Real-Time Malicious Script Blocking Technology at the Host-Level

  • SangHwan Oh
  • HanChul Bae
  • Seongmin Park
  • HwanKuk KimEmail author
Conference paper
Part of the Lecture Notes on Data Engineering and Communications Technologies book series (LNDECT, volume 2)


Due to the diversity of mobile devices, interests have been increased towards HTML5, the next generation’s web standard which pursues cross platform. To play media files or process 3D graphics in previous HTML environments, users had to install non-standard plug-ins such as Silverlight or Active X. On the other hand, HTML5 provides new tag functions of audio, video etc and new java script functions of Websocket, Geolocation API etc to substitute non-standard technologies such as Active X. To use such functions of HTML5, web browser developers are competitively applying HTML5 to their browsers, making the active conversion to HTML5 a global trend of today. Along with such trend, however, the risk of new cyber attacks taking advantage of java scripts, the key function of HTML5, is also increasing. Cyber attacks based on scripts can trigger vicious actions when the user just accesses web pages inserted with vicious scripts, and thus there are limits in detection using previous security technologies. This paper proposes a technology which collects and analyzes HTTP traffic generated through web browsers at host level to detect and block vicious scripts.


Malicious Code Analysis Agent Host Level Java Script Cross Site Script 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    W3C, “HTML5 Standard”, April 20 2015,
  2. 2.
    Gartner, “Gartner Identifies Top 10 Mobile Technologies and Capabilities for 2015 and 2016”, February 24 2014.Google Scholar
  3. 3.
    KISA, WebCheck. Available:
  4. 4.
    McAfee. SiteAdviser. Available :
  5. 5.
    Young-wook Lee, Dong-jae Jeong, Sang-hoon Jeon, and Chae-ho Im, “Design and Implementation of Web-browser based Malicious behavior Detection System(WMDS)” Journal of Information Security & Cryptology June, 2012Google Scholar
  6. 6.
  7. 7.
  8. 8.

Copyright information

© Springer International Publishing AG 2017

Authors and Affiliations

  • SangHwan Oh
    • 1
  • HanChul Bae
    • 1
  • Seongmin Park
    • 1
  • HwanKuk Kim
    • 1
    Email author
  1. 1.Security R&D Team 2Korea Internet & Security AgencySeoulKorea

Personalised recommendations