Hybrid method on clickjacking detection and prevention in modern advertisements
In modern advertisements, clickjacking attacks can be delivered through a vulnerability in web application. To overcome this, web application security is required that will prevent malvertisement. In this study, prevention of clickjacking in the modern web advertisements are implemented. Vulnerabili...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Penerbit UTM Press
2019
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/85238/1/MaheyzahMdSiraj2019_HybridMethodonClickjackingDetection.pdf |
| _version_ | 1796864005271191552 |
|---|---|
| author | Dhurandhar, Kirit Shashank Md. Siraj, Maheyzah |
| author_facet | Dhurandhar, Kirit Shashank Md. Siraj, Maheyzah |
| author_sort | Dhurandhar, Kirit Shashank |
| collection | ePrints |
| description | In modern advertisements, clickjacking attacks can be delivered through a vulnerability in web application. To overcome this, web application security is required that will prevent malvertisement. In this study, prevention of clickjacking in the modern web advertisements are implemented. Vulnerability checks on the potentially malicious website were conducted. Implementation of hybrid prevention method of clickjacking into new developed website were carried out. Among top 500 websites, 50 websites were chosen as a dataset in this study out of which 4 case studies were selected. Website with server privileges were required to implement the hybrid prevention method, consisting opacity, Z-Index and X-Frame option policy. A new website was developed to satisfy the requirements for the method implementation. The results show, among 50 selected websites, about 19 websites were vulnerable to clickjacking. When the hybrid prevention method were implemented in the developed website, it increases the security by mitigating the vulnerability of web application to clickjacking attack. |
| first_indexed | 2024-03-05T20:35:20Z |
| format | Article |
| id | utm.eprints-85238 |
| institution | Universiti Teknologi Malaysia - ePrints |
| language | English |
| last_indexed | 2024-03-05T20:35:20Z |
| publishDate | 2019 |
| publisher | Penerbit UTM Press |
| record_format | dspace |
| spelling | utm.eprints-852382020-03-17T08:10:49Z http://eprints.utm.my/85238/ Hybrid method on clickjacking detection and prevention in modern advertisements Dhurandhar, Kirit Shashank Md. Siraj, Maheyzah QA75 Electronic computers. Computer science In modern advertisements, clickjacking attacks can be delivered through a vulnerability in web application. To overcome this, web application security is required that will prevent malvertisement. In this study, prevention of clickjacking in the modern web advertisements are implemented. Vulnerability checks on the potentially malicious website were conducted. Implementation of hybrid prevention method of clickjacking into new developed website were carried out. Among top 500 websites, 50 websites were chosen as a dataset in this study out of which 4 case studies were selected. Website with server privileges were required to implement the hybrid prevention method, consisting opacity, Z-Index and X-Frame option policy. A new website was developed to satisfy the requirements for the method implementation. The results show, among 50 selected websites, about 19 websites were vulnerable to clickjacking. When the hybrid prevention method were implemented in the developed website, it increases the security by mitigating the vulnerability of web application to clickjacking attack. Penerbit UTM Press 2019 Article PeerReviewed application/pdf en http://eprints.utm.my/85238/1/MaheyzahMdSiraj2019_HybridMethodonClickjackingDetection.pdf Dhurandhar, Kirit Shashank and Md. Siraj, Maheyzah (2019) Hybrid method on clickjacking detection and prevention in modern advertisements. International Journal of Innovative Computing, 9 (2). pp. 9-21. ISSN 2180-4370 https://dx.doi.org/10.11113/ijic.v9n2.231 DOI:10.11113/ijic.v9n2.231 |
| spellingShingle | QA75 Electronic computers. Computer science Dhurandhar, Kirit Shashank Md. Siraj, Maheyzah Hybrid method on clickjacking detection and prevention in modern advertisements |
| title | Hybrid method on clickjacking detection and prevention in modern advertisements |
| title_full | Hybrid method on clickjacking detection and prevention in modern advertisements |
| title_fullStr | Hybrid method on clickjacking detection and prevention in modern advertisements |
| title_full_unstemmed | Hybrid method on clickjacking detection and prevention in modern advertisements |
| title_short | Hybrid method on clickjacking detection and prevention in modern advertisements |
| title_sort | hybrid method on clickjacking detection and prevention in modern advertisements |
| topic | QA75 Electronic computers. Computer science |
| url | http://eprints.utm.my/85238/1/MaheyzahMdSiraj2019_HybridMethodonClickjackingDetection.pdf |
| work_keys_str_mv | AT dhurandharkiritshashank hybridmethodonclickjackingdetectionandpreventioninmodernadvertisements AT mdsirajmaheyzah hybridmethodonclickjackingdetectionandpreventioninmodernadvertisements |