306 search results - page 53 / 62 » Securing Web Servers against Insider Attack |
ACSAC
2004
IEEE
13 years 11 months ago
2004
IEEE
Combining an "anomaly" and a "misuse" IDSes offers the advantage of separating the monitored events between normal, intrusive or unqualified classes (ie not kn...
CCS
2008
ACM
13 years 9 months ago
2008
ACM
Cross-Site Request Forgery (CSRF) is a widely exploited web site vulnerability. In this paper, we present a new variation on CSRF attacks, login CSRF, in which the attacker forges...
OOPSLA
2001
Springer
13 years 11 months ago
2001
Springer
Preventing abusive resource consumption is indispensable for all kinds of systems that execute untrusted mobile code, such as mobile object systems, extensible web servers, and we...
ACSAC
2006
IEEE
14 years 1 months ago
2006
IEEE
Address-space randomization (ASR) is a promising solution to defend against memory corruption attacks that have contributed to about three-quarters of USCERT advisories in the pas...
AIMS
2009
Springer
14 years 2 months ago
2009
Springer
Abstract. This paper presents a proposal for scalable detection and isolation of phishing. The main ideas are to move the protection from end users towards the network provider and...