Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Research Builds 'BrowserShield'

Posted by ryuzaki0 on from the security-you-can-trust-of-course dept.

SteelyBen writes "Researchers at Microsoft have completed work on a prototype framework called BrowserShield that promises to intercept and remove, on the fly, malicious code hidden on Web pages, instead showing users safe equivalents of those pages. The BrowserShield project, an outgrowth of the company's 'Shield' initiative, could one day even become Microsoft's answer to zero-day browser exploits such as the WMF (Windows Metafile) attack that spread like wildfire in December 2005."

8 of 226 comments (clear)

  1. "Invents?" by poptones · · Score: 2, Informative

    Wow, Microsoft has "invented" privoxy!

  2. It already exists, and it's called the Proxomitron by Traf-O-Data-Hater · · Score: 5, Informative

    Sounds like M$ has just "invented" a limited-functionality locked-in version of the marvellous Proxomitron. An application I truly wouldn't be without. Scrubs HTML nasties right out of the box, and also allows you to see a web page the way you want to see it. It runs with any browser, not just Internet Exploiter. And it's the right price, too.

  3. Already in anti-virus software by cibyr · · Score: 3, Informative

    This sort of thing is already in anti-virus software. I use Avast! (free edition) and it has a "Web Shield" module (sounds a look like "Browser Shield", doesn't it?) that transparently proxies web traffic. When it finds anything nasty it pops up dialog box asking you if you want to download/access it anyway or "abort connection".

    While this is all well and fine, would it be too much for Microsoft to just patch their bugs?

    --
    It's not exactly rocket surgery.
  4. Re:Strangling metaphors by troon · · Score: 3, Informative

    It's a Reliant Robin, dammit. The model is a Robin, made by Reliant.

    --
    Ydco co ,df C erb-y go. a Ekrpat t.fxrapev
  5. Re:zero-day browser exploits by kripkenstein · · Score: 4, Informative

    Perhaps you joke, but it really isn't that clear whether this will work or not. TFA says

    The research group tested BrowserShield against eight IE patches released in 2005 and found that BrowserShield--when used in tandem with standard anti-virus and HTTP filtering--would have provided the same protection as the software patches in every case

    There were far more than 8 patches in 2005. How were these 8 selected? Were they of a specific type? Without such details, it's hard to form an opinion about this 'BrowserShield' thingie. For all we know, they selected the most convenient 8 to prove their point.

  6. Re:Just what we need by rjstanford · · Score: 3, Informative

    AdMuncher (the single best Windows ad-blocking program, for whatever browser, bar none (IMnsHO)) already provides this functionality out of the box. Any 'sploits are easily blocked, once they're identified, as are damn near all the ads. As a bonus, when people are doing things like not properly recognizing IE7's flash handling (and I'm looking at you, SWFObject), you can easily rewrite the fairly recognizable line of code in a standard library as it comes down the pipe and fix a whole ton of "broken" webpages.

    "Correct"? Probably not. Convenient? Absolutely.

    AM is one of the very few modern shareware programs I not only paid for, but paid early and promote often. And no, I'm not involved, just an incredibly happy customer (and boy do the Mac blockers have a long way to go in comparison).

    --
    You're special forces then? That's great! I just love your olympics!
  7. Re:zero-day browser exploits by keysor · · Score: 2, Informative
    There were 29 critical patches, but only 8 addressed IE vulnerabilities. You can see it in the paper, which also explains how the rewriting works:

    http://research.microsoft.com/research/shield/pape rs/bshield.pdf

    Also, this work will appear in OSDI (an operating systems conference) in November.

  8. Re:That's not even the real danger... by JimDaGeek · · Score: 2, Informative
    What can I say except I'd hate to live in your isolated little made up "omg MS is coming to get me" world.
    And I am glad I do not live in your Microsoft apologist world.

    No matter what the society turns to be, there'll be always people to build inexplicably complex and ridiculous conspiracy theories that all link to the same "ultimate" enemy.
    Who said anything about a conspiracy? MS has been very consistent for more than a decade now about shafting their customers and their "partners". When the US govt. recently asked for user search queries, MS (and Yahoo) handed them over without a thought. Google said "get lost". So, gee, I wonder what company I would trust with my personal data?

    Does it make you feel smarter that you saw this intricate plan of Microsoft to ban your blog noone gives a damn about either way?
    Huh? Who said anything about a blog? I don't have a blog and don't care to for one.

    But it's really not that cool to throw unsubstantiated FUD around as it used to be. We call it trolling, and it's mostly unwelcome.
    Unsubstantiated FUD? So it is unsubstantiated that Microsoft handed over customer search queries to the govt. without even trying to fight the request to protect their customers privacy?

    You are free to have your own opinion on Microsoft just as I am to have mine. My opinion is Microsoft is a nasty company that has a lot of things for more than a decade not to lose my trust in them.
    --
    General, you are listening to a machine! Do the world a favor and don't act like one.