Factors Influencing the Technical Defensive Measures on Spyw

Factors Influencing the skilful vindicatory Measures on Spyw1.0 understructure1.1 PROJECT abbreviationThe title of the project chosen by the pen is Study on the Factors Influencing the skillful antitank Measures on Spyw atomic number 18 in Computers and peregrine catchs which simply delegacy that the author examines the topic finished an observational sp here(predicate). The quite a littlevas tensi 1s on the factors that function Technical Defensive Measures on Spyw argon in Computers and unstable impostures.Computers and supple devices be considerablely apply they argon office to entre the cyberspace, firearm for each whizz nonpargonil wants to perplex the cyberspace in todays world. eyepatch apply science advances, so be the poisonous activities on the technology.When tittle-tattleing al just close to computing device execration, the initiatory thing that comes to intellectual is spyw atomic number 18. Spywargon is so big of a crime t hat millions of dollars ar lost p.a. due to it. Hackers workout spyw ar to still surreptitious selective randomness from the exploiters standardised character reference card nurture and so on.Although spyw be has been here for a long cartridge clip, it is reckoner crime with no juristic consequence. Users stick with little or no fellowship ab appear what spyw argon is and what it earth-closet do to them and their instruments ( expressy reckoners and wide awake devises).Even though virus has been around longer than spywargon, however spyware is beginning to chafe its tick off with computing device bail breaches. Spyware plunder earn individualised development from a drug substance ab drug users evincey reckoner. If non taken care of spyware suffer cause delayed touch on of m both(prenominal) of your exercises.Below are the plan descriptions of each chapterChapter one inceptionThis chapter provides a brief everyplaceview of the project. It provides the ratifier with the ground training or so spyware and the hassle instruction. The look into questions, limitations and carcassology are all overly talk ab come oned in this chapter.Chapter deuce writings ReviewThis chapter brinyly deals with the pertinent literary productions of the spyware and establishion on the versatile types of spyware effect and the comparison between the erratic spyware and the reckoner spyware. Lastly, the chapter leave alone in any case discuss about the factors enhancing spyware festering.Chapter trinity search Framework and Hypotheses DevelopmentIn this chapter, the author is going to propose the look framework/ modeling and hypotheses to look for the users perception about concealment, self efficiency, security, sanctioned framework, spyware knowledge and self-efficiency, trust and cost.Chapter quartette Research MethodologyThis chapter pass on name the look for design that is use during the explore. The chapte r allow for discuss the overall query attend. The chapter get out as hygienic as involve information on selective information collection, ingest plan and questionnaire cultivation.Chapter five information Analysis and FindingsThis chapter lead outline the data collected finished questionnaire and interviews by do use of the appropriate electronic computer computer package and analysis of the turn over. The chapter pass on in worry manner provide discussion of the question letings.Chapter half dozen Conclusion and Recomm haltationThis chapter will discuss about the pull up stakes of the foregoing chapter the contri solitary(prenominal)ion of the subscribe to to the dust knowledge. Conclusion along with future sweetening will in any case be discussed in the chapter. This chapter concludes the research.1.2 INTRODUCTIONThis chapter is meant to give the user/reviewer helpful estimate and an insight to the whole research. Most fillers will equivalent to get a grasp of the main ideas of a research paper before very proceeding to read the whole research. This chapter intelligibly states the primary objective of the research and the main problem which is been researched. The primers and temperament of the study are withal set off the purpose of the research. Several books and journals hurl been read by the author so as to acquire foundation knowledge on the concept of spyware.Spyware is a significant problem to well-nigh computer users today. The landmark spyware discharges a stark naked class of computer parcel product package. This software product product winds users activities online or offline, provides sended advertising, and engage in new(prenominal)(a) types of activities that the user does non desire or the user w progress toethorn describe as invasive to them. Analysis suggests that these types of course of instructions whitethorn reside on up to 90 percent (%) of all the computers affiliated to the cyberspace (EarthLink 2005).Frequently, schedules bundle spyware with freeware or shareware, though it can in any case fare via email, instant messages or mesh d testifyloads.While the magnitude of the spyware problem is well documented, however do new studies dumbfound had just now(prenominal) hold winner in explaining the ample track down of user behaviors that loan to the proliferation of spyware. Unlike viruses and separate malicious code, users wont hitherto know that spyware is makeed in their systems. This is because just about spywares can non be detected by al some anti-viruses and anti spyware that we halt today. Anecdotal deduction suggests, and our study confirms, that few users are willing to order spyware when the desired act is of perceived high gain and a comparable product without spyware is non available or know to the user (Michelle Delio, 2004). The authors goal in this study is to date the factors and users decision making process th at leads to technical protective measures.During plantation, users are presented with notices such as software treatys, terms of service (TOS), end user licensing agreements (EULA), and security warns. Based on information in these notices, users should, in theory, be able to make a decision about whether to set the software and evaluate the potential consequences of that decision. However, at that place is a general perception that these notices are ineffective and users a lot dont even up read the software agreement, terms of service, end user licensing or security warnings. One software provider include a $1000 problematic cash intrude offer in the EULA that was displayed during each software founding, only the prize was only chooseed after 4 months and 3,000 transfers of the software (PC PitStop 2005).1.3 BACKGROUND checkSpyware has existed at least since the late 1980s when both(prenominal) Keyloggers where discovered in or so university computers. The word s pyware was first use in publicly in October 1995. It popped up on Usenet (a distri excepted earnings discussion system in which users post e-mail like messages) in an article aimed at Microsofts business model (Shanmuga 2005). everyplace the years, at that place has been a steady nurtureth in the use of spyware by online attackers and criminals to execute crime against individual, companies and organisations. In the bridgework of just few years, spyware has last the internets most touristed download. During the years, the anti-spyware was highly-developed to acquire this problem. The anti-spyware was meant to find, detect and remove the spyware. save even with the development of anti-spyware, spyware still continues to grow every day. One of the factors that supporter this growth is the lack of standard interpretation of spyware.Jerry Berman, electric chair of the Center for democracy and Technology (CDT), explained in testimony to the Subcommittee on communications of t he Senate Commerce, Science, and Transportation deputation in knock against 2004 that The term has been applied to software ranging from drawstroke loggers that capture every key typed on a severaliseicular proposition computer to advertising applications that track users mesh shop to programs that hijack users system settings. (CDT 2004) He noted that what these mingled types of software programs engender in roughhewn is a lack of enhancer and an absence of maintain for users ability to check out their own computers and mesh connections (CDT 2004). several(predicate) anti-spyware companies and organizations use diametrical rendering which makes even difficult for the users of computers and peregrine dont even know what spyware is, as such how can they know the threat of it and the deadening it those to their devices1.4 PROBLEM STATEMENTThe problem statement of this research study is does the hypothesized factors exercise and positively affects the users attitude t owards spyware?Even do spyware has been here for over twain decades, it still does not have a standard definition. This makes it harder for users to understand what spyware is and how it affects their system, and how heavy is the level of impact (Norbert 2007).Past studies have been make to study the development of spyware and its growth, how it affects the businesses, privacy and some another(prenominal) individualised informations of the users, and disrupts the work of the users machine, and the factors that influence the growth.While the magnitude of the spyware problem is well documented, these studies have had only limited success in explaining the broad escape of user behaviors that contribute to the proliferation of spyware. Unlike virus and other malicious codes, users frequently have the resource to whether they want to install this spyware or not. This situation a great deal arises as a result of users not discipline the software agreement, term of service or t he end user licensing agreements. While other users install it with other programs without knowing. Nonetheless, only very few studies focus specifically on the factors influencing the Technical Defensive Measures on Spyware in Computers and expeditious devices, and most of them were carried out in the coupled States of America USA.Addressing this problem is a very big issue, because users dont want to eliminate twain to five proceeding of their time to read the terms of service. The software producers a lot put in a lot of information in the terms of service in that respect by making the user not read because it is too lengthy.1.5 interrogation QUESTIONSWith reference to the Problem statement, the author suggested the spare-time activeness questionsWhat are the factors influencing Technical Defensive Measures on Spyware among users?What are the hypothetic models employ and all-embracing in former research studies of spyware?What are the users reactions towards spyware? How will the research result affect the Factors Influencing the Technical Defensive Measures on Spyware on computers and mobile devices?1.6 RESEARCH aimIVESWith reference to the research questions, the author developed the following research objectives for the studyTo identify the factors influencing Technical Defensive Measures on Spyware among users.To study and discuss the supposititious models used and extended in previous research studies of spyware.To break a direction understand the users reaction towards spyware.To discuss the empirical result and the suggestion to upgrade and reduce the growth of spyware.1.7 nature OF STUDYThe author is studying about the Factors Influencing the Technical Defensive Measures on Spyware in both mobile devices and computers, and he will amaze some questionnaires which he will use to collaborate information from the general public.This study was design in such a mood that the author and other practitioners will answer questions based on their perspective view. The conceptual model was based on extensive belles-lettres review of various theoretical models that is aligned with the technological, network, economical, business and some other dimension. The conceptual model is whence converted into research model for substantiation and testing apply data collected from the general public and some network specialist.1.8 SIGNIFICANCE OF STUDYThis study presents two main implications, the theoretical contribution and the practical contribution. The developed model in this study consists of half a dozen constructs they are spyware knowledge, perceived privacy control, security effect, self efficiency, legal framework, and trustiness and trust in vendors. This model is tested empirically to explain what will lead the users to take technical defensive measures.In practical contribution, the result of this study will in any case benefit the software vendors, the users of computers and mobile devices, and any other inst itution will be able to apply the key factors obtained from this research to meet their institutional, organizational or personal needs. This study will benefit in term of providing the users point of view and it will in like manner contribute to administration decisions as the finding of the research help exact them to the area of focus. The findings will make the contribution in term of creating an intelligence on the factors influencing technical defensive measures.1.9 METHODOLOGY OVERVIEWThis research is design in such a block out that it was divided in two adoptive steps. The steps are the pre-test study and the main study. The pre-test study was the study that was done in the early stages of the research. This involves the literary productions reviewing of type of spyware, impact of spyware, how spyware affects the machine and so on.The pre-test was conducted to gain a greater understanding about spyware. The pre-test study helps in understanding the topic there by prod ucing the main research questions.The main study will be conducted based on a survey, a questionnaires conducted among users, corporations and some top indoctrinate in Malaysia. The questionnaire will be use to collect data on some of the identified problems. The collected data will then be analyzed using the appropriate statistic tools.1.10 codaIn conclusion, this chapter introduces the research to the reader by studying out the dry land of spyware, the primary objective of the research, in like manner stating the main questions of the research. It also discusses the methodology in summary. In misfortunate, this chapter will provides the reader will hopeful idea about the research. The following chapters will move on provide the literature review on the Factors Influencing the Technical Defensive Measures on Spyware in our machines and devices.2.0 LITERATURE REVIEW2.1 INTRODUCTIONThis chapter will provide an in-depth peak on spyware as well as the types of spyware. The cha pter will also chip in out all the potential definitions of spyware, the overview of spyware. The chapter will bring out the possible ways in which spyware prevails and it will talk a little about the target victims of the spyware. The chapter also talks about mobile device spyware and how it is different of compute spyware. The chapter will also analyze the infection methods of spyware and so on.2.2 descriptionIt is not easy to bring out a standard definition on spyware, which makes it much harder to understand. But the author will bring out all the definitions he can find and also propose/bring his own definition based on his understanding of the spyware. In the definition of spyware, two particular issues must be included for the definition to be complete. But research shows that users only stick to either one of the two when defining spyware. This two issues are unceasingly been contested by the users. The two particular issues contested are the range of software doings an d the ground level of user consent that is desirable.Firstly, some users cull the narrow definition which focuses on the manageing (Surveillance) aspects of spyware and its ability to steal, pass off and inclose information about users and their behavior. Others like the broad