Custom Plugin - A Solution to Phishing and Pharming Attacks

13 years 5 months ago
Custom Plugin - A Solution to Phishing and Pharming Attacks
- This paper proposes a new method to detect, alert and protect the user from Internationalized Domain Names [1] (IDN) and Uniform Resource Locator (URL) spoofing, phishing, pharming and man-in-themiddle attacks by validating the site before the user actually enters the personal details. The suggested method is based on the use of a browser plugin which enables the user to validate the website which provides visual feedback. In case of pharming, where Domain Name System (DNS) is hijacked, the plugin automatically notifies the user of possible attack, posts the attack information to the server and redirects the user to legitimate website. SSL/TLS [2] certificates are also automatically checked, verified and validated by the plugin in order to check for man-in-the-middle and pharming attacks.
Omer Mahmood
Added 30 Oct 2010
Updated 30 Oct 2010
Type Conference
Year 2006
Authors Omer Mahmood
Comments (0)