Anti-phishing as a web-based user service

Cranston, C. and Weir, G.R.S. (2006) Anti-phishing as a web-based user service. In: Proceedings of e-commerce 2006, 2006-12-09 - 2006-12-11.

[thumbnail of strathprints003141.pdf]
Preview
PDF. Filename: strathprints003141.pdf
Download (106kB)| Preview

Abstract

This paper describes the recent phenomenon of phishing, in which email messages are sent to unwitting recipients in order to elicit personal information and perpetrate identity theft and financial fraud. A variety of existing techniques for addressing this problem are detailed and a novel approach to the provision of phishing advice is introduced. This takes the form of a Web-based user-service to which users may forward suspect email messages for inspection. The Anti- Phishing Web Service rates the suspect email and provides a Web-based report that the submitter may view. This approach promises benefits in the form of added security for the end-user and insight on the factors that are most revealing of phishing attacks.