Publication Type : Conference Paper
Publisher : Security in Computing and Communications, Springer Singapore.
Source : Security in Computing and Communications, Springer Singapore, Volume 746, Singapore, p.364-378 (2017)
Url : https://link.springer.com/chapter/10.1007/978-981-10-6898-0_30
ISBN : 9789811068980
Campus : Coimbatore
School : School of Engineering
Center : TIFAC CORE in Cyber Security
Department : Computer Science
Year : 2017
Abstract : With exponential increased usage of browser extensions for smooth and effortless browsing experience, preventing exposure of user's private and sensitive data for malicious intent becomes a perpetual challenging task for security researchers. To address this potential threat, extensive work has been carried out to develop a Chrome Browser Extension Analysis Tool, CBEAT. Exclusivity of CBEAT lies in performing holistic analysis combining manifest analysis and JavaScript static taint analysis of manifest and JavaScript files of Chrome Extensions. CBEAT calculates an extension score based on both analysis mentioned above. This score is subsequently used to arrive at classification of the extension and classified as high, medium and low in exposing user's private and sensitive data. Out of tested Chrome extensions, this paper finds 40% of them as low, 32% as medium and 28% as high.
Cite this Research Publication : S. Singha Roy and Jevitha, K. P., “CBEAT: Chrome Browser Extension Analysis Tool”, in Security in Computing and Communications, Singapore, 2017, vol. 746, pp. 364-378.