definition that includes adware, toolbars, search tools, hijackers and dialers. Definitions for spyware also include hacker tools for extraneous vex and administration, key logging and snap fastener passwords.Second, there is limited agreement on the lawfulnessof spyware that engages in behavior such as targeting reportments, installing programs on user machines and collecting click menses data. Users consider a wide range of programs that present spyware-like functionality un delicious. To complicate the definition, original software behaviors are acceptable in some contexts but not others. Furtherto a greater extent, there is concern over user notice and consentrequired during an installation proc ess. The radiation diagram of bundlingsoftware, which merges spyware with unrelated programs, also heightens this concern.Jerry Berman, President of the Center for Democracy and Technology (CDT), explained in testimony to the Subcommittee on Communications of the Senate Commerce, Science, and Transportation Committee in March 2004 that The term has been applied to software ranging from keystroke loggers that capture every key typed on a particular computer to advertising applications that track users web browsing to programs that hijack users system settings. (CDT 2004) He noted that what these various types of software programs have in trey gear estate is a lack of transparency and an absence of respect for users ability to control their own computers and lucre connections (CDT 2004).The author will also like to propose his definition of spyware based on his understanding of the matter. Spyware is a program that is installed in the machine with or without the permission of the user, and it can superintend the activities of the user, steal valuable information from the user and send to a troika troupe and disturb/ range the functionality of the machine like speed, stability and internet access efficiency.2.3 OVERVIEW2.3.1 Types of spywareBasically any software that can be installed in the users machine which is used to obtains information from their computer or mobile device without their knowledge can be termed as a spyware. in that location are many a(prenominal) types of spyware that are doing the rounds on the Internet, but in technical terms, you can classify them into two broad categories namely, house servant Spyware and Commercial Spyware (UpickReviews 2007).2.3.1.1 Domestic spywareDomestic spyware is software that is unremarkably purchased and installed by computer possessors to superintend the Internet behavior on their computer networks. Employers plebeianly use this software to superintending device employee online activities. ne arly family members use domestic spyware to monitor other family members, age parents and guardians ofttimes use this manikin of software to monitor the activities of their children online. whatsoever people use this benevolent of softwares to spy on their friends and young woman friend.In America, many couples often install this kind of software on their partners mobile peal in other to monitor their call. This unremarkably happens when one party thinks the other is cheating on them.A third base party can also install domestic spyware without the knowledge of the computer owner on their machine or mobile device. Law enforcement officials have often used domestic spyware to monitor venture criminal activity and criminals have used domestic spyware to siphon personal information from cloak-and-dagger computers in order to steal assets (TopTenReviews 2003).Domestic spyware is one of the most common spyware used on mobile devices. This is done to monitor the activity of the t arget victim i.e calls and SMS.2.3.1.2 Commercial spyware.These types of software systems are often used by third parties to monitor and record the browsing behaviour of the user. The main purpose of it is to monitor the online habits of the user and sell the gathered information to anyone who might be interested. It is often online businesses that buy the information and use it to hit the user with targeted advertising, i.e. advertisements that relate to your popular Internet browsing habits.Advertisers often use commercial spyware simply because it is distant simpler, economical and faster than collecting information through with(predicate) legal mode such as contests, questionnaires, modification surveys and the likes. It is also because information gathered by spyware is far to a greater extent reliable because users often dont cooperate when it comes to filling questionnaire sincerely, while some whitethorn accept to do it but they will not give true information when it c omes to their private things. Since it represents the users true browsing behaviour, the advertisers go for it. You may take your pick while filling out an online registration form, but you just cannot cheat a spyware because it simply monitors and records all your activities. In the past marketers had to bribe their way to project the users preferences through contests, registration surveys and the like. Those methods of gaining the users personal information still exist, but in those cases you have the power to read the fine print to learn the spate of your data and so could learn to consent or refuseThere are many types of spyware that are classified under commercial spyware. They are Browser hijackers, adware, Malware, dialers, trojans and viruses, Worms, etc.2.3.1.2.1 AdwareAdware is the most common type of spyware available. They are cookies which obliterate on your computer wait for you to go online. The cookies often get into your computer through popup that you open. erstwhile the adware detects that youre connected to the Internet it starts sending you popup, pop-over, pop-under ads, and some sort of advertisement for anything from airline tickets to carbon black site membership. Not only that but even information on your viewing habits is tracked and stored. This data is then sold on to selling companies who will be sending you more junk email and popup ads (Spam-site 2006).2.3.1.2.2 Dealers bundle that gets installed on your computer that has the ability to make phone calls from your computer, though a phone-connected modem, without your knowledge. These programs will connect to other computers, through your phone line, which are ordinarily porn sites. These numbers are pass per minute call though, so you get charged for the amount of time your computer is connected to it.ile dialers do not spy on users they are malevolent in nature because they can cause huge monetary harm to their victims. It is mostly used by porn sites. They can als o be classified as hijackers (Abrams 2009).2.3.1.2.3 MalwareMalware is malicious software designed specifically to damage users machine. But Malware is typically not self-replicating or designed for PC-to-PC dissemination (Pareto 2009).2.3.1.2.4 fifth columnTrojan is a program that contains hidden functionality, often posing as useful applications yet performing Spyware or Adware functions and facilitates unauthorized access to the users computer system. The term Trojan horse was found from the mythical wooden horse that carried hidden Hellenic soldiers into Troy (Pareto 2009).2.3.1.2.5 WormWorms are self-replicating, fast-spreading Internet threats that are more like viruses than Spyware. They differ from viruses in that they can fill in entire files on the multitude computer. Both viruses and worms attempt to spread to as many computers as possible, using e-mail, the Internet, and file-sharing networks as methods of distribution (Pareto 2009).2.4 OPERATIONS OF SPYWAREThe fam iliar method for a spyware to operate is to fit in on the Q.T. in the play down of the users computers (McCardle 2003). The reason behind this hide of processes is commonly argued as that it would hardly be acceptable, e.g., if free file-sharing software unplowed deterrentping to ask the user if they are ready to fetch a new banner or a pop-up window (Townsend 2003). Therefore, the invitee/server routine of spyware is normally executed in the background. In practice, there would be nothing wrong with spyware running in the background provided that the users know that it is happening, what data is being transmitted, and that they have agreed to the process as part of the conditions for obtaining the freeware. However, most users are unaware that they have software on their computers that tracks and reports information on their Internet usage to a third party. Typically, a spyware program secretly gathers user information and spreads it without the users knowledge of it. Once in stalled, the spyware monitors, e.g., user activity on the Internet and transmits that information in the background to third parties, such as advertising companies. In reality, spyware run constantly, even when their carrier program, e.g., a file-sharing tool, has been terminated.A more or less legal grey area is utilised by the spyware actors, since in most program licenses they specify that information may be gathered for corporate purposes. However, the usual model is to collect more information than they have asked for (Townsend 2003). Besides this, most license agreements are been explicate in such a way that the reader finds it extensively hard for users to understand.2.5 SPYWARE INFECTION METHODSpyware infects its victims through many different ways. The most common of these ways include drive-by download, P2P wrecks havoc, free software download, social engineering and photograph route.2.5.1 Drive-by downloadsThis is a program that is mechanically downloaded to users comput er, often without the users knowledge. The download may be initiated when the user visits a website or by another application. Drive by downloads can also be initiated by Mouse Over downloads, requiring a user to run the mouse over a malicious Pop-up ad or malicious pop-up window.Another scenario is when the user visits a website that pops up a window with a message like in order to correctly view this website you must install this program. The transfer / HTTP Get request will initiate the download of the software onto the client machine. Installation will be performed by the user and during this installation they will be asked permission to install the malware as well as the software.Internet adventurer uses ActiveX controls for installing accepted plug-ins like Flash, to enhance the browsers functionality and provide synergetic programs for Internet Explorer. When misused, it provides a elbow room for installing spyware such as dialers, browser hijackers, and other types of malware. ActiveX programs can automatically download to a users computer, often without users knowledge. It can be invoked from web pages through the use of a scripting language or directly with an HTML OBJECT tag. On execution by a web browser, it has full access to the Windows operating system and does not run in a sandbox. Depending on browser security settings, the browser application may display a security warning to either stop or continue the installation. The warning may not offer a proper description of the program, and usually is misleading or could be mask by other delusory dialog boxes. sometimes No is not taken for an answer, and repeated attempts are made to get the user to adore and download the application. ActiveX controls can be signed or unsigned. Signed ActiveX controls are automatically installed while browsing the web, and are used by spyware applications. A signed ActiveX control only verifies that the code or control was from the signatory and that it has not been altered however, it may still be malicious (Shanmuga 2005).2.5.2 P2P Wrecks mayhemMost of the spyware comes bundled with other popular programs that are that are free, also through most of the peer-to-peer networks like Kazaa, Bearshare, Limewire among others. They install malware in the machine as part of the P2P installation process. The P2P application may not function if these components are not installed. These free versions generate ad receipts for their publishers, causing pop-ups and sending information to affiliate networks for data gathering or data mining.Applications such as Cydoor, New.net, TopText, SaveNow, Webhancer, VX2, CommonName, GetNet/ClearSearch, IncrediFind and OnFlow are among the few applications that are installed this way and may serve up ad banners and ad messages, or track your Internet surfing habits. Unfortunately, the makers of the armament programs try not to advertise their programs hidden payloads. Reading the licensing agreement (care fully) during installation will often break down embedded licenses for the piggybacking adware (Shanmuga 2005).2.5.3 Software free web downloadSome of the softwares that they claim is free in the internet, when you download and install them, at the same time you will be installing a secondary program. This secondary program is a spyware. It will monitor your activity and report to a third party or a commutation database. If the user notices the spyware and score outs it, but didnt delete the software, whenever the system online, the software will download the spyware application and install it again.This kind of infection often occurs when the use fails to read the license agreement. In other cases, the license agreement is twisted in such a way that the user will not understand it (Shanmuga 2005).2.5.4 Social engineeringSometimes when users browse the web, they may receive offers for nonindulgent programs or special plug-ins that may be described as undeniable for viewing the s ite. These voluntary but covert and unintentional installations are one source of spyware. Some of these offers are made to appear like a Windows alert from Microsoft or an anti-spyware application to tricks users into downloading and installing them (Shanmuga 2005).2.5.5 Security holes in internet explorerAnother method of infection is by exploring the security holes in internet explorer. Internet Explorer has had multiple security vulnerabilities, some of which are disclosed by Microsoft with downloadable updates and patches. Some spyware applications take advantage of these holes and install Trojan droppers, which redirect the browser to gate sites. CoolWebSearch (one of the most notorious pests in novel times) and many other spyware are know to take advantage of Internet Explorer security holes. KeenValue, and InternetOptimizer are examples that use Trojan downloader (Shanmuga 2005).2.6 MOBILE gimmick SPYWARESince 2004, spyware has been observed to spread among mobile devices through Bluetooth, infrared light, and other forms of connections like tuner network. According to F-Secure, the number of spyware known to target mobile devices are rough 100 (Hypponen, 2006), as of then. However, others like (Dagon, Martin, and Starner, 2004) believed that spyware will inevitably grow into a serious problem in the future. There had already been some complex, intermingle spyware threats on mobile devices. within a few years, mobile spyware have bounteous in mundaneness in a way reverberative of 20 years of PC spyware evolution. Unfortunately, mobile devices ware not designed for security and they have limited defenses against continually evolving attacks.Mobile devices are agreeable targets for several reasons (Hypponen, 2006a). This is because mobile devices have progressed far in term of ironware and communication. Mobile phones have grown from simple organizer/ communication device to a mini computer with their own operating system (like palm, windows mobile, google phone and so on) that can download and install applications.Another reason for the mobile device attack is because they are well connected. They are capable of internet access for Web browsing, facebooking , emailing, charting and applications same to those in the PCs. They can also communicate by cellular, IEEE 802.11 wireless LAN, short range communication like Bluetooth and infrared