NetGator: Malware Detection Using Program Interactive Challenges

Schulte, Brian; Andrianakis, Haris; Sun, Kun; Stavrou, Angelos

doi:10.1007/978-3-642-37300-8_10

Cited by 3 publications

(3 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Assume that a client receives a mixed set of 150 features from a web server and the set consists of 29 randomly selected authentic features and 121 randomly selected bogus features. Thus, the expected number should fall into the range [25,29]. Consider a crafty clickbot who knows about our detection mechanism in advance.…”

Section: How To Perform the Functionality Testmentioning

confidence: 99%

“…The clickbot does not need to test the features, but just guesses a number from the possible range [0,150], and returns it to the server. In this case, the probability for the guessed number to successfully fall into [25,29] is only 3%. Thus, the clickbot has little chance (3%) to bypass the functionality test.…”

Section: How To Perform the Functionality Testmentioning

confidence: 99%

“…However, monitoring and reconstructing the ad delivery path is time-consuming and difficult to detect click frauds in real time. Schulte et al [25] detected client-side malware using so-called program interactive challenge (PIC) mechanism. However, an intermediate proxy has to be introduced to examine all HTTP traffic between a client and a server, which would inevitably incur significant delay.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Click Fraud Detection on the Advertiser Side

Liu

Koehl

et al. 2014

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. Click fraud-malicious clicks at the expense of pay-per-click advertisers-is posing a serious threat to the Internet economy. Although click fraud has attracted much attention from the security community, as the direct victims of click fraud, advertisers still lack effective defense to detect click fraud independently. In this paper, we propose a novel approach for advertisers to detect click frauds and evaluate the return on investment (ROI) of their ad campaigns without the helps from ad networks or publishers. Our key idea is to proactively test if visiting clients are full-fledged modern browsers and passively scrutinize user engagement. In particular, we introduce a new functionality test and develop an extensive characterization of user engagement. Our detection can significantly raise the bar for committing click fraud and is transparent to users. Moreover, our approach requires little effort to be deployed at the advertiser side. To validate the effectiveness of our approach, we implement a prototype and deploy it on a large production website; and then we run 10-day ad campaigns for the website on a major ad network. The experimental results show that our proposed defense is effective in identifying both clickbots and human clickers, while incurring negligible overhead at both the server and client sides.

show abstract

Section: How To Perform the Functionality Testmentioning

confidence: 99%

Section: How To Perform the Functionality Testmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation