Honeyclients are creating a buzz in the security world, giving malicious Web sites the sharp end.

The desktop Web browser has long been a security sinkhole. It's grown deeper, despite emphasis on secure coding, greater user awareness, improvements to Internet Explorer and the use of alternatives like Firefox and Opera. Criminals lure users to thousands of malicious or compromised Web sites to scam their identity information or drop some nasty code on their computers.

Detecting these sites and collecting and countering exploits has been somewhat like playing Whack-A-Mole, but security researchers are finding effective ways to fight back. Microsoft and open source advocates are pursuing two of the more promising initiatives, aggressively hunting for exploits using honeyclients, an active variation of honeynet techniques.

While honeynets have been around for some time, they are passive collectors, sitting on some random network on the Internet, wa...

BROWSE BY TAG Features,   Application and Platform Security,   Web Application Security,   Web Security Tools and Best Practices,   Web Browser Security,   VIEW ALL TAGS

Honeyclients, however, are hunters, not decoy victims; they run Web browsers and actively seek dangerous sites.

"Browsers and other client-side applications have become more and more the weakest link in the security chain," says Thorsten Holz, one of the founders of the German Honeynet Project and coauthor of Virtual Honeypots: From Botnet Tracking to Intrusion Detection. "The vendors now take a closer look at hardening the OS, but client-side applications still have tons of vulnerabilities."

There are several reasons for this shift from server to browser attacks.

< PREV PAGE   |   1  |   2  |   3  |   4  |   5  |   6  |   NEXT PAGE  >