{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,9]],"date-time":"2024-09-09T06:46:41Z","timestamp":1725864401928},"publisher-location":"Cham","reference-count":49,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319457185"},{"type":"electronic","value":"9783319457192"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-45719-2_19","type":"book-chapter","created":{"date-parts":[[2016,9,6]],"date-time":"2016-09-06T02:11:24Z","timestamp":1473127884000},"page":"415-436","source":"Crossref","is-referenced-by-count":13,"title":["Identifying Extension-Based Ad Injection via Fine-Grained Web Content Provenance"],"prefix":"10.1007","author":[{"given":"Sajjad","family":"Arshad","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Amin","family":"Kharraz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"William","family":"Robertson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,9,7]]},"reference":[{"key":"19_CR1","unstructured":"The ad injection economy. http:\/\/googleonlinesecurity.blogspot.com\/2015\/05\/new-research-ad-injection-economy.html"},{"key":"19_CR2","unstructured":"Adblock Plus. https:\/\/adblockplus.org\/"},{"key":"19_CR3","unstructured":"ADsafe. http:\/\/www.adsafe.org\/"},{"key":"19_CR4","unstructured":"Ghostery. https:\/\/www.ghostery.com\/en\/"},{"key":"19_CR5","unstructured":"SLOCCount. http:\/\/www.dwheeler.com\/sloccount\/"},{"key":"19_CR6","doi-asserted-by":"crossref","unstructured":"Arshad, S., Kharraz, A., Robertson, W.: Include me out: in-browser detection of malicious third-party content inclusions. In: Financial Cryptography and Data Security (FC) (2016)","DOI":"10.1007\/978-3-662-54970-4_26"},{"key":"19_CR7","unstructured":"Barth, A., Jackson, C., Reis, C.: The security architecture of the chromium browser. Technical report (2008). The Google Chrome Team"},{"key":"19_CR8","doi-asserted-by":"crossref","unstructured":"Bauer, L., Cai, S., Jia, L., Passaro, T., Stroucken, M., Tian, Y.: Run-time monitoring and formal analysis of information flows in Chromium. In: Network and Distributed System Security Symposium (NDSS) (2015)","DOI":"10.14722\/ndss.2015.23295"},{"key":"19_CR9","unstructured":"Chong, S., Vikram, K. and Myers, A.C.: SIF: enforcing confidentiality and integrity in web applications. In: USENIX Security Symposium (2007)"},{"key":"19_CR10","unstructured":"Coldewey, D.: Marriott puts an end to shady ad injection service (2012). http:\/\/techcrunch.com\/2012\/04\/09\/marriott-puts-an-end-to-shady-ad-injection-service\/"},{"key":"19_CR11","doi-asserted-by":"crossref","unstructured":"Cova, M., Kruegel, C., Vigna, G.: Detection and analysis of drive-by-download attacks and malicious JavaScript code. In: International World Wide Web Conference (WWW) (2010)","DOI":"10.1145\/1772690.1772720"},{"key":"19_CR12","doi-asserted-by":"crossref","unstructured":"Dewald, A., Holz, T., Freiling, F.C.: ADSandbox: sandboxing JavaScript to fight malicious websites. In: Symposium on Applied Computing (SAC) (2010)","DOI":"10.1145\/1774088.1774482"},{"key":"19_CR13","doi-asserted-by":"crossref","unstructured":"Rachna Dhamija, J.D., Tygar, M.H.: Why phishing works. In: Proceedings of the SIGCHI Conference on Human Factors in Computing Systems (CHI) (2006)","DOI":"10.1145\/1124772.1124861"},{"key":"19_CR14","doi-asserted-by":"crossref","unstructured":"Dhawan, M., Ganapathy, V.: Analyzing information flow in JavaScript-based browser extensions. In: Annual Computer Security Applications Conference (ACSAC) (2009)","DOI":"10.1109\/ACSAC.2009.43"},{"key":"19_CR15","doi-asserted-by":"crossref","unstructured":"Dong, X., Tran, M., Liang, Z., Jiang, X.: AdSentry: comprehensive and flexible confinement of JavaScript-based advertisements. In: Annual Computer Security Applications Conference (ACSAC) (2011)","DOI":"10.1145\/2076732.2076774"},{"key":"19_CR16","doi-asserted-by":"crossref","unstructured":"Efstathopoulos, P., Krohn, M., VanDeBogart, S., Frey, C., Ziegler, D., Kohler, E., Mazieres, D., Kaashoek, F., Morris, R.: Labels and event processes in the Asbestos operating system. In: ACM Symposium on Operating Systems Principles (SOSP) (2005)","DOI":"10.1145\/1095809.1095813"},{"key":"19_CR17","unstructured":"Egele, M., Kruegel, C., Kirda, E., Yin, H., Song, D.: Dynamic spyware analysis. In: USENIX Annual Technical Conference (ATC) (2007)"},{"key":"19_CR18","unstructured":"Felt, A.P., Greenwood, K., Wagner, D.: The effectiveness of application permissions. In: USENIX Conference on Web Application Development (WebApps) (2011)"},{"key":"19_CR19","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"101","DOI":"10.1007\/978-3-642-35170-9_6","volume-title":"Middleware 2012","author":"A Gehani","year":"2012","unstructured":"Gehani, A., Tariq, D.: SPADE: support for provenance auditing in distributed environments. In: Narasimhan, P., Triantafillou, P. (eds.) Middleware 2012. LNCS, vol. 7662, pp. 101\u2013120. Springer, Heidelberg (2012)"},{"key":"19_CR20","unstructured":"Giffin, D.B., Levy, A., Stefan, D., Terei, D., Mazieres, D., Mitchell, J.C., Russo, A.: Hails: protecting data privacy in untrusted web applications. In: USENIX Symposium on Operating Systems Design and Implementation (OSDI) (2012)"},{"key":"19_CR21","doi-asserted-by":"crossref","unstructured":"Guha, A., Fredrikson, M., Livshits, B., Swamy, N.: Verified security for browser extensions. In: IEEE Symposium on Security and Privacy (Oakland) (2011)","DOI":"10.1109\/SP.2011.36"},{"key":"19_CR22","unstructured":"Harth, A., Polleres, A., Decker, S.: Towards a social provenance model for the web. In: Workshop on Principles of Provenance (PrOPr) (2007)"},{"key":"19_CR23","doi-asserted-by":"crossref","unstructured":"Hartig, O.: Provenance information in the web of data. In: Workshop on Linked Data on the Web (LDOW) (2009)","DOI":"10.1145\/1772690.1772923"},{"key":"19_CR24","unstructured":"Hasan, R., Sion, R., Winslett, M.: SPROV 2.0: a highly configurable platform-independent library for secure provenance. In: ACM Conference on Computer and Communications Security (CCS) (2009)"},{"key":"19_CR25","doi-asserted-by":"crossref","unstructured":"Hicks, B., Rueda, S., King, D., Moyer, T., Schiffman, J., Sreenivasan, Y., McDaniel, P., Jaeger, T.: An architecture for enforcing end-to-end access control over web applications. In: ACM Symposium on Access Control Models and Technologies (SACMAT) (2010)","DOI":"10.1145\/1809842.1809870"},{"key":"19_CR26","unstructured":"Jagpal, N., Dingle, E., Gravel, J.P., Mavrommatis, P., Provos, N., Rajab, M.A., Thomas, K.: Trends and lessons from three years fighting malicious extensions. In: USENIX Security Symposium (2015)"},{"key":"19_CR27","doi-asserted-by":"crossref","unstructured":"Jayaraman, K., Du, W., Rajagopalan, B., Chapin, S.J.: ESCUDO: a fine-grained protection model for web browsers. In: 30th IEEE International Conference on Distributed Computing Systems (ICDCS) (2010)","DOI":"10.1109\/ICDCS.2010.71"},{"key":"19_CR28","unstructured":"Kapravelos, A., Grier, C., Chachra, N., Kruegel, C., Vigna, G., Paxson, V.: Hulk: eliciting malicious behavior in browser extensions. In: USENIX Security Symposium (2014)"},{"key":"19_CR29","doi-asserted-by":"crossref","unstructured":"Krohn, M., Yip, A., Brodsky, M., Natan Cliffer, M., Kaashoek, F., Kohler, E., Morris, R.: Information flow control for standard os abstractions. In: Symposium on Operating Systems Principles (SOSP) (2007)","DOI":"10.1145\/1294261.1294293"},{"key":"19_CR30","unstructured":"Kumparak, G.: Real evil: ISP inserted advertising. http:\/\/techcrunch.com\/2007\/06\/23\/real-evil-isp-inserted-advertising\/ (2007)"},{"key":"19_CR31","doi-asserted-by":"crossref","unstructured":"Li, Z., Zhang, K., Xie, Y,. Yu, F., Wang, X.: Knowing your enemy: understanding and detecting malicious web advertising. In: ACM Conference on Computer and Communications Security (CCS) (2012)","DOI":"10.1145\/2382196.2382267"},{"key":"19_CR32","series-title":"Lecture Notes in Computer Science","first-page":"296","volume-title":"Recent Advances in Intrusion Detection","author":"Z Li","year":"2007","unstructured":"Li, Z., Wang, X.-F., Choi, J.Y.: SpyShield: preserving privacy from spy add-ons. In: Kruegel, C., Lippmann, R., Clark, A. (eds.) RAID 2007. LNCS, vol. 4637, pp. 296\u2013316. Springer, Heidelberg (2007)"},{"key":"19_CR33","unstructured":"Liu, L., Zhang, X., Yan, G., Chen, S.: Chrome extensions: threat analysis and countermeasures. In: Network and Distributed System Security Symposium (NDSS) (2012)"},{"key":"19_CR34","unstructured":"Ter Louw, M., Ganesh, K.T., Venkatakrishnan, V.N.: AdJail: practical enforcement of confidentiality and integrity policies on web advertisements. In: USENIX Security Symposium (2010)"},{"issue":"3","key":"19_CR35","doi-asserted-by":"crossref","first-page":"179","DOI":"10.1007\/s11416-007-0078-5","volume":"4","author":"M Louw Ter","year":"2008","unstructured":"Ter Louw, M., Lim, J.S., Venkatakrishnan, V.N.: Enhancing web browser security against malware extensions. J. Comput. Virol. 