Captcha security for phishing
#1

[attachment=14215]
1. INTRODUCTION
Since the first phishing term was recorded in 1996 which was hunting for free AOL account, phishing is having an increasing tendency over the years. It then evolutes to financial fraud quickly, as the criminals always aim for high yield. Luckily, with the pursuit of online banking, the banking industry is always motivated to play a leading role in fighting phishing threat. However, the reported loss to Internet Crime such as phishing has broken its record each year. It is telling us that we are still looking for a better solution.
ONLINE BANKING AND AUTHENTICATION: The banking industry started to implement Digital Certificates, where the certification binds its public key together with an identity, but notice that it is a one-way authentication of the bank.
However, the most trustful solution is always ignored by user. An incident of HSBC on 4th March 2008, that one of the world’s biggest bank has forgotten to renew its Digital Certificate, but it claimed its online banking for their customers still not affected. As we can imagine how many users ignored the warning of invalid Digital Certificate and had their online banking as usual in that day.
In the same time, Two-Factor authentication such as One-Time-Password (OTP) Security Token is used to safeguard user away from passive password logging by Trojan in not trusted host or hunted by phishing website. But this solution is discovered risk suffer from Real-Time Man-In-The-Middle (RT-MITM) attack, which the RT-MITM can relay login creditential (included OTP) between victim and the bank in real time, as the collected login ID and password are then used to login to the bank simultaneously, phisher gains access.
Recently, the idea of Human Interactive Proof (HIP) is used to fight against phishing. There is an application used in online banking, however, the application may not achieve its initial goal when facing the rising threat of phishing techniques such as RT-MITM.
To conclude, in the views of bank, authentication flaws are considered in risk management, which is balancing between security investment and possible loss. Although they have secure end-to-end hardware solutions, it is only available to valuable customers.
CAPTCHA is the use of hard AI problem to distinguish Human and bot apart which was originally evolved from Visual authentication and identification.
The primary use of CAPTCHA is to fight against auto-bot in Account Registration and Click Fraud. Also, its application can be used to authenticate a group of people sharing common knowledge or abilities.
In fact, visual human verifiable techniques are vulnerable to MITM attack. Also, careless CAPTCHA implementation can lead the application fail to achieve its mission. CAPTCHA alone is nothing in defending MITM attack, such visual security depend on user conscious which can not authenticate other end actually.

Motivated by mitigating MITM attack, we propose Extended CAPTCHA Input System (E-CIS) which can withstand the described RT-MITM, by combining CAPTCHA and OTP, E-CIS can authenticate specific person, which can be used in secure online banking login scenario.
2. PHISHING
In the field of computer security, Phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication. Phishing is a fraudulent e-mail that attempts to get you to divulge personal data that can then be used for illegitimate purposes.
There are many variations on this scheme. It is possible to phish for other information in additions to usernames and passwords such as credit card numbers, bank account numbers, social security numbers and mothers’ maiden names. Phishing presents direct risks through the use of stolen credentials and indirect risk to institutions that conduct business on line through erosion of customer confidence. The damage caused by Phishing ranges from denial of access to e-mail to substantial financial loss.
Reply
#2
please upload powerpoint file for captcha security for phishing
Reply
#3

to get information about the topic "captcha security in phishing technology" full report ppt and related topic refer the page link bellow

http://studentbank.in/report-captcha-sec...e=threaded

http://studentbank.in/report-visual-secu...i-phishing
Reply

Important Note..!

If you are not satisfied with above reply ,..Please

ASK HERE

So that we will collect data for you and will made reply to the request....OR try below "QUICK REPLY" box to add a reply to this page
Popular Searches: auditory captcha security, captcha security for phishing article, phishing network security ppt, usernames on kik, captcha for phishing doc, ieee base paper for captcha security for phishing secure or not, ieee paper on captcha for security,

[-]
Quick Reply
Message
Type your reply to this message here.

Image Verification
Please enter the text contained within the image into the text box below it. This process is used to prevent automated spam bots.
Image Verification
(case insensitive)

Possibly Related Threads...
Thread Author Replies Views Last Post
  Cloud Computing Security: From Single to Multi-Clouds 1 818 14-02-2017, 04:56 PM
Last Post: jaseela123d
  Security Analysis of the SASI Protocol computer science topics 2 1,961 21-06-2016, 10:30 PM
Last Post: Guest
  Security system using IP camera mechanical engineering crazy 5 4,324 16-03-2015, 02:52 PM
Last Post: seminar report asees
  A PROACTIVE APPROACH TO NETWORK SECURITY nit_cal 1 2,241 19-09-2014, 12:52 AM
Last Post: [email protected]
  Data Security Using Honey Pot System computer science topics 5 6,682 11-09-2014, 07:45 PM
Last Post: erhhk
  Folder Security System computer science topics 6 3,652 29-07-2013, 11:09 AM
Last Post: computer topic
  Internet Security and Firewall Design smart paper boy 1 1,835 10-12-2012, 01:23 PM
Last Post: seminar details
  Security in Wireless Networks nit_cal 1 1,396 12-11-2012, 01:41 PM
Last Post: seminar details
  Network Analysis & Security computer science topics 1 2,017 09-11-2012, 12:02 PM
Last Post: seminar details
  Internet usage and Security seminar class 1 1,441 01-11-2012, 12:55 PM
Last Post: seminar details

Forum Jump: