Real-Time Client-Side Phishing Prevention

Thumbnail Image

Files

master_armano_giovanni_2017.pdf (4.71 MB)

URL

Journal Title

Journal ISSN

Volume Title

Perustieteiden korkeakoulu | Master's thesis
Unless otherwise stated, all rights belong to the author. You may download, display and print this publication for Your own personal use. Commercial use is prohibited.

Authors

Date

2016-08-24

Department

Major/Subject

Tietoliikenneohjelmistot

Mcode

T3005

Degree programme

Master’s Programme in Computer, Communication and Information Sciences

Language

en

Pages

76 + 13

Series

Abstract

In the last decades researchers and companies have been working to deploy effective solutions to steer users away from phishing websites. These solutions are typically based on servers or blacklisting systems. Such approaches have several drawbacks: they compromise user privacy, rely on off-line analysis, are not robust against adaptive attacks and do not provide much guidance to the users in their warnings. To address these limitations, we developed a fast real-time client-side phishing prevention software that implements a phishing detection technique recently developed by Marchal et al. It extracts information from the visited webpage and detects if it is a phish to warn the user. It is also able to detect the website that the phish is trying to mimic and propose a redirection to the legitimate domain. Furthermore, to attest the validity of our solution we performed two user studies to evaluate the usability of the interface and the program's impact on user experience.

Description

Supervisor

Asokan, N

Thesis advisor

Marchal, Samuel

Keywords

phishing, prevention, security, privacy

Other note

Citation

Permanent link to this item

https://urn.fi/URN:NBN:fi:aalto-201608263130

Collections

[dipl] Perustieteiden korkeakoulu / SCI