into during web surfing. Our approach adopts behavioral Hidden Markov Models to explore collective intelligence embedded in users' browsing behaviors for context-aware category prediction, and applies the results to web security threat prevention. Largescale experiments show that our proposed method performs accuracy 0.463 for predicting the fine-grained categories of users' next accesses. In real-life filtering simulations, our method can achieve macro-averaging blocking rate 0.4293 to find web security threats that cannot be detected by the existing security protection solutions at the early stage, while accomplishes a low macro-averaging over-blocking rate 0.0005 with the passage of time. In addition, behavioral HMM is able to alert users for avoiding security threats by 8.4 hours earlier than the current URL filtering engine does. Our simulations show that the shortening of this lag time is critical to avoid severe diffusions of security threats.",
keywords = "Collaborative filtering, Collective intelligence, Security assurance",
author = "Lee, {Lung Hao} and Juan, {Yen Cheng} and Lee, {Kuei Ching} and Tseng, {Wei Lin} and Chen, {Hsin Hsi} and Tseng, {Yuen Hsien}",
year = "2012",
doi = "10.1145/2382196.2382302",
language = "English",
isbn = "9781450316507",
pages = "992--994",
booktitle = "CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security",

}

TY - GEN

T1 - POSTER

T2 - Context-aware web security threat prevention

AU - Lee, Lung Hao

AU - Juan, Yen Cheng

AU - Lee, Kuei Ching

AU - Tseng, Wei Lin

AU - Chen, Hsin Hsi

AU - Tseng, Yuen Hsien

PY - 2012

Y1 - 2012

N2 - This paper studies the feasibility of an early warning system that prevents users from the dangerous situations they may fall into during web surfing. Our approach adopts behavioral Hidden Markov Models to explore collective intelligence embedded in users' browsing behaviors for context-aware category prediction, and applies the results to web security threat prevention. Largescale experiments show that our proposed method performs accuracy 0.463 for predicting the fine-grained categories of users' next accesses. In real-life filtering simulations, our method can achieve macro-averaging blocking rate 0.4293 to find web security threats that cannot be detected by the existing security protection solutions at the early stage, while accomplishes a low macro-averaging over-blocking rate 0.0005 with the passage of time. In addition, behavioral HMM is able to alert users for avoiding security threats by 8.4 hours earlier than the current URL filtering engine does. Our simulations show that the shortening of this lag time is critical to avoid severe diffusions of security threats.

AB - This paper studies the feasibility of an early warning system that prevents users from the dangerous situations they may fall into during web surfing. Our approach adopts behavioral Hidden Markov Models to explore collective intelligence embedded in users' browsing behaviors for context-aware category prediction, and applies the results to web security threat prevention. Largescale experiments show that our proposed method performs accuracy 0.463 for predicting the fine-grained categories of users' next accesses. In real-life filtering simulations, our method can achieve macro-averaging blocking rate 0.4293 to find web security threats that cannot be detected by the existing security protection solutions at the early stage, while accomplishes a low macro-averaging over-blocking rate 0.0005 with the passage of time. In addition, behavioral HMM is able to alert users for avoiding security threats by 8.4 hours earlier than the current URL filtering engine does. Our simulations show that the shortening of this lag time is critical to avoid severe diffusions of security threats.

KW - Collaborative filtering

KW - Collective intelligence

KW - Security assurance

UR - http://www.scopus.com/inward/record.url?scp=84869446575&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84869446575&partnerID=8YFLogxK

U2 - 10.1145/2382196.2382302

DO - 10.1145/2382196.2382302

M3 - Conference contribution

AN - SCOPUS:84869446575

SN - 9781450316507

SP - 992

EP - 994

BT - CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security

ER -