Auto-FBI: A user-friendly approach for secure access to sensitive content on the web

Mohsen Zohrevandi, Rida Bazzi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

We propose a novel and simple approach for securing access to sensitive content on the web. The approach automates the best manual compartmentalization practices for accessing different kinds of content with different browser instances. The automation is transparent to the user and does not require any modification of how non-sensitive content is accessed. For sensitive content, a Fresh Browser Instance (FBI) is automatically created to access the content. Our prototype system Auto-FBI can provide support for novice users with predefined sensitive content sites as well as for more experienced users who can define conflict of interest (COI) classes which allows content from sites in the same user-defined class to coexist in a browser instance. Our initial performance evaluation of Auto-FBI shows that the overhead introduced by the approach is acceptable (less than 160 ms for sites that already have fast load time, but for slow sites the overhead can be as high as 750 ms).

Original languageEnglish (US)
Title of host publicationACM International Conference Proceeding Series
Pages349-358
Number of pages10
DOIs
StatePublished - 2013
Event29th Annual Computer Security Applications Conference, ACSAC 2013 - New Orleans, LA, United States
Duration: Dec 9 2013Dec 13 2013

Other

Other29th Annual Computer Security Applications Conference, ACSAC 2013
CountryUnited States
CityNew Orleans, LA
Period12/9/1312/13/13

Fingerprint

Automation

ASJC Scopus subject areas

  • Human-Computer Interaction
  • Computer Networks and Communications
  • Computer Vision and Pattern Recognition
  • Software

Cite this

Auto-FBI : A user-friendly approach for secure access to sensitive content on the web. / Zohrevandi, Mohsen; Bazzi, Rida.

ACM International Conference Proceeding Series. 2013. p. 349-358.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Zohrevandi, M & Bazzi, R 2013, Auto-FBI: A user-friendly approach for secure access to sensitive content on the web. in ACM International Conference Proceeding Series. pp. 349-358, 29th Annual Computer Security Applications Conference, ACSAC 2013, New Orleans, LA, United States, 12/9/13. https://doi.org/10.1145/2523649.2523683
Zohrevandi, Mohsen ; Bazzi, Rida. / Auto-FBI : A user-friendly approach for secure access to sensitive content on the web. ACM International Conference Proceeding Series. 2013. pp. 349-358
@inproceedings{51ccb5493c6a4bb1b64d82c70b3b3858,
title = "Auto-FBI: A user-friendly approach for secure access to sensitive content on the web",
abstract = "We propose a novel and simple approach for securing access to sensitive content on the web. The approach automates the best manual compartmentalization practices for accessing different kinds of content with different browser instances. The automation is transparent to the user and does not require any modification of how non-sensitive content is accessed. For sensitive content, a Fresh Browser Instance (FBI) is automatically created to access the content. Our prototype system Auto-FBI can provide support for novice users with predefined sensitive content sites as well as for more experienced users who can define conflict of interest (COI) classes which allows content from sites in the same user-defined class to coexist in a browser instance. Our initial performance evaluation of Auto-FBI shows that the overhead introduced by the approach is acceptable (less than 160 ms for sites that already have fast load time, but for slow sites the overhead can be as high as 750 ms).",
author = "Mohsen Zohrevandi and Rida Bazzi",
year = "2013",
doi = "10.1145/2523649.2523683",
language = "English (US)",
isbn = "9781450320153",
pages = "349--358",
booktitle = "ACM International Conference Proceeding Series",

}

TY - GEN

T1 - Auto-FBI

T2 - A user-friendly approach for secure access to sensitive content on the web

AU - Zohrevandi, Mohsen

AU - Bazzi, Rida

PY - 2013

Y1 - 2013

N2 - We propose a novel and simple approach for securing access to sensitive content on the web. The approach automates the best manual compartmentalization practices for accessing different kinds of content with different browser instances. The automation is transparent to the user and does not require any modification of how non-sensitive content is accessed. For sensitive content, a Fresh Browser Instance (FBI) is automatically created to access the content. Our prototype system Auto-FBI can provide support for novice users with predefined sensitive content sites as well as for more experienced users who can define conflict of interest (COI) classes which allows content from sites in the same user-defined class to coexist in a browser instance. Our initial performance evaluation of Auto-FBI shows that the overhead introduced by the approach is acceptable (less than 160 ms for sites that already have fast load time, but for slow sites the overhead can be as high as 750 ms).

AB - We propose a novel and simple approach for securing access to sensitive content on the web. The approach automates the best manual compartmentalization practices for accessing different kinds of content with different browser instances. The automation is transparent to the user and does not require any modification of how non-sensitive content is accessed. For sensitive content, a Fresh Browser Instance (FBI) is automatically created to access the content. Our prototype system Auto-FBI can provide support for novice users with predefined sensitive content sites as well as for more experienced users who can define conflict of interest (COI) classes which allows content from sites in the same user-defined class to coexist in a browser instance. Our initial performance evaluation of Auto-FBI shows that the overhead introduced by the approach is acceptable (less than 160 ms for sites that already have fast load time, but for slow sites the overhead can be as high as 750 ms).

UR - http://www.scopus.com/inward/record.url?scp=84893262296&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84893262296&partnerID=8YFLogxK

U2 - 10.1145/2523649.2523683

DO - 10.1145/2523649.2523683

M3 - Conference contribution

AN - SCOPUS:84893262296

SN - 9781450320153

SP - 349

EP - 358

BT - ACM International Conference Proceeding Series

ER -