HoneySpam 2.0 Profiling Web Spambot Behaviour

950 views

Published on

Internet bots have been widely used for various beneficial and
malicious activities on the web. In this paper we provide new insights into a
new kind of bot termed as web spambot which is primarily used for spreading
spam content on the web. To gain insights into web spambots, we developed a
tool (HoneySpam 2.0) to track their behaviour. This paper presents two main
contributions, firstly it describes the design of HoneySpam 2.0 and secondly we
outline the experimental results that characterise web spambot behaviour. By
profiling web spambots, we provide the foundation for identifying such bots
and preventing and filtering web spam content.
More info: http://debii.curtin.edu.au/~pedram/research/publications/105-honeyspam-20-profiling-web-spambot-behaviour.html

Published in: Education
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
950
On SlideShare
0
From Embeds
0
Number of Embeds
4
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

HoneySpam 2.0 Profiling Web Spambot Behaviour

  1. 1. HoneySpam 2.0 Profiling Web Spambot Behaviour Pedram Hayati Kevin Chai Vidyasagar Potdar Alex Talevsky
  2. 2. Agenda <ul><li>Introduction </li></ul><ul><li>Background </li></ul><ul><ul><li>Taxonomy of Spam 2.0 and Web Spambot </li></ul></ul><ul><ul><li>Current Literature Techniques </li></ul></ul><ul><li>HoneySpam 2.0 Architecture </li></ul><ul><ul><li>Navigation Component </li></ul></ul><ul><ul><li>Form Tracking Component </li></ul></ul><ul><ul><li>Deploying HoneySpam 2.0 </li></ul></ul><ul><li>Experimental Results </li></ul><ul><li>Related Works </li></ul><ul><li>Conclusion and future works </li></ul>Agenda
  3. 3. Little bit what’s going on? Web 2.0 Spam 2.0 Spammer
  4. 4. Web Spambot <ul><li>A kind of Web Robot or Internet Robot </li></ul><ul><li>Distribute Spam content in Web 2.0 applications </li></ul><ul><li>Scope </li></ul><ul><ul><li>Application-Specific </li></ul></ul><ul><ul><li>Website-Specific </li></ul></ul>
  5. 5. Countermeasures <ul><li>CAPTCHA </li></ul><ul><li>HashCash </li></ul><ul><li>Form variation </li></ul><ul><li>Nonce </li></ul><ul><li>Decrease user convenience and increase complexity of human computer interaction. </li></ul><ul><li>As programs become better at deciphering CAPTCHA, the image may become difficult for humans to decipher. </li></ul><ul><li>As computers get more powerful, they will be able to decipher CAPTCHA better than humans. </li></ul>Web 2.0 Submission Workflow
  6. 6. HoneySpam 2.0 <ul><li>Monitor and Track Web Spambots </li></ul><ul><li>Idea of Honeypots </li></ul><ul><li>Implicitly Track </li></ul><ul><ul><li>Click-steam </li></ul></ul><ul><ul><li>Page navigation </li></ul></ul><ul><ul><li>Keyboard activity </li></ul></ul><ul><ul><li>Mouse movement </li></ul></ul><ul><ul><li>Page Scrolling </li></ul></ul>
  7. 7. HoneySpam 2.0 HoneySpam 2.0 Architecture
  8. 8. HoneySpam 2.0 in Action!
  9. 9. HoneySpam 2.0 in Action!
  10. 10. Web Spambot Behaviour <ul><li>Use of search engines to find target websites </li></ul><ul><li>Create numerous user accounts </li></ul><ul><li>Low website webpage hits and revisit rates </li></ul><ul><li>Distribute spam content in a short period of time </li></ul><ul><li>No web form interaction </li></ul><ul><li>Generated usernames </li></ul>
  11. 11. Conclusion <ul><li>HoneySpam 2.0 as framework to monitor/track Web spambot behaviour </li></ul><ul><li>Integrated to popular open source web applications </li></ul><ul><li>Web Spambots </li></ul><ul><ul><li>use search engines to find target websites, </li></ul></ul><ul><ul><li>create numerous user accounts, </li></ul></ul><ul><ul><li>distribute spam content in a short amount of time, </li></ul></ul><ul><ul><li>do not revisit the website, </li></ul></ul><ul><ul><li>do not interact with forms on the website, </li></ul></ul><ul><ul><li>and register with randomly generated usernames </li></ul></ul>
  12. 12. Thank You! debii.curtin.edu.au www.curtin.edu.au asrl.debii.curtin.edu.au www.antispamresearchlab.com Homepage: debii.curtin.edu.au/~pedram/

×