Light Weight Anti-Phishing with User Whitelisting in a Web Browser
暂无分享,去创建一个
Phishing often causes more financial damages to enterprises and users than virus and worms. Proposed techniques so far mostly are to provide protection for the banks or other enterprise corporations and/or require changes in Web servers. Regular home users are left without protection against phishing, other than the traditional rudimentary email filtering. Furthermore, security toolbars on browsers have been shown to be not effective. In this paper, we propose a light-weight user white list technique to provide protection for home users. We argue that for home users, white listing is advantageous over blacklisting, a popular technology. We show it is effective and efficient while imposing little burden on users and requiring no modification of servers.
[1] J. Doug Tygar,et al. The battle against phishing: Dynamic Security Skins , 2005, SOUPS '05.
[2] Min Wu,et al. Do security toolbars actually prevent phishing attacks? , 2006, CHI.
[3] Min Wu,et al. Web wallet: preventing phishing attacks by revealing user intentions , 2006, SOUPS '06.
[4] Marti A. Hearst,et al. Why phishing works , 2006, CHI.