Research Of Anti-Phishing Prevention Based On Browser Plugins

As the internet expanding in our daily life and the pace of life accelerates, more and more people choose to communicate with each other via the internet. Because the online trading becomes increasingly popular, cyber crimes emerges. As we known, the anti-phishing is the most difficult to eradicate, and it also cause the most extensive hazards. Anti-Phishing is a network attack, which uses a trap to get the privacy of others and uses these privacy information to get economic benefit. The huge economic interests drives the proliferation of anti-phishing. The emergence of anti-phishing has brought great distress to people's normal life and damaged the relationship among them, especially to the electronic commerce. Anti-Phishing Alliance of China (APAC) received 19.817 reported phishing sites, and handled 19,688 of them, in which e-commerce sites take a big share. According to APAC's survey, there are 87.88 million online shoppers and the average captial loss is 86.5 yuan. Therefore, the study of anti-phishing prevention program becomes very meaningful.This paper is divided into two parts:The first part describes the anti-phishing researches at domestic and abroad in recent years, the anti-phishing prevention organizations APWG and its development in China, the current anti-phishing and major features, especially some changes in the domestic anti-phishing tools, the general cases of anti-phishing and several popular anti-phishing prevention tools among users. Then we summarize the process of anti-phishing, analyze the current popular anti-phishing prevention tools and their disadvantages. After that, we put our point of view in the efficiency of current anti-phishing prevention tools need to be further improved, and the error rate can be further reduced.Because the most popular technology is the SoofGuard, which is developed by Stanford University.We followed up this idea and carried out our research. In the second part, we used the black and white list to improve the SoofGuard, which can make a more comprehensive anti-phishing detection program, and we joined on the soft keyboard input to raise the protection level of password, so as to achieve the purpose that the phishing prevention mechanisms based on brower-based plug-ins can learn,by some arithmetics those are intrusion characteristics detected and so on. Introduced the concept of Sandboxie, further protection of the password.At last, the experiment on their own ideas put forward before the validation error rate found in the appropriate sacrifice some cases, you can guard against anti-phishing tools to enhance the correct detection rate, the more optimized performance.