...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>International Journal of Information and Communication Technology Research >Phishing Websites Detection based on Phishing Characteristics in the Webpage Source Code
【24h】

Phishing Websites Detection based on Phishing Characteristics in the Webpage Source Code

机译:基于网页中网络钓鱼特征的网络钓鱼网站检测

获取原文
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

World Wide Web Consortium (W3C) is the international standards organization for the World Wide Web (www). It develops standards, specifications and recommendations to enhance the interoperability and maximize consensus about the content of the web and define major parts of what makes the World Wide Web work. Phishing is a type of Internet scams that seeks to get a user's credentials by fraud websites, such as passwords, credit card numbers, bank account details and other sensitive information. There are some characteristics in webpage source code that distinguish phishing websites from legitimate websites and violate the w3c standards, so we can detect the phishing attacks by check the webpage and search for these characteristics in the source code file if it exists or not. In this paper, we propose a phishing detection approach based on checking the webpage source code, we extract some phishing characteristics out of the W3C standards to evaluate the security of the websites, and check each character in the webpage source code, if we find a phishing character, we will decrease from the initial secure weight. Finally we calculate the security percentage based on the final weight, the high percentage indicates secure website and others indicates the website is most likely to be a phishing website. We check two webpage source codes for legitimate and phishing websites and compare the security percentages between them, we find the phishing website is less security percentage than the legitimate website; our approach can detect the phishing website based on checking phishing characteristics in the webpage source code.
机译:万维网联盟(W3C)是万维网(www)的国际标准组织。它制定标准,规范和建议,以增强互操作性并最大程度地就Web内容达成共识,并定义使万维网工作的主要部分。网络钓鱼是一种Internet骗局,旨在通过欺诈网站获取用户的凭据,例如密码,信用卡号,银行帐户详细信息和其他敏感信息。网页源代码中有一些特征会将网络钓鱼网站与合法网站区分开并违反w3c标准,因此我们可以通过检查网页并在源代码文件中查找这些特征(如果不存在)来检测网络钓鱼攻击。在本文中,我们提出了一种基于检查网页源代码的网页仿冒检测方法,从W3C标准中提取一些网页仿冒特征,以评估网站的安全性,并检查网页仿冒源代码中的每个字符(如果发现)。网络钓鱼字符,我们将从初始安全权重中减少。最后,我们根据最终权重计算安全百分比,高百分比表示安全的网站,其他百分比表示该网站最有可能是网络钓鱼网站。我们检查了合法和仿冒网站的两个网页源代码,并比较它们之间的安全百分比,发现仿冒网站的安全百分比低于合法网站;我们的方法可以通过检查网页源代码中的网络钓鱼特征来检测网络钓鱼网站。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号