Antiphishing feature
Richard Clayton
ukcrypto at chiark.greenend.org.uk
Wed, 2 Apr 2008 23:30:33 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
In article <004201c894f5$4d215e70$b042a8c0@Archie>, Christopher Stuart
<ChristopherStuart@comcast.net> writes
>James Firth wrote...
>>... I had been assuming all along that Phorm would also be somewhat
>> unsophisticated in its detection (i.e. using a blacklist of IP and URLs)...
>>
>> So the next question is: how well will Phorm fair in this? In order to keep
>> abreast of the latest phishing technologies, Phorm will likely have to
>> release frequent software updates, not just for the watch-list definitions,
>> but also of the detection algorithm itself.
>
>Hopefully Mr. Clayton will address related subjects in his write-up,
I'm currently waiting for the answers to a couple of questions of
precise detail that I failed to ask last week :( ... and which matter
for complete understanding of the cookies issue. Not much longer I hope.
>but to
>share some thoughts in the mean time...
>
>It has been communicated that the antiphishing feature is "basically just
>another Channel".
It's a straightforward URL comparison, and has nothing really to do with
the channel mechanisms (which makes it easy to write about it, without
having to understand 10 other pages of explanation!). They were a little
vague as to the extent that this comparison will be performed using
regular expressions, which suggests that they have limited experience of
evaluating this aspect of their system (as any glance at a current feed
of phishing URLs will reveal).
If the URL matches then you are directed to a "this is probably
phishing" page, with the option of continuing anyway.
- --
richard Richard Clayton
They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety. Benjamin Franklin
-----BEGIN PGP SIGNATURE-----
Version: PGPsdk version 1.7.1
iQA/AwUBR/QJCZoAxkTY1oPiEQLeAQCffe5yZXZsgLfy/SqK0DGAli/hbzcAnj5M
fgb/+DOcPwMLNjtcArJLRWKo
=EUP7
-----END PGP SIGNATURE-----