English  |  正體中文  |  简体中文  |  Items with full text/Total items : 28611/40649
Visitors : 626497      Online Users : 83
RC Version 4.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Adv. Search

Please use this identifier to cite or link to this item: http://ntour.ntou.edu.tw:8080/ir/handle/987654321/27927

Title: Mitigate Web Phishing Using Site Signatures
Authors: Chun-Ying Huang;Shang-Pin Ma;Wei-Lin Yeh;Chia-Yi Lin;Chien-Tsung Liu
Contributors: NTOU:Department of Computer Science and Engineering
Keywords: Anti-Phishing;Feature Selection;Image Extraction;Site Signature;URL Redirection
Date: 2010
Issue Date: 2011-10-21T02:34:31Z
Publisher: TENCON 2010 - 2010 IEEE Region 10 Conference
Abstract: Abstract:Phishing is now a serious threat to the security of Internet users' confidential information. Basically, an attacker (phisher) tricks people into divulging sensitive information by sending fake messages to a large number of users at random. Unsuspecting users who follow the instruction in the messages are directed to well-built spoofed web pages and asked to provide sensitive information, which the phisher then steals. Statistics published by the anti-phishing working group (APWG) show that, at the end of Q2 in 2008, the number of malicious web pages designed to steal users' confidential information had increased by 258% over the same period in 2007. Therefore, protecting users from phishing attacks is extremely important. Existing anti-phishing solutions detect mimicked phishing pages by either text-based features or visual similarities of web pages. The former one can be bypassed using image based phishing attacks while the latter one may suffer from great variants of phishing pages. In this paper, we propose a novel technique that identify the real domain name of a visiting web page based on signatures created for web sites. Site signatures, including distinctive texts and images, can be systematically generated by analyzing common parts from pages of a web site. On matching a signature, the domain name of the visiting URL is checked first and then redirected if the domain name is unmatched. The result shows the proposed method achieves a high accuracy and low error rates.
Relation: pp.803-808
URI: http://ntour.ntou.edu.tw/handle/987654321/27927
Appears in Collections:[資訊工程學系] 演講及研討會

Files in This Item:

File Description SizeFormat

All items in NTOUR are protected by copyright, with all rights reserved.


著作權政策宣告: 本網站之內容為國立臺灣海洋大學所收錄之機構典藏,無償提供學術研究與公眾教育等公益性使用,請合理使用本網站之內容,以尊重著作權人之權益。
網站維護: 海大圖資處 圖書系統組
DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback