A Novel Anti Phishing Framework Based On Visual Cryptography

James, Divya

doi:10.5121/ijdps.2012.3117

Cited by 7 publications

(4 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Ransomware, in their first report published in 2015, the Cyber Threat Security Alliance (2015) [14] introduced the following definition of ransomware. They said that, "Ransomware is a type of malware that encrypts a victims files and subsequently demands payment in return for the key that can decrypt said files.…”

Section: Ransomwarementioning

confidence: 99%

Cost Benefits of Using Machine Learning Features in NIDS for Cyber Security in UK Small Medium Enterprises (SME)

et al. 2021

View full text Add to dashboard Cite

Cyber security has made an impact and has challenged Small and Medium Enterprises (SMEs) in their approaches towards how they protect and secure data. With an increase in more wired and wireless connections and devices on SME networks, unpredictable malicious activities and interruptions have risen. Finding the harmony between the advancement of technology and costs has always been a balancing act particularly in convincing the finance directors of these SMEs to invest in capital towards their IT infrastructure. This paper looks at various devices that currently are in the market to detect intrusions and look at how these devices handle prevention strategies for SMEs in their working environment both at home and in the office, in terms of their credibility in handling zero-day attacks against the costs of achieving so. The experiment was set up during the 2020 pandemic referred to as COVID-19 when the world experienced an unprecedented event of large scale. The operational working environment of SMEs reflected the context when the UK went into lockdown. Pre-pandemic would have seen this experiment take full control within an operational office environment; however, COVID-19 times has pushed us into a corner to evaluate every aspect of cybersecurity from the office and keeping the data safe within the home environment. The devices chosen for this experiment were OpenSource such as SNORT and pfSense to detect activities within the home environment, and Cisco, a commercial device, set up within an SME network. All three devices operated in a live environment within the SME network structure with employees being both at home and in the office. All three devices were observed from the rules they displayed, their costs and machine learning techniques integrated within them. The results revealed these aspects to be important in how they identified zero-day attacks. The findings showed that OpenSource devices whilst free to download, required a high level of expertise in personnel to implement and embed machine learning rules into the business solution even for staff working from home. However, when using Cisco, the price reflected the buy-in into this expertise and Cisco’s mainframe network, to give up-to-date information on cyber-attacks. The requirements of the UK General Data Protection Regulations Act (GDPR) were also acknowledged as part of the broader framework of the study. Machine learning techniques such as anomaly-based intrusions did show better detection through a commercially subscription-based model for support from Cisco compared to that of the OpenSource model which required internal expertise in machine learning. A cost model was used to compare the outcome of SMEs’ decision making, in getting the right framework in place in securing their data. In conclusion, finding a balance between IT expertise and costs of products that are able to help SMEs protect and secure their data will benefit the SMEs from using a more intelligent controlled environment with applied machine learning techniques, and not compromising on costs.

show abstract

Section: Ransomwarementioning

confidence: 99%

Cost Benefits of Using Machine Learning Features in NIDS for Cyber Security in UK Small Medium Enterprises (SME)

et al. 2021

View full text Add to dashboard Cite

show abstract

“…A visual cryptography technique has been used to prevent phishing attacks in the work of James and Philip. 25 In this method, the user is requested to enter an arbitrary string in the registration step. A captcha is generated using the given string that should be memorized by the user.…”

Section: Of 11mentioning

confidence: 99%

“…* Other approaches involve users in the anti-phishing process or make them uncomfortable. [25][26][27] Some other methods are dependent to search engines and it is not efficient. 9,10,13,14 On the other hand, relying on online resources, eg, search engines, and context analysis for detecting phishing consumes high amount of network and computation power, respectively.…”

Section: Motivationmentioning

confidence: 99%

See 1 more Smart Citation

Preventing phishing attacks using text and image watermarking

Hajiali

Amirmazlaghani

Kordestani

2018

Concurrency and Computation

View full text Add to dashboard Cite

Summary Phishing is a form of identity theft used to illegally gather personal and financial information by providing fake web pages designed to mimic the website of a legitimate business. In this paper, we propose a novel anti‐phishing approach based on using imperceptible watermarking and monitoring the HTTP requests. In the server‐side, a URL dependent watermark is generated and embedded in the elements of the web page, which are logo image and HTML/CSS files. In the client side, to authenticate the website and check its safety, the watermark is regenerated and compared with the extracted watermarks from the elements of the webpage. Security analysis of the proposed method demonstrates its robustness against some common attacks. The proposed method performs fully automatically and without user interaction. It can be simply implemented and used for all kinds of websites, either secured or not secured with SSL protocol.

show abstract