期刊名称:International Journal of Computer Science & Technology
印刷版ISSN:2229-4333
电子版ISSN:0976-8491
出版年度:2013
卷号:4
期号:1
页码:657-659
语种:English
出版社:Ayushmaan Technologies
摘要:Phishing is a routine method of online identity theft and virusspreading using forged web pages. For phishing detection andprevention, previously a new methodology to detect the phishingwebsite based on the Anti-Phishing Image Captcha validationscheme using visual cryptography is proposed. It prevents leakageof password and other confdential information to the phishingwebsites. Prior systems used visual cryptographic schemes tocounter phishing pages where one secret captcha image shareresides with user and the other secret shares reside in server.During authentication a genuine server forwards its share andthe user forwards his share resulting in a secured access to thesystem via a reconstructed captcha. The reconstructed captchaalways happens to be same and is prone to character recognitionbased attacks. To overcome this problem we propose to use visualcryptographic schemes to counter phishing and an interactivecaptcha to counter character recognition based attacks. Byrecording CAPTCHA solving time on a per-character basis, wepropose to use Single Slow Response Detection Algorithm, TwoConsecutive Slow Responses Detection Algorithm, and DynamicDetection Threshold Algorithms for CAPTCHA enables a serverdetect and reject 3rd party human attacks in ways not possiblewith existing CAPTCHAs. Combined with visual cryptographicschemes, slow response and dynamic activity detection algorithmsalong with round trip mechanisms using ajax procedures we offer adynamic captcha that can thwart all possible authentication threats.A practical implementation of the proposed system validates ourclaim.
