Method and device for identifying phishing websites

A technology for phishing websites and identification methods, applied in the fields of network security and information technology, to achieve the effect of convenient expansion, wide application range and improved efficiency

Active Publication Date: 2020-06-12
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Aiming at the above problems, the present invention provides a method and device for identifying phishing websites, which can make up for the inability of blacklist technology to filter emerging phishing websites, efficiently identify phishing websites embedded with brand website elements and resources, and improve the performance of phishing filtering

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for identifying phishing websites
  • Method and device for identifying phishing websites
  • Method and device for identifying phishing websites

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] The present invention will be described in further detail below through specific embodiments and accompanying drawings.

[0037] Phishing is essentially brand counterfeiting. Phishers send false information through emails, instant messaging, etc. to lure users to visit pre-built counterfeit websites to defraud users of their privacy and property. Among them, counterfeit websites, as the most important crime site, are often highly similar to real brand websites visually, in order to deceive users into believing they are real. Today, websites (especially big brand websites) are no longer simple text and pictures, but contain a large number of elements and resources with unique brand styles, including Logo pictures, Favicon pictures, CSS files, JS files, etc.; To confuse the real ones, these resources of the brand website are often directly used, that is, the links to these resources are embedded in the source code of the web page. For example: https: / / wvw.paypal-limited....

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method and device for identifying phishing websites. The method includes: detecting whether resources of other websites are embedded in the website to be detected; if no resources of other websites are embedded, determining that the website to be detected is a non-phishing website; if resources of other websites have been embedded, determining the domain name of the other website Whether there is an intersection with the white list; if there is no intersection, it is determined that the website to be detected is not a phishing website; To determine whether the website to be detected is a phishing website. The invention can make up for the inability of the blacklist technology to filter emerging phishing websites, efficiently identify phishing websites embedded with brand website elements and resources, and improve the performance of phishing filtering.

Description

technical field [0001] The invention belongs to the technical fields of information technology and network security, and in particular relates to a phishing website identification method and device. Background technique [0002] The term Phishing was coined in 1996 and evolved from the word Fishing. In the process of phishing, attackers use bait (such as email, SMS) to send to a large number of users, expecting a small number of users to "take the bait", and then achieve the purpose of "phishing" (such as stealing users' private information). The International Anti-Phishing Working Group (APWG) defines phishing as: Phishing is a cyber attack method that uses social engineering and technical means to steal consumers' personally identifiable data and financial account credentials. Phishing attacks using social engineering methods often send users deceptive emails and text messages that appear to be from legitimate companies or institutions, luring users to reply to personal s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1483H04L61/4511
Inventor 耿光刚延志伟张茜
Owner CHINA INTERNET NETWORK INFORMATION CENTER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap