MSS

Use file format conversion for suppress malicious scripts in multimedia

Ching Huang Lin, Jian Yuan Ma, Chi Sung Laih, Jung-Shian Li

Research output: Contribution to journalArticle

Abstract

On the Internet, more and more Web Applications allow users to share life experience and moment by uploading multimedia files. People can easily share multimedia files. For example, people can share videos and pictures on websites like Youtube or Flickr. However, attackers also upload embedded script in files to attack web applications and users. To protect web applications and users from this kind of embedded malicious script in multimedia file's attack, we propose a malicious script suppression system (MSS). It uses file format conversion (i.e., transcoding) to destructively transform the structure of the malicious scripts so they become inactive. This study aims to verify that the system is suitable for many kinds of multimedia files (e.g., BMP, AVI) and able to suppress malicious scripts in multimedia file. File format conversion does not only inactivate malicious scripts, but also causes conversion loss. Therefore, the study explores the conversion loss effect on the variety of file formats in order to find the optimal conversion method experimentally and the effectiveness of suppressing malicious scripts on the variety of file formats, and finally verifies that the system prevents multimedia file attacks. By the results found, the optimal conversion method is used two-step transcoding for image file, and one-step transcoding for video file, as well as the optimal intermediate file format for transcoding is JPEG.

Original languageEnglish
Pages (from-to)843-852
Number of pages10
JournalJournal of Internet Technology
Volume13
Issue number5
Publication statusPublished - 2012 Dec 1

Fingerprint

Multimedia systems
Websites
Internet

All Science Journal Classification (ASJC) codes

  • Software
  • Computer Networks and Communications

Cite this

Lin, Ching Huang ; Ma, Jian Yuan ; Laih, Chi Sung ; Li, Jung-Shian. / MSS : Use file format conversion for suppress malicious scripts in multimedia. In: Journal of Internet Technology. 2012 ; Vol. 13, No. 5. pp. 843-852.
@article{b3e9591c6b2b4c60b14e06ec583e9c33,
title = "MSS: Use file format conversion for suppress malicious scripts in multimedia",
abstract = "On the Internet, more and more Web Applications allow users to share life experience and moment by uploading multimedia files. People can easily share multimedia files. For example, people can share videos and pictures on websites like Youtube or Flickr. However, attackers also upload embedded script in files to attack web applications and users. To protect web applications and users from this kind of embedded malicious script in multimedia file's attack, we propose a malicious script suppression system (MSS). It uses file format conversion (i.e., transcoding) to destructively transform the structure of the malicious scripts so they become inactive. This study aims to verify that the system is suitable for many kinds of multimedia files (e.g., BMP, AVI) and able to suppress malicious scripts in multimedia file. File format conversion does not only inactivate malicious scripts, but also causes conversion loss. Therefore, the study explores the conversion loss effect on the variety of file formats in order to find the optimal conversion method experimentally and the effectiveness of suppressing malicious scripts on the variety of file formats, and finally verifies that the system prevents multimedia file attacks. By the results found, the optimal conversion method is used two-step transcoding for image file, and one-step transcoding for video file, as well as the optimal intermediate file format for transcoding is JPEG.",
author = "Lin, {Ching Huang} and Ma, {Jian Yuan} and Laih, {Chi Sung} and Jung-Shian Li",
year = "2012",
month = "12",
day = "1",
language = "English",
volume = "13",
pages = "843--852",
journal = "Journal of Internet Technology",
issn = "1607-9264",
publisher = "Taiwan Academic Network Management Committee",
number = "5",

}

MSS : Use file format conversion for suppress malicious scripts in multimedia. / Lin, Ching Huang; Ma, Jian Yuan; Laih, Chi Sung; Li, Jung-Shian.

In: Journal of Internet Technology, Vol. 13, No. 5, 01.12.2012, p. 843-852.

Research output: Contribution to journalArticle

TY - JOUR

T1 - MSS

T2 - Use file format conversion for suppress malicious scripts in multimedia

AU - Lin, Ching Huang

AU - Ma, Jian Yuan

AU - Laih, Chi Sung

AU - Li, Jung-Shian

PY - 2012/12/1

Y1 - 2012/12/1

N2 - On the Internet, more and more Web Applications allow users to share life experience and moment by uploading multimedia files. People can easily share multimedia files. For example, people can share videos and pictures on websites like Youtube or Flickr. However, attackers also upload embedded script in files to attack web applications and users. To protect web applications and users from this kind of embedded malicious script in multimedia file's attack, we propose a malicious script suppression system (MSS). It uses file format conversion (i.e., transcoding) to destructively transform the structure of the malicious scripts so they become inactive. This study aims to verify that the system is suitable for many kinds of multimedia files (e.g., BMP, AVI) and able to suppress malicious scripts in multimedia file. File format conversion does not only inactivate malicious scripts, but also causes conversion loss. Therefore, the study explores the conversion loss effect on the variety of file formats in order to find the optimal conversion method experimentally and the effectiveness of suppressing malicious scripts on the variety of file formats, and finally verifies that the system prevents multimedia file attacks. By the results found, the optimal conversion method is used two-step transcoding for image file, and one-step transcoding for video file, as well as the optimal intermediate file format for transcoding is JPEG.

AB - On the Internet, more and more Web Applications allow users to share life experience and moment by uploading multimedia files. People can easily share multimedia files. For example, people can share videos and pictures on websites like Youtube or Flickr. However, attackers also upload embedded script in files to attack web applications and users. To protect web applications and users from this kind of embedded malicious script in multimedia file's attack, we propose a malicious script suppression system (MSS). It uses file format conversion (i.e., transcoding) to destructively transform the structure of the malicious scripts so they become inactive. This study aims to verify that the system is suitable for many kinds of multimedia files (e.g., BMP, AVI) and able to suppress malicious scripts in multimedia file. File format conversion does not only inactivate malicious scripts, but also causes conversion loss. Therefore, the study explores the conversion loss effect on the variety of file formats in order to find the optimal conversion method experimentally and the effectiveness of suppressing malicious scripts on the variety of file formats, and finally verifies that the system prevents multimedia file attacks. By the results found, the optimal conversion method is used two-step transcoding for image file, and one-step transcoding for video file, as well as the optimal intermediate file format for transcoding is JPEG.

UR - http://www.scopus.com/inward/record.url?scp=84872334437&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84872334437&partnerID=8YFLogxK

M3 - Article

VL - 13

SP - 843

EP - 852

JO - Journal of Internet Technology

JF - Journal of Internet Technology

SN - 1607-9264

IS - 5

ER -