1939-0122/asset/SEC_centre.gif?v=1&s=e718f583e48257922bccda341370d7a0694de8bf)
Research Article
A survey of client-side Web threats and counter-threat measures
Article first published online: 13 JUL 2011
DOI: 10.1002/sec.349
Copyright © 2011 John Wiley & Sons, Ltd.
Additional Information
How to Cite
Hein, D., Morozov, S. and Saiedian, H. (2012), A survey of client-side Web threats and counter-threat measures. Security Comm. Networks, 5: 535–544. doi: 10.1002/sec.349
Publication History
- Issue published online: 18 APR 2012
- Article first published online: 13 JUL 2011
- Manuscript Accepted: 19 APR 2011
- Manuscript Revised: 15 FEB 2011
- Manuscript Received: 21 SEP 2010
- Abstract
- Article
- References
- Cited By
Keywords:
- information security;
- Web security;
- browser attacks;
- cross-site scripting;
- client-side security;
- trust and trustworthiness;
- policy enforcement
ABSTRACT
The increasing frequency and malevolence of online security threats require that we consider new approaches to this problem. The existing literature focuses on the Web security problem from the server-side perspective. In contrast, we explore it from the client-side, considering the major types of threats. After a short threat summary, we discuss related research and existing countermeasures. We then examine intuitive human-oriented trust models and posit a flexible, multilayer framework to facilitate automated client-side decision making. The proposed suggestions are not intrusive and do not require advanced technical knowledge from end users. Copyright © 2011 John Wiley & Sons, Ltd.