SURF: Detecting and measuring search poisoning

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2011, Pages 467-476

  Lu, Long ^a   Perdisci, Roberto ^b   Lee, Wenke ^a  

^a Georgia Institute of Technology   (United States)

^b University of Georgia ^*  (United States)

Author keywords

Detection; Malicious search engine redirection; Measurement; Search engine poisoning

Indexed keywords

DATA SETS; DETECTION RATES; DETECTION SYSTEM; FALSE POSITIVE RATES; LONG-TERM MEASUREMENTS; MALICIOUS SEARCH ENGINE REDIRECTION; POISONING CASE; POISONING PROBLEM; SEARCH ENGINE OPTIMIZATIONS; SEARCH KEYWORD; SEARCH RESULTS;

INFORMATION RETRIEVAL; SEARCH ENGINES;

SECURITY OF DATA;

EID: 80755169472     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2046707.2046762     Document Type: Conference Paper

References (25)

1. Google search engine optimization. http://www.google.com/webmasters/.
2. Google trends. http://www.google.com/trends.
3. URLVoid: Scan a website with multiple scanning engines. http://www.urlvoid.com/.
4. WOT: Web of trust. http://www.mywot.com/wiki/API.
5. C4.5: Programs for Machine Learning. Morgan Kaufmann Publishers, 1993.
6. Google drives 70 percent of traffic to most web sites. http://searchengineoptimism.com/Google-refers-70-percent.html, July 2006.
7. Malware poisoning results for innocent searches. http://www.eweek.com/c/ a/Security/Malware-Poisoning-Results-for-Innocent-Searches, November 2007.
8. Barracuda labs 2010 mid-year security report. Technical report, Barracuda Networks Inc., 2010.
9. Search engine optimization 'poisoning' way up this year. http://www.networkworld.com/news/2010/110910-seo-poisoning-increases.html, November 2010.
10. The dirty little secrets of search. http://www.nytimes.com/2011/02/13/ business/13search.html, February 2011.
11. Google: Search engine spam on the rise. http://www.pcworld.com/article/ 217370/google-search, January 2011.
12. Z. Gyöngyi and H. Garcia-Molina. Web spam taxonomy. Technical report, Stanford University, 2005.
13. M. Hall, E. Frank, G. Holmes, B. Pfahringer, P. Reutemann, and I. H. Witten. The weka data mining software: an update. SIGKDD Explor. Newsl., 11(1):10-18, 2009.
14. F. Howard and O. Komili. Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware. Technical report, SophosLab, 2010.
15. J. John, F. Yu, Y. Xie, M. Abadi, and A. Krishnamurthy. deSEO: Combating search-result poisoning. In Proceedings of the 20th USENIX Security, 2011.
16. L. Lu, V. Yegneswaran, P. Porras, and W. Lee. Blade: an attack-agnostic approach for preventing drive-by malware infections. In Proceedings of the 17th ACM CCS, 2010.
17. E. Moshchuk, T. Bragin, S. D. Gribble, and H. M. Levy. A crawler-based study of spyware on the web. In Proceedings of the NDSS, 2006.
18. A. Ntoulas and M. Manasse. Detecting spam web pages through content analysis. In In Proceedings of the 15th WWW, 2006.
19. L. Page, S. Brin, R. Motwani, and T. Winograd. The pagerank citation ranking: Bringing order to the web. Technical Report 1999-66, Stanford InfoLab, 1999.
20. M. A. Rajab, L. Ballard, P. Mavrommatis, N. Provos, and X. Zhao. The nocebo effect on the web: an analysis of fake anti-virus distribution. In Proceedings of the 3rd USENIX LEET, 2010.
21. K. Thomas, C. Grier, J. Ma, V. Paxson, and D. Song. Design and evaluation of a real-time url spam filtering service. In In Proceedings of the IEEE S&P, 2011.
22. T. Urvoy, E. Chauveau, P. Filoche, and T. Lavergne. Tracking web spam with html style similarities. ACM Trans. Web, 2:3:1-3:28, March 2008.
23. Y.-M. Wang, D. Beck, X. Jiang, and R. Roussev. Automated web patrol with strider honeymonkeys: Finding web sites that exploit browser vulnerabilities. In Proceedings of the NDSS, 2006.
24. B. Wu and B. D. Davison. Identifying link farm spam pages. In Proceedings of the 14th WWW, 2005.
25. B. Wu and B. D. Davison. Detecting semantic cloaking on the web. In Proceedings of the 15th WWW, 2006.