Spyware has rapidly become a major security concern in government and corporate networks as well as for home computers. Spyware is able to circumvent common security practices, funneling information to remote parties and consuming system resources with impunity. This malicious software has infiltrated common search engines and Internet sectors generally considered "safe." Making use of browser vulnerabilities, spyware infection is wide-spread. This thesis considers common infection vectors and reviews current definitions in arriving at an improved definition of spyware. It identifies four common activities present in all spyware which lead to multiple behavioral capabilities. An empirical analysis of network drive-by-downloads shows the presence of spyware in bank, online travel, and real estate-related Internet sectors. The impact of system security patch maintenance on spyware susceptibility, and browser differences in the context of drive-by-downloads is also presented.
Identifer | oai:union.ndltd.org:nps.edu/oai:calhoun.nps.edu:10945/2013 |
Date | 09 1900 |
Creators | Barwinski, Mark Andrei |
Contributors | Irvine, Cynthia E., Levin, Tim E., Naval Postgraduate School (U.S.), Computer Science |
Publisher | Monterey, California. Naval Postgraduate School |
Source Sets | Naval Postgraduate School |
Detected Language | English |
Type | Thesis |
Format | xviii, 162 p. : col. ill. ;, application/pdf |
Rights | Approved for public release, distribution unlimited |
Page generated in 0.0019 seconds