Web threat models

Author Topic: Web threat models  (Read 1403 times)

Offline imranmahmud

  • Full Member
  • ***
  • Posts: 138
  • Test
    • View Profile
Web threat models
« on: July 17, 2013, 09:26:40 PM »
Web attacker
Control attacker.com
Can obtain SSL/TLS certificate for attacker.com ($0)
User visits attacker.com

Network attacker
Passive: Wireless eavesdropper
Active: Evil router, DNS poisoning

Malware attacker
Attacker escapes browser sandbox
- Imran Mahmud
Assistant Professor,Dept. of SWE
Associate Director (Research)

Offline jabedmorshed

  • Full Member
  • ***
  • Posts: 137
  • Test
    • View Profile
Re: Web threat models
« Reply #1 on: October 09, 2014, 05:59:07 PM »
Good to kn ow.
Jabed Morshed
Lecturer,
Department of Computer Science and Engineering