Collaborative Research: SaTC: CORE: Medium: Defending Against Social Engineering Attacks with In-Browser AI

协作研究：SaTC：核心：中：利用浏览器内人工智能防御社会工程攻击

基本信息

批准号：
2126655
负责人：
Krishna Phani Vadrevu
金额：
$ 40万
依托单位：
University of New Orleans
依托单位国家：
美国
项目类别：
Standard Grant
财政年份：
2021
资助国家：
美国
起止时间：
2021-10-01 至 2024-03-31
项目状态：
已结题

来源：
https://www.nsf.gov/awardsearch/showAward?AWD_ID=2126655&HistoricalAwards=false
关键词：
Collaborative Research SaTC CORE Medium

项目摘要

Web-based social engineering attacks represent a growing class of cyber-attacks that exploit weaknesses in humans' decision-making processes via pretexts, baiting, and phishing. These attacks aim at deceiving users into performing online actions that may have critical cyber security and privacy implications. For instance, users may be deceived by malicious websites into revealing sensitive personal information or installing malicious software in their devices because they believe they would get something for free (e.g., a gift card). This project makes the Internet safer by building novel and robust real-time in-browser defenses that use artificial intelligence methods to dynamically detect and block such kinds of web-based social engineering attacks before users are affected. The project artifacts have immense potential to transition to practical use via collaboration with Google and AARP. Furthermore, the project involves activities across three institutions to broaden the participation of underrepresented groups in computing.Existing web defenses often rely on reactive approaches (e.g., blocklists) that do not address social engineering attacks. Unlike previous approaches, this research introduces a novel framework for discovering, modeling, and defending against web-based social engineering attacks on both desktop and mobile environments. On the discovery front, this project introduces a web-crawler to automatically harvest, analyze, and categorize instances of social-engineering attacks, considering different browsing devices. Given the discoveries of the crawler, this project uses machine-learning approaches to model the in-browser behavior of the attacks. Finally, to defend users, the project introduces real-time in-browser defense systems that track how web pages and web push notifications are delivered to users, monitor how they are executed within the browser, and extract visual features as well as network and web-content metadata. Overall, this project's outcomes improve the research community's understanding of web-based social-engineering attacks and exerts practical impact in protecting users against these attacks.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

基于网络的社会工程攻击代表了越来越多的网络攻击，这些攻击通过借口、诱饵和网络钓鱼来利用人类决策过程中的弱点。这些攻击旨在欺骗用户执行可能对网络安全和隐私产生重大影响的在线操作。例如，用户可能会被恶意网站欺骗，泄露敏感的个人信息或在其设备中安装恶意软件，因为他们相信自己会免费获得某些东西（例如礼品卡）。该项目通过构建新颖且强大的实时浏览器内防御措施，使用人工智能方法在用户受到影响之前动态检测和阻止此类基于网络的社会工程攻击，从而使互联网变得更安全。通过与 Google 和 AARP 的合作，该项目工件具有转化为实际用途的巨大潜力。此外，该项目还涉及三个机构的活动，以扩大代表性不足的群体在计算领域的参与。现有的网络防御通常依赖于反应性方法（例如，阻止列表），而这些方法无法解决社会工程攻击。与以前的方法不同，这项研究引入了一种新颖的框架，用于在桌面和移动环境上发现、建模和防御基于网络的社会工程攻击。在发现方面，该项目引入了一个网络爬虫，可以考虑不同的浏览设备，自动收集、分析和分类社交工程攻击的实例。鉴于爬虫的发现，该项目使用机器学习方法来模拟浏览器内的攻击行为。最后，为了保护用户，该项目引入了实时浏览器内防御系统，该系统可以跟踪网页和网络推送通知如何传递给用户，监控它们在浏览器中的执行方式，并提取视觉特征以及网络和网络信息。 -内容元数据。总体而言，该项目的成果提高了研究界对基于网络的社会工程攻击的理解，并在保护用户免受这些攻击方面发挥了实际影响。该奖项反映了 NSF 的法定使命，并通过使用基金会的智力价值和技术进行评估，被认为值得支持。更广泛的影响审查标准。

项目成果

期刊论文数量（4）

专著数量（0）

科研奖励数量（0）

会议论文数量（0）

专利数量（0）

PhishInPatterns: measuring elicited user interactions at scale on phishing websites

DOI：
10.1145/3517745.3561467
发表时间：
2022-10
期刊：
Proceedings of the 22nd ACM Internet Measurement Conference
影响因子：
0
作者：
Karthika Subramani;William Melicher;Oleksii Starov;Phani Vadrevu;R. Perdisci
通讯作者：
Karthika Subramani;William Melicher;Oleksii Starov;Phani Vadrevu;R. Perdisci

Your speaker or my snooper?: measuring the effectiveness of web audio browser fingerprints

你的扬声器还是我的窥探者？：测量网络音频浏览器指纹的有效性