|
|||||
|
|
| 规避网络钓鱼给证券行业带来的安全风险 | |
| 引用本文: | 朱红,刘保成,张开.规避网络钓鱼给证券行业带来的安全风险[J].信息安全与通信保密,2011,9(7):79-81. |
| 作者姓名: | 朱红 刘保成 张开 |
| 作者单位: | 1. 银河证券,北京,100000 2. 总参61618部队,北京,102102 3. 北京启明星辰信息安全技术有限公司,北京,100193 |
| 摘 要: | 网上交易作为证券行业进行业务开展的主要手段之后,网上交易的安全性就成了人们日益关注的话题。在网上交易过程中,网络钓鱼攻击是一种重要的攻击方式。由于此方式的特殊性,导致被害用户损失严重。所以做好网络钓鱼的防范,对于证券行业具有很大的现实意义。这里从网络钓鱼的实施过程、社会危害及防范方法等几个角度,对网络钓鱼进行全面的阐述,详细描述了恶意分子如何引导用户去访问恶意网站,以及网络钓鱼的主要防范技术,如黑白名单检测技术、页面相似度检查技术,从技术角度和用户的上网行为角度,提出了相关的方法,尽量规避网络钓鱼技术给证券行业带来的安全风险。 |
| 关 键 词: | 网络钓鱼 证券行业 页面相似度 |
Avoidance of the Safety Risk Brought on Securities Industry by Phishing |
|
| ZHU Hong,LIU Bao-cheng,ZHANG Kai.Avoidance of the Safety Risk Brought on Securities Industry by Phishing[J].China Information Security,2011,9(7):79-81. | |
| Authors: | ZHU Hong LIU Bao-cheng ZHANG Kai |
| Affiliation: | ZHU Hong1,LIU Bao-cheng2,ZHANG Kai3 (1China Galaxy Securities,Beijing 100000,China,2PLA Unit 61618,Beijing 102102,3Venustech Inc,Beijing 100193,China) |
| Abstract: | As an important means for business development in securities industry,the internet trading provides the user with an efficient and portable trade channel,and also an opportunity for cyber online crime activities. Phishing,as an important attack in present online securities trading,brings huge economic loss to the investors and securities companies. For the changes of phishing attack form,this paper first describes the typical phishing attack modes,analyzes how the criminal guides the user to malicious website,and discusses the implementation process of network fishing. Also main techniques for phishing prevention,including cloud security-based black and white list detection technology,page similarity detection technology. From the angles of financial service providers and users,this paper proposes some relative prevention measures,which are of great practical significance in preventing the network phishing. |
| Keywords: | phishing securities industry page similarity |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |