One Article Review
| Source |  GoogleSec |
|---|---|
| Identifiant | 8469136 |
| Date de publication | 2024-03-14 12:01:32 (vue: 2024-03-23 17:07:04) |
| Titre | Protection d'URL en temps réel et préservant la confidentialité Real-time, privacy-preserving URL protection |
| Texte | Posted by Jasika Bawa, Xinghui Lu, Google Chrome Security & Jonathan Li, Alex Wozniak, Google Safe Browsing
For more than 15 years, Google Safe Browsing has been protecting users from phishing, malware, unwanted software and more, by identifying and warning users about potentially abusive sites on more than 5 billion devices around the world. As attackers grow more sophisticated, we\'ve seen the need for protections that can adapt as quickly as the threats they defend against. That\'s why we\'re excited to announce a new version of Safe Browsing that will provide real-time, privacy-preserving URL protection for people using the Standard protection mode of Safe Browsing in Chrome.
Current landscape
Chrome automatically protects you by flagging potentially dangerous sites and files, hand in hand with Safe Browsing which discovers thousands of unsafe sites every day and adds them to its lists of harmful sites and files.
So far, for privacy and performance reasons, Chrome has first checked sites you visit against a locally-stored list of known unsafe sites which is updated every 30 to 60 minutes – this is done using hash-based checks.
Hash-based check overview
But unsafe sites have adapted - today, the majority of them exist for less than 10 minutes, meaning that by the time the locally-stored list of known unsafe sites is updated, many have slipped through and had the chance to do damage if users happened to visit them during this window of opportunity. Further, Safe Browsing\'s list of harmful websites continues to grow at a rapid pace. Not all devices have the resources necessary to maintain this growing list, nor are they always able to receive and apply updates to the list at the frequency necessary to benefit from full protection.
Safe Browsing\'s Enhanced protection mode already stays ahead of such threats with technologies such as real-time list checks and AI-based classification of malicious URLs and web pages. We built this mode as an opt-in to give users the choice of sharing more security-related data in order to get stronger security. This mode has shown that checking lists in real time brings significant value, so we decided to bring that to the default Standard protection mode through a new API – one that doesn\'t share the URLs of sites you visit with Google.
Introducing real-time, privacy-preserving Safe Browsing
How it works
In order to transition to real-time protection, checks now need to be performed against a list that is maintained on the Safe Browsing server. The server-side list can include unsafe sites as soon as they are discovered, so it is able to capture sites that switch quickly. It can also grow as large as needed because the |
| Envoyé | Oui |
| Condensat | – this able about abusive access action activity actors adapt adapted addition additional address adds advanced after against agent ahead alex all allow already also always amongst android announce any api apply are around asynchronous attackers automatically available avoid back background based bawa because been before behavior behind benefit better between beyond billion block both bring brings browse browsing built but byte cache caches can cannot capture case cases certain chance check checked checking checks choice chrome chrome: classification cloaking cloud commercial commitment compared compute configured confirmed connection consecutively consider constrained content continues convert correlate created current customer damage dangerous data database day decided decrypt decrypts deep default defend delay delivery desktop details detection developer developers device devices discovered discovers documentation does doesn don done downgrade during edge eligible employed encourage encrypted encrypts enhanced enter enterprises every example excited exist experience expired explicitly extensions extra eye fails fallback far fast faster fastly feature fetches files first flagging following follows forwards found frequency from full functionality further get getting give global google grow growing guidance had hand happened happening harmful has hash hashes hashing have here history how http identifiers identifying identity improve improved include including independently information instead introducing ios its itself jasika jonathan keep keeping key know known landscape large latency latest learn learning leave less list lists load local locally long machine maintain maintained majority make malicious malware manner many match matches may meaning means mechanism memory might minutes mixed mixes mode models more moving much necessary need needed network new non nor not noting now obfuscates oblivious observability off offer offers ohttp once one only operate operated operators opportunity opt order original other out over overview pace page pages partner partnered party people perform performance performed performing period phishing plan platform policy posted potential potentially prefixes preserve preserving previous privacy private private” process products progress protect protecting protection protections protects protocol provide provides providing public published quickly rapid reachable real reasons receive receives receiving recently related release reliable reliable” remains removes request requests requires resources responsive returning risky safe safebrowsingproxiedrealtimechecksallowed same saved scans scenes section security see seen sees send sending sends sent served server services share sharing show shown side significant since single site sites slipped slow smooth software soon sophisticated speedy standard staying stays stored stronger such sure surface suspicious switch systems take techniques technologies than that them then these those thousands threats through time tls today together traffic transition true truncates trust turn ultimately unnecessary unsafe unsuccessful unwanted upcoming updated updates upgrading url urls use user users using value version very visit visited want warning way web websites what when where which why will window without won wonder work works world worth wozniak xinghui years yet you your “keeping “staying |
| Tags | Malware Mobile Cloud |
| Stories | |
| Notes | ★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.