Invasive Browser Sniffing and Countermeasures

Page Content

Sid Stamm - Indiana University

Aug 30, 2006

Size: 234.0MB

Download: Video Icon MP4 Video   Flash Icon Watch in your Browser (Flash Required)   RealMedia Icon RealVideo

Abstract

We describe the detrimental effects of browser cache/ history sniffing in the context of phishing attacks, and detail an approach that neutralizes the threat by means of URL personalization; we report on an implementation performing such personalization on the fly, and analyze the costs of and security properties of our proposed solution.

About the Speaker

Sid Stamm is a PhD candidate in Computer Science at Indiana University where he earned his MS in 2005. He is currently investigating context-aware phishing attacks ("spear phishing") and ways to thwart them; Sid hopes to keep ahead of the real phishers out there, and find ways to prevent such extremely deceptive social/ technical attacks. His research interests are in social engineering, identity verification, and applications of cryptographic protocols for authentication and privacy.

Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52, West Lafayette Campus. More information...

© 1999-2013 Purdue University. All rights reserved.

Use/Reuse Guidelines

CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.