Cross-domain vulnerabilities over social networks - Archive ouverte HAL Accéder directement au contenu
Communication Dans Un Congrès CASoN '12 : 4th International Conference on Computational Aspects of Social Networks Année : 2012

Cross-domain vulnerabilities over social networks

Résumé

Recent years have seen a tremendous growth of social networks such as Facebook and Twitter. At the same time, the share of video traffic in the Internet has also significantly increased, and the two functions are getting closer to one another. YouTube, the most famous video sharing site, allows people to comment on videos with other people while Facebook and Twitter are important vectors into sharing videos. Both video channels and social networks are increasingly vulnerable attack targets. For example, social networks are also considerable spam and phishing vectors, and Adobe Flash as the premier video streaming application is associated with numerous software vulnerabilities. This is a good way for attackers to compromise sites with embedded Flash objects. In this paper, we present the technical background of the cross-domain mechanisms and the security implications. Several recent studies have demonstrated the weakness of the cross-domain policy, leading to session hijacking or the leakage of sensitive information. Current solutions to detect these vulnerabilities use a client-side approach. The purpose of our work is to present a new approach based on network flows analysis to detect malicious behavior.
Fichier non déposé

Dates et versions

hal-00813344 , version 1 (15-04-2013)

Identifiants

Citer

Catherine Bernard, Hervé Debar, Salim Benayoune. Cross-domain vulnerabilities over social networks. CASoN '12 : 4th International Conference on Computational Aspects of Social Networks, Nov 2012, Sao Carlos, Brazil. pp.8-13, ⟨10.1109/CASoN.2012.6412370⟩. ⟨hal-00813344⟩
84 Consultations
0 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More