AN INSECURE WILD WEB: A LARGE-SCALE STUDY OF EFFECTIVENESS OF WEB SECURITY MECHANISMS
Journal Title: ICTACT Journal on Communication Technology - Year 2017, Vol 8, Issue 1
Abstract
This research work presents a large-scale study of the problems in real-world web applications and widely-used mobile browsers. Through a large-scale experiment, we find inconsistencies in Secure Socket Layer (SSL) warnings among popular mobile web browsers (over a billion users download). The majority of popular mobile browsers on the Google Play Store either provide incomplete information in SSL warnings shown to users or failed to provide SSL warnings in the presence of security certificate errors, thus making it a difficult task even for a security savvy user to make an informed decision. In addition, we find that 28% of websites are using mixed content. Mixed content means a secure website (https) loads a sub resource using insecure HTTP protocol. The mixed content weakens the security of entire website and vulnerable to man-in-the-middle (MITM) attacks. Furthermore, we inspected the default behavior of mobile web browsers and report that majority of mobile web browsers allow execution of mixed content in web applications, which implies billions of mobile browser users are vulnerable to eavesdropping and MITM attacks. Based on our findings, we make recommendations for website developers, users and browser vendors.
Authors and Affiliations
Kailas Patil
Keywords
Related Articles
- EP ID EP372653
- DOI 10.21917/ijct.2017.0217
- Views 79
- Downloads 0
MODIFIED UNIDIRECTIONAL CIRCULAR PATCH ANTENNA WITH PARABOLIC SHAPE GROUND PLANE HAVING T-SLOTS FOR MICROWAVE LINKS
A modified design technique of unidirectional circular patch antenna with parabolic shape ground plane for the application of microwave links is being presented here. Firstly, T-slots are inserted diagonally at the corne...
MAXIMIZE THE LIFETIME OF SENSOR NETWORK BY LOAD BALANCING USING TREE TOPOLOGY
In many wireless sensor networks due to the limited energy of sensor nodes energy conservation is one of the most important challenges. To enhance the lifetime of the network emphasis is given to design energy efficient...
PERFORMANCE SIMULATION AND BER COMPARISION OFDM-MIMO SYSTEMS IN AWGN AND RAYLEIGH FADING CHANNELS WITH BPSK MODULATION SCHEMES
Behavior of communication medium play vital role in the growth of wireless communication system. To understand various wireless channel environments such as additive white Gaussian noise (AWGN) and Rayleigh fading channe...
IMPROVEMENT OF FAR FIELD RADIATION PATTERN OF LINEAR ARRAY ANTENNA USING GENETIC ALGORITHM
In this paper, the beam pattern of Linear Array Antennas with isotropic elements is examined. The design goal is to reduce the sidelobe level with a minimum beamwidth increase for the far field radiation pattern of the a...
COMPARATIVE ANALYSIS OF HIGHER GENUS HYPERELLIPTIC CURVE CRYPTOSYSTEMS OVER FINITE FIELD FP
The performance analysis of Hyperelliptic Curve Cryptosystems (HECC) over prime fields (Fp) of genus 5 and 6 are discussed in this paper. We have implemented a HECC system of genus 5 & 6 in a Intel Pentium III Celeron Pr...