欢迎来到天天文库
浏览记录
ID:40478479
大小:2.20 MB
页数:38页
时间:2019-08-03
《website-security-mobile_34190》由会员上传分享,免费在线阅读,更多相关内容在学术论文-天天文库。
1、Interestedinlearningmoreaboutsecurity?SANSInstituteInfoSecReadingRoomThispaperisfromtheSANSInstituteReadingRoomsite.Repostingisnotpermittedwithoutexpresswrittenpermission.WebsiteSecurityforMobileSmartphonesandTabletsareverypopularnowadays;otherthanplayingaroundtheapps,most
2、ofususethemobiledevicestobrowsewebpages.Peopleusuallylookforconvenientandquickbrowsingwithoutpayingmuchattentiontosecuritysettingslikeanti-phishingoranti-xssfiltering.Thus,specialattentionmustbepaidtotheend-user'swebsecuritywhentheyusemobiledevices(mainlyoniOSandAndro
3、idPlatforms).Forexample,howeasilyphishingcanbedoneinmobiledevices;whatistheimpactofvisiting...CopyrightSANSInstituteAuthorRetainsFullRightsADWebsiteSecurityforMobileGIAC(GWAPT)GoldCertificationAuthor:AlanHo,hopolun.sans@gmail.comAdvisor:AntoniosAtlasisAccepted:April12th,20
4、13AbstractSmartphonesandTabletsareverypopularnowadays;otherthanplayingaroundtheapps,mostofususethemobiledevicestobrowsewebpages.Peopleusuallylookforconvenientandquickbrowsingwithoutpayingmuchattentiontosecuritysettingslikeanti-phishingoranti-xssfiltering.Thus,specialattent
5、ionmustbepaidtotheend-user’swebsecuritywhentheyusemobiledevices(mainlyoniOSandAndroidPlatforms).Forexample,howeasilyphishingcanbedoneinmobiledevices;whatistheimpactofvisitingwebsiteswithXSS;whatinformationcanbestolenfromvictimsortomanipulatethesessions;howthecraftedURLscan
6、trickthemobilebrowsers;andwhatcanbedonetosecurewebbrowsinginmobiledevices.Thispaperaimsathelpingtheindustrytomakesecuredmobilebrowsingandguardingsoftwareaswellasatincreasingawarenessofthegrowingnumberofmobiledeviceusersforsafebrowsing.WebsiteSecurityForMobile21.Introductio
7、nSmartphonesandTabletsareverypopularnowadays,accordingtothestudyfromCanalys(2012)in2011Q4,whichshowsthatglobalshipmentforsmartphoneshasagrowthofmorethan62%andgrowthofaround275%forpads.ThesemobiledevicesarecommonlyusedforAppsandwebpagebrowsing.FromthestatisticsinSecurelistb
8、asedonthedatainKasperskySecurityNetwork,YuryNamestnikov(2012),maliciousURLcontributedupto
此文档下载收益归作者所有
点击更多查看相关文章~~