for shorter range communication, and multimedia pass on service (MMS).Another reason for mobile spyware attack is the size of the target population. Such large target population is attractive for the spyware and malware writers who want to maximise their impact.2.6.1 Differences to computer spywareThere are three important difference of mobile device security compared to personal computer security (Becher and Freiling 2008).A first difference is the inherent possibility for Spyware to generate costs for the user and revenue to the Spyware author. This problem existed previouslFactor s Influencing the Technical Defensive Measures on SpywFactors Influencing the Technical Defensive Measures on Spyw1.0 INTRODUCTION1.1 PROJECT OUTLINEThe title of the project chosen by the author is Study on the Factors Influencing the Technical Defensive Measures on Spyware in Computers and mobile devices which simply means that the author analyzes the topic through an empirical study. The study focuses on the factors that influence Technical Defensive Measures on Spyware in Computers and mobile devices.Computers and mobile devices are widely used they are used to access the internet, while everyone wants to acquire the internet in todays world. While technology advances, so are the criminal activities on the technology.When talking about computer crime, the first thing that comes to mind is spyware. Spyware is so big of a crime that millions of dollars are lost annually due to it. Hackers use spyware to still private information from the users like credit card information and so on .Although spyware has been here for a long time, it is computer crime with no legal consequence. Users have little or no knowledge about what spyware is and what it can do to them and their machines (computers and mobile devises).Even though virus has been around longer than spyware, but spyware is beginning to make its mark with computer security breaches. Spyware can collect personal data from a users computer. If not taken care of spyware can cause delayed processing of many of your applications.Below are the brief descriptions of each chapterChapter one IntroductionThis chapter provides a brief overview of the project. It provides the reader with the background information about spyware and the problem statement. The research questions, limitations and methodology are also discussed in this chapter.Chapter two Literature ReviewThis chapter mainly deals with the pertinent literature of the spyware and discussion on the various types of spyware effect and the comparison between th e mobile spyware and the computer spyware. Lastly, the chapter will also discuss about the factors enhancing spyware growth.Chapter three Research Framework and Hypotheses DevelopmentIn this chapter, the author is going to propose the research framework/model and hypotheses to explore the users perception about privacy, self efficiency, security, legal framework, spyware knowledge and self-efficiency, trust and cost.Chapter four Research MethodologyThis chapter will describe the research design that is used during the research. The chapter will discuss the overall research process. The chapter will also include information on data collection, sampling plan and questionnaire development.Chapter five Data Analysis and FindingsThis chapter will outline the data collected through questionnaire and interviews by making use of the appropriate software and analysis of the study. The chapter will also provide discussion of the research findings.Chapter six Conclusion and RecommendationThis chapter will discuss about the result of the previous chapter the contribution of the study to the body knowledge. Conclusion along with future enhancement will also be discussed in the chapter. This chapter concludes the research.1.2 INTRODUCTIONThis chapter is meant to give the user/reader helpful idea and an insight to the whole research. Most readers will like to get a grasp of the main ideas of a research paper before actually proceeding to read the whole research. This chapter clearly states the primary objective of the research and the main problem which is been researched. The backgrounds and nature of the study are also highlight the purpose of the research. Several books and journals have been read by the author so as to have foundation knowledge on the concept of spyware.Spyware is a significant problem to most computer users today. The term spyware describes a new class of computer software. This software tracks users activities online or offline, provides targeted adver tising, and engage in other types of activities that the user does not desire or the user may describe as invasive to them. Analysis suggests that these types of programs may reside on up to 90 percent (%) of all the computers connected to the internet (EarthLink 2005).Frequently, programs bundle spyware with freeware or shareware, though it can also arrive via email, instant messages or web downloads.While the magnitude of the spyware problem is well documented, even do recent studies have had only limited success in explaining the broad range of user behaviors that contribute to the proliferation of spyware. Unlike viruses and other malicious code, users wont even know that spyware is installed in their systems. This is because some spywares cannot be detected by most anti-viruses and anti spyware that we have today. Anecdotal evidence suggests, and our study confirms, that some users are willing to install spyware when the desired application is of perceived high utility and a co mparable product without spyware is not available or known to the user (Michelle Delio, 2004). The authors goal in this study is to understand the factors and users decision making process that leads to technical defensive measures.During installation, users are presented with notices such as software agreements, terms of service (TOS), end user licensing agreements (EULA), and security warnings. Based on information in these notices, users should, in theory, be able to make a decision about whether to install the software and evaluate the potential consequences of that decision. However, there is a general perception that these notices are ineffective and users often dont even read the software agreement, terms of service, end user licensing or security warnings. One software provider included a $1000 cash prize offer in the EULA that was displayed during each software installation, yet the prize was only claimed after 4 months and 3,000 downloads of the software (PC PitStop 2005). 1.3 BACKGROUND STUDYSpyware has existed at least since the late 1980s when some Keyloggers where discovered in some university computers. The word spyware was first used in publicly in October 1995. It popped up on Usenet (a distributed Internet discussion system in which users post e-mail like messages) in an article aimed at Microsofts business model (Shanmuga 2005).Over the years, there has been a steady growth in the use of spyware by online attackers and criminals to execute crime against individual, companies and organisations. In the span of just few years, spyware has become the internets most popular download. During the years, the anti-spyware was developed to tackle this problem. The anti-spyware was meant to find, detect and remove the spyware. But even with the development of anti-spyware, spyware still continues to grow every day. One of the factors that aid this growth is the lack of standard definition of spyware.Jerry Berman, President of the Center for Democracy an d Technology (CDT), explained in testimony to the Subcommittee on Communications of the Senate Commerce, Science, and Transportation Committee in March 2004 that The term has been applied to software ranging from keystroke loggers that capture every key typed on a particular computer to advertising applications that track users web browsing to programs that hijack users system settings. (CDT 2004) He noted