Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Method and device for identifying phishing websites

A technology for phishing websites and websites, which is applied in the field of network security, and can solve problems such as poor identification of wrong accounts, failure to open, lack of practicability, etc.

Active Publication Date: 2017-10-24
CHINA TELECOM CORP LTD
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] (3) Take some wrong accounts to try: phishing websites have poor ability to identify wrong accounts. Regardless of whether the user enters right or wrong, the general response is the same, including displaying that the page cannot be opened, login is successful, and jump to the regular website, etc.
[0009] The above methods can identify most phishing websites, but they have high requirements for users' security awareness and handling experience, and lack of practicability

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for identifying phishing websites
  • Method and device for identifying phishing websites
  • Method and device for identifying phishing websites

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The present invention will be described more fully hereinafter with reference to the accompanying drawings, in which exemplary embodiments of the invention are illustrated. The exemplary embodiments of the present invention and their descriptions are used to explain the present invention, but do not constitute an improper limitation of the present invention.

[0020] The following description of at least one exemplary embodiment is merely illustrative in nature and in no way taken as limiting the invention, its application or uses.

[0021] The reason why sensitive information can be captured is that phishing websites often do not have formal certificates and have a simple structure, so sensitive user personal information is transmitted in clear text during the transmission process, while regular websites / apps are not registered in the process of logging in or transmitting important information. SSL (Secure Sockets Layer Protocol, Secure Sockets Layer Protocol) encrypti...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention discloses a method and device for identifying phishing websites. Wherein, the method includes intercepting a data packet containing user personal information from a user terminal; using DPI technology to analyze the captured data packet, and removing the user personal information in the data packet according to keywords in the data packet; randomly constructing New user personal information, and replace it into the user personal information domain corresponding to each keyword; forward the data packet containing user personal information after the removal and replacement operations to the target website; receive the response from the target website, and Determine whether the target website is a phishing website according to the response. The embodiment of the present invention can immediately intercept data packets before user information is exposed to phishing websites, and can identify which websites are phishing websites without any prior knowledge of the user, and has universal applicability for preventing various phishing websites.

Description

technical field [0001] The invention relates to network security, in particular to a method and device for identifying phishing websites. Background technique [0002] With the continuous improvement of Internet popularity and the rapid development of e-commerce, user account security has risen to an unprecedented important position. Although the anti-virus and anti-intrusion application software has a considerable scale, there are still a group of criminals who use various clever methods to illegally obtain user information and account passwords, and phishing websites are the one with the strongest rising momentum in recent years. [0003] Phishing websites take advantage of weak security awareness of users, adopt similar domain names and pages, etc., and then lure profit (for example, winning prizes, giving virtual property, etc.), so that users expose their account information and privacy without knowing it (for example, , ID number, mobile phone number, bank card number...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 金凌陈仲华邓明昊
Owner CHINA TELECOM CORP LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com