An Enterprise Anti-phishing Framework
نویسندگان
چکیده
The objective of this paper is to report back on an organizational framework, which consisted of human, organization and technology (HOT) dimensions in holistically addressing aspects associated with phishing. Most anti-phishing literature studied either focused on technical controls or education in isolation however; education is core to all aspects in the above-mentioned framework. It is evident, from literature, that little work has been conducted on anti-phishing preventative measures in the context of organizations but rather from a personal user-level. In the framework, the emphasis is placed on the human factors in addressing phishing attacks.
منابع مشابه
Enhancing Predictive Analytics for Anti-Phishing by Exploiting Website Genre Information
Phishing websites continue to successfully exploit user vulnerabilities in household and enterprise settings. Existing anti-phishing tools lack the accuracy and generalizability needed to protect Internet users and organizations from the myriad of attacks encountered daily. Consequently, users often disregard these tools’ warnings. In this study, using a design science approach, we propose a no...
متن کاملUnveiling the Mask of Phishing: Threats, Preventive Measures, and Responsibilities
Phishing, a new-rise identity fraud of this century has already caused huge financial loss and social disorder. This paper provides an overview of the evolution and forecasted trend of phishing activities with detailed analysis on common phishing features, proliferation channels, relevant anti-phishing measures, related legislation, and an anti-phishing framework from the perspective of social ...
متن کاملPoster: Towards a Model for Analysing Anti-Phishing Authentication Ceremonies
Phishing uses both social engineering and technical means to carry out attacks. Therefore, human factors incorrect human trust decisions play an important role in phishing. Many online authentication techniques place a disproportional burden on human abilities. Assumptions made about human-protocol behaviour are often flawed. In our approach we use the concept of a ceremony to analyse and impro...
متن کاملAnti phishing Framework using a Modified captcha technique
Phishing is a technique of the fraudulent by creating exact look-a-like well known portal and making the possibility such that the users are navigated to phishing portal rather than the original portal and capturing the sensitive data like usernames, passwords etc. with the advantage of phishing portal and misusing the information. Many have proposed the solution for anti-Phishing area and thei...
متن کاملIntelligent Security for Phishing Online using Adaptive Neuro Fuzzy Systems
Anti-phishing detection solutions employed in industry use blacklist-based approaches to achieve low falsepositive rates, but blacklist approaches utilizes website URLs only. This study analyses and combines phishing emails and phishing web-forms in a single framework, which allows feature extraction and feature model construction. The outcome should classify between phishing, suspicious, legit...
متن کامل