Detecting And Preventing Phishing Websites Dppws

Abstract

The Internet is a rich source of information As technology newlineadvances dependence on the Internet has become inevitable in every phase of newlinelife As Internet applications proliferate there is also a growing fear of newlinethreats and a need to address security related issues Many web application newlinethreats are there in the Internet domain that try to steal the users sensitive newlineinformation or alter the web servers database or destroy the credibility of a newlineparticular web application Some of the top most security threats include newlineDenial of Service attacks Session Hijacking attempts CrossSite Scripting newlineXSS Phishing and Buffer Overflow Of these phishing is a technique of newlinetricking people into giving sensitive information like usernames and newlinepasswords credit card details and sensitive bank information by way of email newlinespoofing instant messaging or fake web sites whose look and feel give the newlineappearance of a legitimate one Some of the important types of phishing are newlinedeceptive phishing malware based phishing host file poisoning content newlineinjection phishing maninthe middle phishing and search engine phishing newlineSince phishing causes great damage there is a need to employ newlineprocedures to detect and prevent phishing Currently there are several ways newlinefor detecting phishing; some of the methods are blacklist and whitelist visual newlinesimilarity and content based approaches and detecting Email phishing newlineAgainst this background in this thesis an improved architecture for newlineDetecting and Preventing Phishing websites DPPWS is designed for a multistage newlinedetection method which provides two different analyses including newlineclient side and server side techniques The client side phishing detection newlineconsists of three stages of filtering techniques such as URL verification newlineparse tree validation and the behavioral model approach Server side phishing newlinedetection consists of onetime password mechanism watermarking and newlinepreventing phishing through session hijacking and detecting email phishing newline newline