Research And Design On Security Defense System For WEB Browser

As a common kind of client application, the WEB browser is one of the most important interfaces to communicate with the Internet. A great proportion of the security problems in the computer and network fields root in the web browser application programs. The security of web browsers has become one of the most urgent problems in computer security. Although there are many productions aimed to, provide protection to the web browsers , the attacks by web browsers are not put down effectively. The safeguard to web browsers needs more and deeper research .In this paper, we introduce the technique of Behavior Sandbox by analyzing the behaviors of web browsers and design and implement the web browser security defense system. The main work in this paper is as follow:1. It introduces what is the web browser vulnerability, how they come up, and 3 most popular means how web browser vulnerabilities are made use of, browser hijack, malicious script and ActiveX controls.2. The local behaviors of web browsers are researched deeply, including the behaviors of creating processes, accessing files and accessing registry keys. As a result ,the concept of Behavior Sandbox are presented. And this paper also explains its principle and how the Principle of Least Privilege applies to it.3. We design and implement the web browser security defense system based on the technique of Behavior Sandbox and descript its architecture, flow, detailed implement and its core modules, including the user layer module, the monitor engine module and the alarm module.4. The paper presents 5 instances to test the function of this system and their results. These 5 test instances are designed to prove the usability of the system and to test its function of identifying abnormal processes, blocking the novel access to file system and registry key, and preventing the virus based on the browser vulnerability spreading. It turns out that the system is able to build an integrated behavior sandbox which can be used to identify and prevent the novel behaviors successfully. The paper also points out the shortage of the system based on the test results.5. The paper shows the advantage of the system over the traditional security productions and makes the objective of research in the next phase.