Integrity of the web content: the case of online advertising

Authors:
Neenav Vratonjic;Julien Freudiger;Jean-Pierre Hubaux
Affiliations:
School of Computer and Communication Sciences, EPFL, Switzerland;School of Computer and Communication Sciences, EPFL, Switzerland;School of Computer and Communication Sciences, EPFL, Switzerland
Venue:
CollSec'10 Proceedings of the 2010 international conference on Collaborative methods for security and privacy
Year:
2010

Citing 7
Cited 6

IPSec: The New Security Standard for the Internet, Intranets, and Virtual Private Networks

IPSec: The New Security Standard for the Internet, Intranets, and Virtual Private Networks
Performance analysis of TLS Web servers

ACM Transactions on Computer Systems (TOCS)
Cat and mouse: content delivery tradeoffs in web access

Proceedings of the 15th international conference on World Wide Web
Measuring privacy loss and the impact of privacy protection in web browsing

Proceedings of the 3rd symposium on Usable privacy and security
Detecting in-flight page changes with web tripwires

NSDI'08 Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation
Perspectives: improving SSH-style host authentication with multi-path probing

ATC'08 USENIX 2008 Annual Technical Conference on Annual Technical Conference
Deep Packet Inspection using Parallel Bloom Filters

IEEE Micro

ISPs and ad networks against botnet ad fraud

GameSec'10 Proceedings of the First international conference on Decision and game theory for security
Integrity for the In-flight web page based on a fragile watermarking chain scheme

Proceedings of the 5th International Conference on Ubiquitous Information Management and Communication
Inflight modifications of content: who are the culprits?

LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats
IAAS: an integrity assurance service for web page via a fragile watermarking chain module

Proceedings of the 6th International Conference on Ubiquitous Information Management and Communication
iHTTP: efficient authentication of non-confidential HTTP traffic

ACNS'12 Proceedings of the 10th international conference on Applied Cryptography and Network Security
Verifiable auctions for online ad exchanges

Proceedings of the ACM SIGCOMM 2013 conference on SIGCOMM

Quantified Score

Hi-index	0.00

Visualization

Abstract

Online advertising is a major source of revenues in the Internet. In this paper, we identify a number of vulnerabilities of current ad serving systems. We describe how an adversary can exploit these vulnerabilities to divert part of the ad revenue stream for its own benefit. We propose a collaborative secure scheme to fix this problem. The solution relies on the fact that most of online advertising networks own digital authentication certificates and can become a source of trust. We also explain why the deployment of this solution would benefit the Web browsing security in general.