Breaking out of the browser to defend against phishing attacks

Citation

Smetters, D. K.; Stewart, P. Breaking out of the browser to defend against phishing attacks. Fifth Conference on Email and Anti-Spam (CEAS 2008); 2008 August 21-22; Mountain View, CA.

Abstract

Current approaches to phishing prevention are focused on the web browser and the user’s interaction with it. We present a new approach to allowing users to interact reliably and securely with high-value and sensitive web sites, using protected links — a customizable set of secure bookmarks, separate from their standard web browser. By digitally signing and whitelisting protected links, we ensure users end up with an intuitive interface for accessing the sites they intend. We have implemented a prototype protected links system, and evaluated its usability with a small study of potential users with positive results.

Read more from SRI

  • surgeons around a surgical robot

    The SRI research behind today’s surgical robotics

    Intuitive’s da Vinci 5 system represents a major leap in robotic-assisted medicine. It all started at SRI, which continues to advance teleoperation technologies.

  • a collage of digital graphs

    A banner year for quantum

    SRI-managed QED-C’s annual report on quantum trends captures an industry accelerating rapidly from technical promise toward major global impact.

  • ICE Cube containing SRI’s aerogel experiment, photographed prior to launch. Source: Aerospace Applications North America

    An SRI carbon capture experiment launches into space

    By synthesizing carbon-absorbing aerogels in microgravity, SRI research will give us a rare glimpse into how these materials could be radically improved.