碩士 / 國立臺灣海洋大學 / 資訊工程學系 / 98 / Phishing is now a serious threat to the security of Internet users' confidential information. Basically, an attacker (phisher) tricks people into divulging sensitive information by sending fake messages to a large number of users at random. Unsuspecting users who follow the instruction in the messages are directed to well-built spoofed web pages and asked to provide sensitive information, which the phisher then steals. Statistics published by the anti-phishing working group (APWG) show that, at June 2009, the number of detected phishing web pages had increased by 80% over January in the same year. Therefore, protecting users from phishing attacks is extremely important.
Existing anti-phishing solutions detect mimicked phishing pages by either text-based features or visual similarities of web pages. The former one can be bypassed using image based phishing attacks while the latter one may suffer from great variants of phishing pages. In this thesis, we propose a novel technique that identifies the real domain name of a visiting web page based on signatures created for this web site. Site signatures, including URL, title, context and common image block, can be systematically generated by analyzing common parts from pages of a web site. The result shows the proposed method achieves a high accuracy and low error rate.
| Identifer | oai:union.ndltd.org:TW/098NTOU5394022 |
| Date | January 2010 |
| Creators | Wei-Lin Yeh, 葉瑋霖 |
| Contributors | Chun-Ying Huang, 黃俊穎 |
| Source Sets | National Digital Library of Theses and Dissertations in Taiwan |
| Language | zh-TW |
| Detected Language | English |
| Type | 學位論文 ; thesis |
| Format | 42 |
Page generated in 0.0025 seconds