Laboratory Design For Demonstrating Phishing
نویسندگان
چکیده
Hands-on laboratory exercises are a very important component of computer security and information assurance education. This paper reports the laboratory exercises we designed to demonstrate two ways of conducting phishing attack: 1) Embedding a hyperlink in a fake email which redirects the victim to a fake website; 2) Using ARP cache poisoning to redirect web access to a fake website. The two ways of carrying out phishing are compared and the defense techniques against phishing attacks are discussed. The laboratory exercises are designed to be used in an undergraduate-level introductory computer security course. The laboratory exercises have been used in a Computer System Security course with very positive results.
منابع مشابه
Submitted in partial fulfillment of the requirements for
Phishing is a kind of attack in which criminals use spoofed emails and fraudulent web sites to trick people into giving up personal information. This thesis looks at the phishing problem holistically by examining various stakeholders and their countermeasures, and by surveying experts’ opinions about the current and future threats and the kinds of countermeasures that should be put in place. It...
متن کاملPhishing website detection using weighted feature line embedding
The aim of phishing is tracing the users' s private information without their permission by designing a new website which mimics the trusted website. The specialists of information technology do not agree on a unique definition for the discriminative features that characterizes the phishing websites. Therefore, the number of reliable training samples in phishing detection problems is limited. M...
متن کاملA Box-Behnken experimental design for microwave assisted extraction optimization of pectin from citron peel
Microwave assisted extraction technique was employed to extract pectin from citron peel. Box-Behnken design was applied to investigate the influence of irradiation time, microwave power and pH on the yield and DE of pectin. The finding indicated that the optimal conditions for the maximum yield of pectin (30.71%) were achieved at irradiation time of 3 min, microwave power of 700 W and pH of 1.5...
متن کاملطراحی سیستم خبره به منظور تشخیص حملههای فیشینگ در بانکداری الکترونیکی
In e-commerce and e-banking environments, one of the most risks or challenges which must be considered, is the risk of online fraud specially phishing attacks. In this study, we use some visual and technical identifies of a phishing web site as parameters to implement an expert system to diagnose this type of attack in electronic banking. In the proposed system, we use 27 different features as ...
متن کاملDesigning a Mobile Game for Home Computer Users to Protect Against Phishing Attacks
This research aims to design an educational mobile game for home computer users to prevent from phishing attacks. Phishing is an online identity theft which aims to steal sensitive information such as username, password and online banking details from victims. To prevent this, phishing education needs to be considered. Mobile games could facilitate to embed learning in a natural environment. Th...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2009