Visible to the public Vulnerability Analysis of Iframe Attacks on Websites

TitleVulnerability Analysis of Iframe Attacks on Websites
Publication TypeConference Paper
Year of Publication2016
AuthorsSelim, Haysam, Tayeb, Shahab, Kim, Yoohwan, Zhan, Justin, Pirouz, Matin
Conference NameProceedings of the The 3rd Multidisciplinary International Social Networks Conference on SocialInformatics 2016, Data Science 2016
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4129-5
Keywordscross-site request forgery, cross-site scripting, human factors, online social networks, pubcrawl, Scalability, Social Agents
Abstract

Clickjacking attacks are emerging threats to websites of different sizes and shapes. They are particularly used by threat agents to get more likes and/or followers in Online Social Networks (OSNs). This paper reviews the clickjacking attacks and the classic solutions to tackle various forms of those attacks. Different approaches of Cross-Site Scripting attacks are implemented in this study to study the attack tools and methods. Various iFrame attacks have been developed to tamper with the integrity of the website interactions at the application layer. By visually demonstrating the attacks such as Cross-Site scripting (XSS) and Cross-Site Request Forgery (CSRF), users will be able to have a better understanding of such attacks in their formulation and the risks associated with them.

URLhttp://doi.acm.org/10.1145/2955129.2955180
DOI10.1145/2955129.2955180
Citation Keyselim_vulnerability_2016