DocumentCode
1180446
Title
Interface illusions
Author
Levy, Ellas
Volume
2
Issue
6
fYear
2004
Firstpage
66
Lastpage
69
Abstract
Phishing (the act of conning a person into divulging sensitive information) commonly uses legitimate-looking Web sites that mimic the online interface of the institution the attacker is misrepresenting (usually a bank, merchant, or ISP). One way users can tell they are viewing a false Web site is to check the Web browser´s address bar: the URL should match that of the actual institution, barring any vulnerabilities that permit spoofing the address bar or some types of DNS spoofing attack. However, recent phishing scams not only spoof an institution´s Web site but also spoof the browser´s address bar and display the correct URL.
Keywords
Web sites; computer crime; invasive software; online front-ends; user interfaces; URL; Web sites; browser address bar; interface; phishing; spoofing; Automatic control; Computer displays; Computer security; Graphical user interfaces; HTML; Privacy; Rendering (computer graphics); Uniform resource locators; User interfaces; XML; 65; GUI; Web browser attacks; XUL attacks; address-bar spoofing; attacks; event models; hijacking;
fLanguage
English
Journal_Title
Security & Privacy, IEEE
Publisher
ieee
ISSN
1540-7993
Type
jour
DOI
10.1109/MSP.2004.104
Filename
1366123
Link To Document