| dc.description.abstract | The risk of accessing the Internet and wireless networks is increasing. In recent years, cyberattacks on individuals and businesses have become more and more serious. To make matters worse, as work from home (WFH) has become popular due to the threat of COVID-19, cyberattacks have also increased dramatically.
Due to WFH, the defense mechanism against cyberattacks is limited. In general, the company has administrator rights to control devices and local networks. However, when the user connects back to the company through a personal device, certain defense methods will not be available.
In this case, companies usually can only perform some monitoring. According to survey statistics, companies usually use identity verification, intrusion detection systems, and anti-virus solutions. However, about half of the organizations stated that exploits and malware have evaded their solutions. And almost a third of organizations do not require their remote workers to use authentication methods.
In order to solve the above problems, this paper proposes Insulator, a client security framework that protects client users from cyberattacks. The term insulator means to protect users by blocking threats on the Internet. Insulator satisfies the constraints of detecting cyberattacks in untrusted network environments based on user-side functions. In order to provide complete protection, Insulator includes four modules for detecting and defending evil twins, fast-flux domain, phishing and information leakage. Through the above modules, Insulator can detect and defend the most popular cyberattacks. | en_US |