文章来源: | 发布时间:2015-11-18 | 【字号: 小 中 大 】 |
题目:Every Second Counts: Quantifying the Negative Externalities of Cybercrime via Typosquatting
报告人:Dr. Zhou Li (RSA Labs)
时间:2015年11月23日(星期一),上午10:00-11:00
地点:中国科学院信息工程研究所3号楼3224室
Abstract:
We present a strategy for quantifying the harm caused by the cybercrime of typosquatting via the novel technique of intent inference. Intent inference allows us to define a new metric for quantifying harm to users, develop a new methodology for identifying typosquatting domain names, and quantify the harm caused by various typosquatting perpetrators. We find that typosquatting costs the typical user 1.3 seconds per typosquatting event over the alternative of receiving a browser error page, and legitimate sites lose approximately 5% of their mistyped traffic over the alternative of an unregistered typo. Although on average perpetrators increase the time it takes a user to find their intended site, many typosquatters actually improve the latency between a typo and its correction, calling into question the necessity of harsh penalties or legal intervention against this flavor of cybercrime. This is a joint work with Mohammad Taha Khan, Xiang Huo and Prof. Chris Kanich University of Illinois at Chicago. This work is published by IEEE S&P 2015.
Bio:
Dr. Zhou Li is a research scientist at RSA Laboratories, The Security Division of EMC. His research areas cover web security, mobile security, and genome privacy. Before joining RSA Labs, he worked as a Research Assistant at Indiana University Bloomington from 2009 to 2013 and as a Research Intern at Microsoft Research Silicon Valley in 2011. He received B.S. degree and M.S. degree in Computer Science from Wuhan University, China, and obtained a Ph.D. degree in Computer Science from Indiana University Bloomington. He has published papers in top security conferences including CCS, IEEE S&P, Usenix Security.
附件: |
©中国科学院信息工程研究所信息安全国家重点实验室 备案序号:京ICP备12047326-1号 电话:010-82546611 传真:010-82546564 地址:北京市海淀区闵庄路甲89号 100093 |