Title :
Humboldt: A distributed phishing disruption system
Author :
Knickerbocker, Paul ; Yu, Dongting ; Li, Jun
Author_Institution :
Dept. of Comput. & Inf. Sci., Univ. of Oregon, Eugene, OR, USA
fDate :
Sept. 20 2009-Oct. 21 2009
Abstract :
Conventional techniques for combating phishing have focused primarily on detecting phishing web sites and preventing users from revealing their passwords to such sites. This passive form of defense is by its nature incomplete and does nothing to protect users that do reveal their passwords. Combating the phishing threat requires more than simple avoidance-it requires a more active approach to disrupting even successful phishing operations. Humboldt is a distributed system that submits poisonous fake data to phishing web sites that is indistinguishable from the input of actual phishing victims. The poisonous data collected by a phisher produces detectable behaviors when the phisher attempts to use it and provides a mechanism for tracking activities associated with identity theft. We evaluate Humboldt to show that it is effective in disrupting phishing operations with a reasonably low overhead.
Keywords :
Web sites; computer crime; distributed processing; distributed phishing disruption system; phishing Web site detection; phishing victims; poisonous fake data; Computer crime; Databases; Distributed computing; Filtering; Information science; Information security; Internet; Pollution; Protection; Web pages; Humboldt; active phishing defense; phishing;
Conference_Titel :
eCrime Researchers Summit, 2009. eCRIME '09.
Conference_Location :
Tacoma, WA
Print_ISBN :
978-1-4244-4625-4
DOI :
10.1109/ECRIME.2009.5342620