that what these various types of software programs have in common is a lack of transparency and an absence of respect for users ability to control their own computers and Internet connections (CDT 2004).Different anti-spyware companies and organizations use different definition which makes even difficult for the users of computers and mobile dont even know what spyware is, as such how can they know the threat of it and the harm it those to their devices1.4 PROBLEM STATEMENTThe problem statement of this research study is does the hypothesized factors influence and positively affect s the users attitude towards spyware?Even do spyware has been here for over two decades, it still does not have a standard definition. This makes it harder for users to understand what spyware is and how it affects their system, and how deep is the level of impact (Norbert 2007).Past studies have been done to study the development of spyware and its growth, how it affects the businesses, privacy and other personal informations of the users, and disrupts the performance of the users machine, and the factors that influence the growth.While the magnitude of the spyware problem is well documented, these studies have had only limited success in explaining the broad range of user behaviors that contribute to the proliferation of spyware. Unlike virus and other malicious codes, users often have the choice to whether they want to install this spyware or not. This situation often arises as a result of users not reading the software agreement, term of service or the end user licensing agreeme nts. While other users install it with other programs without knowing. Nonetheless, only very few studies focus specifically on the factors influencing the Technical Defensive Measures on Spyware in Computers and mobile devices, and most of them were carried out in the United States of America USA.Addressing this problem is a very big issue, because users dont want to spend two to five minutes of their time to read the terms of service. The software producers often put in a lot of information in the terms of service there by making the user not read because it is too lengthy.1.5 RESEARCH QUESTIONSWith reference to the Problem statement, the author suggested the following questionsWhat are the factors influencing Technical Defensive Measures on Spyware among users?What are the theoretical models used and extended in previous research studies of spyware?What are the users reactions towards spyware?How will the research result affect the Factors Influencing the Technical Defensive Meas ures on Spyware on computers and mobile devices?1.6 RESEARCH OBJECTIVESWith reference to the research questions, the author developed the following research objectives for the studyTo identify the factors influencing Technical Defensive Measures on Spyware among users.To study and discuss the theoretical models used and extended in previous research studies of spyware.To better understand the users reaction towards spyware.To discuss the empirical result and the suggestion to promote and reduce the growth of spyware.1.7 NATURE OF STUDYThe author is studying about the Factors Influencing the Technical Defensive Measures on Spyware in both mobile devices and computers, and he will generate some questionnaires which he will use to gather information from the general public.This study was design in such a way that the author and other practitioners will answer questions based on their perspective view. The conceptual model was based on extensive literature review of various theoretical models that is aligned with the technological, network, economical, business and some other dimension. The conceptual model is then converted into research model for validation and testing using data collected from the general public and some network specialist.1.8 SIGNIFICANCE OF STUDYThis study presents two main implications, the theoretical contribution and the practical contribution. The developed model in this study consists of six constructs they are spyware knowledge, perceived privacy control, security effect, self efficiency, legal framework, and trustworthiness and trust in vendors. This model is tested empirically to explain what will lead the users to take technical defensive measures.In practical contribution, the result of this study will also benefit the software vendors, the users of computers and mobile devices, and any other institution will be able to apply the key factors obtained from this research to meet their institutional, organizational or personal needs. T his study will benefit in term of providing the users point of view and it will also contribute to administration decisions as the finding of the research help direct them to the area of focus. The findings will make the contribution in term of creating an understanding on the factors influencing technical defensive measures.1.9 METHODOLOGY OVERVIEWThis research is design in such a way that it was divided in two adopted steps. The steps are the pre-test study and the main study. The pre-test study was the study that was done in the early stages of the research. This involves the literature reviewing of type of spyware, impact of spyware, how spyware affects the machine and so on.The pre-test was conducted to gain a greater understanding about spyware. The pre-test study helps in understanding the topic there by producing the main research questions.The main study will be conducted based on a survey, a questionnaires conducted among users, corporations and some top school in Malaysia . The questionnaire will be use to collect data on some of the identified problems. The collected data will then be analyzed using the appropriate statistic tools.1.10 CONCLUSIONIn conclusion, this chapter introduces the research to the reader by bringing out the background of spyware, the primary objective of the research, also stating the main questions of the research. It also discusses the methodology in summary. In short, this chapter will provides the reader will hopeful idea about the research. The following chapters will further provide the literature review on the Factors Influencing the Technical Defensive Measures on Spyware in our machines and devices.2.0 LITERATURE REVIEW2.1 INTRODUCTIONThis chapter will provide an in-depth detail on spyware as well as the types of spyware. The chapter will also bring out all the possible definitions of spyware, the overview of spyware. The chapter will bring out the possible ways in which spyware operates and it will talk a little abou t the target victims of the spyware. The chapter also talks about mobile device spyware and how it is different of compute spyware. The chapter will also analyze the infection methods of spyware and so on.2.2 DEFINITIONIt is not easy to bring out a standard definition on spyware, which makes it much harder to understand. But the author will bring out all the definitions he can find and also propose/bring his own definition based on his understanding of the spyware. In the definition of spyware, two particular issues must be included for the definition to be complete. But research shows that users only stick to either one of the two when defining spyware. This two issues are always been contested by the users. The two particular issues contested are the range of software behaviour and the degree of user consent that is desirable.Firstly, some users prefer the narrow definition which focuses on the monitoring (Surveillance) aspects of spyware and its ability to steal, communicate and store information about users and their behavior. Others prefer the broad definition that includes adware, toolbars, search tools, hijackers and dialers. Definitions for spyware also include hacker tools for remote access and administration, key logging and cracking passwords.Second, there is limited agreement on the lawfulnessof spyware that engages in behavior such as targeting advertisements, installing programs on