4(3), 179\u2013195 (2008)","journal-title":"J. Comput. Virol."},{"key":"19_CR36","doi-asserted-by":"crossref","unstructured":"Lu, L., Yegneswaran, V., Porras, P., Lee, W.: BLADE: An attack-agnostic approach for preventing drive-by malware infections. In: ACM Conference on Computer and Communications Security (CCS) (2010)","DOI":"10.1145\/1866307.1866356"},{"key":"19_CR37","unstructured":"Marvin, G.: Google study exposes \u201ctangled web\u201d of companies profiting from ad injection (2015). http:\/\/marketingland.com\/ad-injector-study-google-127738"},{"key":"19_CR38","doi-asserted-by":"crossref","unstructured":"Mekky, H., Torres, R., Zhang, Z.L., Saha, S., Nucci, A.: Detecting malicious HTTP redirections using trees of user browsing activity. In: Annual IEEE International Conference on Computer Communications (INFOCOM) (2014)","DOI":"10.1109\/INFOCOM.2014.6848047"},{"issue":"2\u20133","key":"19_CR39","doi-asserted-by":"crossref","first-page":"99","DOI":"10.1561\/1800000010","volume":"2","author":"L Moreau","year":"2010","unstructured":"Moreau, L.: The foundations for provenance on the web. Found. Trends Web Sci. 2(2\u20133), 99\u2013241 (2010)","journal-title":"Found. Trends Web Sci."},{"key":"19_CR40","doi-asserted-by":"crossref","unstructured":"Myers, A.C.: JFlow: practical mostly-static information flow control. In: Symposium on Principles of Programming Languages (POPL) (1999)","DOI":"10.1145\/292540.292561"},{"key":"19_CR41","unstructured":"Nadji, Y., Saxena, P., Song, D.: Document structure integrity: a robust basis for cross-site scripting defense. In: Network and Distributed System Security Symposium (NDSS) (2009)"},{"key":"19_CR42","doi-asserted-by":"crossref","unstructured":"Pohly, D.J., McLaughlin, S., Butler, K.: Hi-Fi: collecting high-fidelity whole-system provenance. In: Annual Computer Security Applications Conference (ACSAC) (2012)","DOI":"10.1145\/2420950.2420989"},{"key":"19_CR43","unstructured":"Reis, C., Gribble, S.D., Kohno, T., Weaver, N.C.: Detecting in-flight page changes with web Tripwires. In: USENIX Symposium on Networked Systems Design and Implementation (NSDI) (2008)"},{"key":"19_CR44","unstructured":"Selenium Contributors. Selenium: Web browser automation. http:\/\/www.seleniumhq.org\/"},{"key":"19_CR45","doi-asserted-by":"crossref","unstructured":"Stringhini, G., Kruegel, C., Vigna, G.: Shady paths: leveraging surfing crowds to detect malicious web pages. In: ACM Conference on Computer and Communications Security (CCS) (2013)","DOI":"10.1145\/2508859.2516682"},{"key":"19_CR46","doi-asserted-by":"crossref","unstructured":"Thomas, K., Bursztein, E., Grier, C., Ho, G., Jagpal, N., Kapravelos, A., McCoy, D., Nappa, A., Paxson, V., Pearce, P., Provos, N., Rajab, M.A.: Ad injection at scale: assessing deceptive advertisement modifications. In: IEEE Symposium on Security and Privacy. IEEE, Oakland (2015)","DOI":"10.1109\/SP.2015.17"},{"key":"19_CR47","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"418","DOI":"10.1007\/978-3-642-31284-7_25","volume-title":"Applied Cryptography and Network Security","author":"M Tran","year":"2012","unstructured":"Tran, M., Dong, X., Liang, Z., Jiang, X.: Tracking the trackers: fast and scalable dynamic analysis of web content for privacy violations. In: Bao, F., Samarati, P., Zhou, J. (eds.) ACNS 2012. LNCS, vol. 7341, pp. 418\u2013435. Springer, Heidelberg (2012)"},{"key":"19_CR48","doi-asserted-by":"crossref","unstructured":"Xing, X., Meng, W., Weinsberg, U., Sheth, A., Lee, B., Perdisci, R., Lee, W.: Unraveling the relationship between ad-injecting browser extensions and malvertising. In: International World Wide Web Conference (WWW) (2015)","DOI":"10.1145\/2736277.2741630"},{"key":"19_CR49","unstructured":"Zeldovich, N., Boyd-Wickizer, S., Mazieres, D.: Security distributed systems with information flow control. In: USENIX Symposium on Networked Systems Design and Implementation (NSDI) (2008)"}],"container-title":["Lecture Notes in Computer Science","Research in Attacks, Intrusions, and Defenses"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-45719-2_19","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,7]],"date-time":"2022-07-07T20:06:30Z","timestamp":1657224390000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-45719-2_19"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319457185","9783319457192"],"references-count":49,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-45719-2_19","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2016]]}}}