Design And Implementation Of Anti-Phishing System Based On Web Page Features

In today’s Internet environment, the network trojans and viruses are rampant, but also filled with a lot of phishing sites. Phishing is a network fraudulent. The attacker has designed a phishing site that is very similar with the normal site or with false information. Once the victims visit the site and gullible the content of the site the attacker could derive their sensitive information, such as account numbers, passwords and so on. It also can cause direct damage to property. Phishing use the social engineering methods to attack, the product of phishing sites do not require much technical content, so phishing site was once the most overlooked safety issues.Phishing cause a major threat to Internet security, It seriously damage to the interests of Internet users. Major electricity suppliers create a new myth of network transaction in the2013"double11", it also bring a good time for phishing fraud. According to the data from the China Anti-Phishing Alliance the number of phishing sites in October2013is nearly doubled of the number in September, against phishing sites is the bounden duty upon all sectors of the Internet. The purpose of this paper is to design and implement the anti-phishing system, The following are the research content and the main work of the paper.1. This paper reviews the current major anti-phishing technology, including phishing detection mechanism based on black and white list, heuristic phishing detection mechanisms based on page content, phishing detection mechanism based on visual similarity. Based on the major Internet security report, the data that is provided by the China Anti-Phishing Alliance the paper summarizes the four trends of the phishing sites.2. This paper presents the design of anti-phishing system combined with the existing anti-phishing technologies and trends of the phishing sites, using different detection methods for different characteristics. According to the characteristics of phishing sites mimic the target site the paper introduces the web classification techniques to focus on this part of phishing sites. Because of the similarities between the phishing sites the paper introduces the web deduplication use the phishing sites that have been obtained to detect other phishing sites.3. This paper mining the features of the phishing site URL and the features of page content and achieve the anti-phishing system.