user machines and collecting click stream data. Users consider a wide range of programs that present spyware-like functionality unacceptable. To complicate the definition, certain software behaviors are acceptable in some contexts but not others. Furthermore, there is concern over user notice and consentrequired during an installation process. The practice of bundlingsoftware, which merges spyware with unrelated programs, also heightens this concern.Jerry Berman, President of the Center for Democracy and Technology (CDT), explained in testimony to the Subcommittee on C ommunications of the Senate Commerce, Science, and Transportation Committee in March 2004 that The term has been applied to software ranging from keystroke loggers that capture every key typed on a particular computer to advertising applications that track users web browsing to programs that hijack users system settings. (CDT 2004) He noted that what these various types of software programs have in common is a lack of transparency and an absence of respect for users ability to control their own computers and Internet connections (CDT 2004).The author will also like to propose his definition of spyware based on his understanding of the matter. Spyware is a program that is installed in the machine with or without the permission of the user, and it can monitor the activities of the user, steal valuable information from the user and send to a third party and disturb/regulate the functionality of the machine like speed, stability and internet access efficiency.2.3 OVERVIEW2.3.1 Types of spywareBasically any software that can be installed in the users machine which is used to obtains information from their computer or mobile device without their knowledge can be termed as a spyware. There are many types of spyware that are doing the rounds on the Internet, but in technical terms, you can classify them into two broad categories namely, Domestic Spyware and Commercial Spyware (UpickReviews 2007).2.3.1.1 Domestic spywareDomestic spyware is software that is usually purchased and installed by computer owners to monitor the Internet behaviour on their computer networks. Employers usually use this software to monitor employee online activities. Some family members use domestic spyware to monitor other family members, while parents and guardians often use this kind of software to monitor the activities of their children online. Some people use this kind of softwares to spy on their friends and girl friend.In America, many couples often install this kind of software on their partners mobile phone in other to monitor their call. This usually happens when one party thinks the other is cheating on them.A third party can also install domestic spyware without the knowledge of the computer owner on their machine or mobile device. Law enforcement officials have often used domestic spyware to monitor suspected criminal activity and criminals have used domestic spyware to siphon personal information from private computers in order to steal assets (TopTenReviews 2003).Domestic spyware is one of the most common spyware used on mobile devices. This is done to monitor the activity of the target victim i.e calls and SMS.2.3.1.2 Commercial spyware.These types of software systems are often used by third parties to monitor and record the browsing behaviour of the user. The main purpose of it is to monitor the online habits of the user and sell the gathered information to anyone who might be interested. It is often online businesses that buy the information and use it t o hit the user with targeted advertising, i.e. advertisements that relate to your usual Internet browsing habits.Advertisers often use commercial spyware simply because it is far simpler, economical and faster than collecting information through legal means such as contests, questionnaires, registration surveys and the likes. It is also because information gathered by spyware is far more reliable because users often dont cooperate when it comes to filling questionnaire sincerely, while some may accept to do it but they will not give true information when it comes to their private things. Since it represents the users true browsing behaviour, the advertisers go for it. You may take your pick while filling out an online registration form, but you just cannot cheat a spyware because it simply monitors and records all your activities. In the past marketers had to bribe their way to learn the users preferences through contests, registration surveys and the like. Those methods of gaining the users personal information still exist, but in those cases you have the power to read the fine print to learn the fate of your data and so could choose to consent or refuseThere are many types of spyware that are classified under commercial spyware. They are Browser hijackers, adware, Malware, dialers, Trojans and viruses, Worms, etc.2.3.1.2.1 AdwareAdware is the most common type of spyware available. They are cookies which hide on your computer waiting for you to go online. The cookies often get into your computer through popup that you open. Once the adware detects that youre connected to the Internet it starts sending you popup, pop-over, pop-under ads, and some sort of advertisement for anything from airline tickets to porn site membership. Not only that but even information on your viewing habits is tracked and stored. This data is then sold on to marketing companies who will be sending you more junk email and popup ads (Spam-site 2006).2.3.1.2.2 DealersSoftware that gets i nstalled on your computer that has the ability to make phone calls from your computer, though a phone-connected modem, without your knowledge. These programs will connect to other computers, through your phone line, which are usually porn sites. These numbers are pay per minute call though, so you get charged for the amount of time your computer is connected to it.ile dialers do not spy on users they are malevolent in nature because they can cause huge financial harm to their victims. It is mostly used by porn sites. They can also be classified as hijackers (Abrams 2009).2.3.1.2.3 MalwareMalware is malicious software designed specifically to damage users machine. But Malware is typically not self-replicating or designed for PC-to-PC distribution (Pareto 2009).2.3.1.2.4 TrojanTrojan is a program that contains hidden functionality, often posing as useful applications yet performing Spyware or Adware functions and facilitates unauthorized access to the users computer system. The term T rojan horse was found from the mythical wooden horse that carried hidden Greek soldiers into Troy (Pareto 2009).2.3.1.2.5 WormWorms are self-replicating, fast-spreading Internet threats that are more like viruses than Spyware. They differ from viruses in that they can replace entire files on the host computer. Both viruses and worms attempt to spread to as many computers as possible, using e-mail, the Internet, and file-sharing networks as methods of distribution (Pareto 2009).2.4 OPERATIONS OF SPYWAREThe usual method for a spyware to operate is to run secretly in the background of the users computers (McCardle 2003). The reason behind this concealing of processes is commonly argued as that it would hardly be acceptable, e.g., if free file-sharing software kept stopping to ask the user if they are ready to fetch a new banner or a pop-up window (Townsend 2003). Therefore, the client/server routine of spyware is normally executed in the background. In practice, there would be nothing wrong with spyware running in the background provided that the users know that it is happening, what data is being transmitted, and that they have agreed to the process as part of the conditions for obtaining the freeware. However, most users are unaware that they have software on their computers that tracks and reports information on their Internet usage to a third party. Typically, a spyware program secretly gathers user information and spreads it without the users knowledge of it. Once installed, the spyware monitors, e.g., user activity on the Internet and transmits that information in the background to third parties, such as advertising companies. In reality, spyware run constantly, even when their carrier program, e.g., a file-sharing tool, has been terminated.A more or less legal grey area is utilized by the spyware actors, since in most program licenses they specify that information may be gathered for corporate purposes. However, the usual model is to collect more informati on than they have asked for (Townsend 2003). Besides this, most license agreements are been formulated in such a way that the reader finds it extensively hard for users to understand.2.5 SPYWARE INFECTION METHODSpyware infects its victims through many different ways. The most common of these ways include drive-by download, P2P wrecks havoc, free software download, social engineering and vulnerability route.2.5.1 Drive-by downloadsThis is a program that is automatically downloaded to users computer, often without the users knowledge. The download may be initiated when the user visits a website or by another application. Drive by downloads can also be initiated by Mouse Over downloads, requiring a user to run the mouse over a malicious Pop-up ad or malicious pop-up window.Another scenario is when the user visits a website that pops up a window with a message like in order to properly view this website you must install this program. The FTP / HTTP Get request will initiate the download of the software onto the client machine. Installation will be performed by the user and during this installation they will be asked permission to install the malware as well as the software.Internet Explorer uses ActiveX controls for installing legitimate plug-ins like Flash, to enhance the browsers functionality and provide interactive programs for Internet Explorer. When misused, it provides a means for installing spyware such as dialers, browser hijackers, and other types of malware. ActiveX programs can automatically download to a users computer, often without users knowledge. It can be invoked from web pages through the use of a scripting language or directly with an HTML OBJECT tag. On execution by a web browser, it has full access to the Windows operating system and does not run in a sandbox. Depending on browser security settings, the browser application may display a security warning to either stop or continue the installation. The warning may not offer a proper descriptio n of the program, and usually is misleading or could be masked by other deceptive dialog boxes. Sometimes No is not taken for an answer, and repeated attempts are made to get the user to approve and download the application. ActiveX controls can be signed or unsigned. Signed ActiveX controls are automatically installed while browsing the web, and are used by spyware applications. A signed ActiveX control only verifies that the code or control was from the signer and that it has not been altered however, it may still be malicious (Shanmuga 2005).2.5.2 P2P Wrecks HavocMost of the spyware comes bundled with other popular programs that are that are free, also through most of the peer-to-peer networks like Kazaa, Bearshare, Limewire among others. They install malware in the machine as part of the P2P installation process. The P2P application may not function if these components are not installed. These free versions generate ad revenue for their publishers, causing pop-ups and sending in formation to affiliate networks for data aggregation or data mining.Applications such as Cydoor, New.net, TopText, SaveNow, Webhancer, VX2, CommonName, GetNet/ClearSearch, IncrediFind and OnFlow are among the few applications that are installed this way and may serve up ad banners and ad messages, or track your Internet surfing habits. Unfortunately, the makers of the host programs try not to advertise their programs hidden payloads. Reading the licensing agreement (carefully) during installation will often reveal embedded licenses for the piggybacking adware (Shanmuga 2005).2.5.3 Software free web downloadSome of the softwares that they claim is free in the internet, when you download and install them, at the same time you will be installing a secondary program. This secondary program is a spyware. It will monitor your activity and report to a third party or a central database. If the user notices the spyware and deletes it, but didnt delete the software, whenever the system online , the software will download the spyware application and install it again.This kind of infection often occurs when the use fails to read the license agreement. In other cases, the license agreement is twisted in such a way that the user will not understand it (Shanmuga 2005).2.5.4 Social engineeringSometimes when users browse the web, they may receive offers for corrective programs or special plug-ins that may be described as necessary for viewing the site. These voluntary but covert and unintentional installations are one source of spyware. Some of these offers are made to appear like a Windows alert from Microsoft or an anti-spyware application to tricks users into downloading and installing them (Shanmuga 2005).2.5.5 Security holes in internet explorerAnother method of infection is by exploring the security holes in internet explorer. Internet Explorer has had multiple security vulnerabilities, some of which are disclosed by Microsoft with downloadable updates and patches. Some s pyware applications take advantage of these holes and install Trojan droppers, which redirect the browser to portal sites. CoolWebSearch (one of the most notorious pests in recent times) and many other spyware are known to take advantage of Internet Explorer security holes. KeenValue, and InternetOptimizer are examples that use Trojan downloader (Shanmuga 2005).2.6 MOBILE DEVICE SPYWARESince 2004, spyware has been observed to spread among mobile devices through Bluetooth, infrared, and other forms of connections like wireless network. According to F-Secure, the number of spyware known to target mobile devices are approximate 100 (Hypponen, 2006), as of then. However, others like (Dagon, Martin, and Starner, 2004) believed that spyware will inevitably grow into a serious problem in the future. There had already been some complex, blended spyware threats on mobile devices. Within a few years, mobile spyware have grown in sophistication in a way reminiscent of 20 years of PC spyware ev olution. Unfortunately, mobile devices ware not designed for security and they have limited defenses against continually evolving attacks.Mobile devices are attractive targets for several reasons (Hypponen, 2006a). This is because mobile devices have progressed far in term of hardware and communication. Mobile phones have grown from simple organizer/ communication device to a mini computer with their own operating system (like palm, windows mobile, google phone and so on) that can download and install applications.Another reason for the mobile device attack is because they are well connected. They are capable of internet access for Web browsing, facebooking , emailing, charting and applications similar to those in the PCs. They can also communicate by cellular, IEEE 802.11 wireless LAN, short range communication like Bluetooth and infrared for shorter range communication, and multimedia messaging service (MMS).Another reason for mobile spyware attack is the size of the target popula tion. Such large target population is attractive for the spyware and malware writers who want to maximize their impact.2.6.1 Differences to computer spywareThere are three important difference of mobile device security compared to personal computer security (Becher and Freiling 2008).A first difference is the inherent possibility for Spyware to generate costs for the user and revenue to the Spyware author. This problem existed previousl