東華大學圖書館 |

Language: English

Help

回圖書館首頁

手機版館藏查詢

Back

Switch To: Labeled | MARC Mode | ISBD

Understanding URL Abuse for Profit.

Chachra, Neha.

Linked to FindBook

Google Book

Amazon

博客來

Understanding URL Abuse for Profit.

Record Type:	Electronic resources : Monograph/item
Title/Author:	Understanding URL Abuse for Profit./
Author:	Chachra, Neha.
Description:	114 p.
Notes:	Source: Dissertation Abstracts International, Volume: 77-06(E), Section: B.
Contained By:	Dissertation Abstracts International77-06B(E).
Subject:	Computer science. -
Online resource:	http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3745614
ISBN:	9781339386447

Understanding URL Abuse for Profit.
Chachra, Neha.

Understanding URL Abuse for Profit. - 114 p.

Source: Dissertation Abstracts International, Volume: 77-06(E), Section: B.

Thesis (Ph.D.)--University of California, San Diego, 2015.

Large-scale online scam campaigns pose a significant security threat to casual Internet users. Attackers simultaneously abuse millions of URLs to swindle visitors by selling counterfeit goods, by phishing to steal user credentials for various online services, or even by infecting user machines with malware. In this dissertation, I address the problem of studying these large-scale fraudulent ecosystems that heavily rely on URL abuse for profit. I demonstrate the feasibility of analyzing ground truth data at scale to derive valuable insights about the underlying business model, allowing me to assess the impact of different interventions on attacker revenue.

ISBN: 9781339386447Subjects--Topical Terms:

523869
Computer science.

Understanding URL Abuse for Profit.
LDR:03256nmm a2200325 4500 001 2072872
005 20160822133542.5
008 170521s2015 ||||||||||||||||| ||eng d
020 $a 9781339386447
035 $a (MiAaPQ)AAI3745614
035 $a AAI3745614
040 $a MiAaPQ $c MiAaPQ
100 1 $a Chachra, Neha. $3 3188095
245 1 0 $a Understanding URL Abuse for Profit.
300 $a 114 p.
500 $a Source: Dissertation Abstracts International, Volume: 77-06(E), Section: B.
500 $a Advisers: Stefan Savage; Geoffrey M. Voelker.
502 $a Thesis (Ph.D.)--University of California, San Diego, 2015.
520 $a Large-scale online scam campaigns pose a significant security threat to casual Internet users. Attackers simultaneously abuse millions of URLs to swindle visitors by selling counterfeit goods, by phishing to steal user credentials for various online services, or even by infecting user machines with malware. In this dissertation, I address the problem of studying these large-scale fraudulent ecosystems that heavily rely on URL abuse for profit. I demonstrate the feasibility of analyzing ground truth data at scale to derive valuable insights about the underlying business model, allowing me to assess the impact of different interventions on attacker revenue.
520 $a First, I address the challenge of collecting high-fidelity ground truth data under adversarial conditions. I describe the design of an efficient Web crawler that mimics real user activity to elicit fraudulent behavior from Web sites. I then use the crawler to detect affiliate marketing fraud on hundreds of Web sites. Fraudulent affiliates target merchants who outsource their affiliate programs to large affiliate networks to a much greater extent than merchants who run their own affiliate programs. Profit-oriented attackers seek to minimize costs to maximize profit. Therefore, the use of more sophisticated and expensive techniques against in-house affiliate programs suggests stricter policing by these programs.
520 $a Subsequently, I analyze the ground truth sales data for two major counterfeit pharmaceutical programs with total sales of $41M over three years. Attackers advertising via email spam and black-hat search-engine optimization show different patterns of domain abuse to maximize profit under differing defensive pressures. To analyze the efficacy of intervention, I use concurrent blacklisting data and study the revenue impact of blacklisting on spammer revenue. Blacklisting, which is the most popular intervention universally used against abusive URLs, is effective in limiting revenue from specific URLs that are blacklisted. However, it does not undermine overall profitability due to very low cost of replacing domains, high consumer demand for counterfeit pharmaceuticals, logistical difficulties in rapid detection and universal deployment of blacklists, and the sophistication and ingenuity of attackers in the face of takedowns.
590 $a School code: 0033.
650 4 $a Computer science. $3 523869
650 4 $a Web studies. $3 2122754
650 4 $a Criminology. $3 533274
650 4 $a Multimedia communications. $3 590562
690 $a 0984
690 $a 0646
690 $a 0627
690 $a 0558
710 2 $a University of California, San Diego. $b Computer Science. $3 3184408
773 0 $t Dissertation Abstracts International $g 77-06B(E).
790 $a 0033
791 $a Ph.D.
792 $a 2015
793 $a English
856 4 0 $u http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3745614