本文選題：反釣魚 + URL特征　； 參考：《北京郵電大學(xué)》2014年碩士論文

【摘要】：當(dāng)今的互聯(lián)網(wǎng)環(huán)境中,網(wǎng)絡(luò)木馬與病毒肆虐的同時,也充斥著大量的釣魚網(wǎng)站。網(wǎng)絡(luò)釣魚是一種網(wǎng)絡(luò)欺詐手段,攻擊者精心設(shè)計一個與目標(biāo)網(wǎng)站十分相似的釣魚網(wǎng)站,或具有虛假信息的網(wǎng)站,一旦受害者訪問該網(wǎng)站并輕信網(wǎng)站的內(nèi)容,攻擊者就可能從中獲取受害者的敏感信息,如賬號、密碼等,或者造成直接財產(chǎn)損失。網(wǎng)絡(luò)釣魚是一種利用社會工程學(xué)手段的攻擊方式,釣魚網(wǎng)站的制作不需要太多的技術(shù)含量,而是利用人的心理弱點進行欺騙,因此釣魚網(wǎng)站曾經(jīng)是最易被忽視的網(wǎng)絡(luò)安全問題。 網(wǎng)絡(luò)釣魚給互聯(lián)網(wǎng)安全造成了重大威脅,嚴(yán)重損害了網(wǎng)絡(luò)用戶的利益。剛剛結(jié)束不久的2013年“雙11”各大電商創(chuàng)造了網(wǎng)絡(luò)交易的新神話,同時也給網(wǎng)絡(luò)釣魚帶來了欺詐的好時機,根據(jù)中國反釣魚網(wǎng)站聯(lián)盟釣魚網(wǎng)站處理簡報的數(shù)據(jù),2013年10月聯(lián)盟處理的釣魚網(wǎng)站數(shù)量近同年9月的兩倍,并且支付交易類,金融證券類等可以直接給網(wǎng)絡(luò)用戶造成財產(chǎn)損失的釣魚網(wǎng)站的總數(shù),占釣魚網(wǎng)站總量的大半,因此打擊釣魚網(wǎng)站是互聯(lián)網(wǎng)各界義不容辭的責(zé)任。本文的目的是設(shè)計并實現(xiàn)反釣魚系統(tǒng),下面對本文的研究內(nèi)容以及主要工作進行歸納： 1、本文綜述了目前主要的反網(wǎng)絡(luò)釣魚技術(shù),包括基于黑白名單的網(wǎng)絡(luò)釣魚檢測機制,基于頁面內(nèi)容的啟發(fā)式網(wǎng)絡(luò)釣魚檢測機制,基于視覺相似的網(wǎng)絡(luò)釣魚檢測機制,并且對上述三種反釣魚技術(shù)的優(yōu)缺點進行了歸納總結(jié)。本文根據(jù)各大互聯(lián)網(wǎng)安全報告、中國反釣魚網(wǎng)站聯(lián)盟提供的數(shù)據(jù)等資料以及通過對互聯(lián)網(wǎng)實時檢測的釣魚網(wǎng)站結(jié)果的長期研究,總結(jié)出了釣魚網(wǎng)站存在的四個趨勢。 2、本文結(jié)合現(xiàn)有的反釣魚技術(shù)以及釣魚網(wǎng)站存在的趨勢,對反釣魚系統(tǒng)進行了概要設(shè)計,對不同特點的釣魚網(wǎng)站采用不同的檢測方式。本文根據(jù)釣魚網(wǎng)站高度模仿目標(biāo)網(wǎng)站的特性,引入了網(wǎng)頁分類技術(shù)對這部分釣魚網(wǎng)站進行重點檢測。由于網(wǎng)絡(luò)釣魚的制作已經(jīng)形成了完整的產(chǎn)業(yè)鏈,釣魚網(wǎng)站存在批量生產(chǎn)的特性,本文據(jù)此特性引入了網(wǎng)頁去重技術(shù),利用已經(jīng)獲取的釣魚網(wǎng)站檢測與之相似的釣魚網(wǎng)站。 3、本文通過挖掘釣魚網(wǎng)站URL的特征以及頁面內(nèi)容的特征對反釣魚系統(tǒng)進行了編碼實現(xiàn)。
[Abstract]:In today's Internet environment, the network Trojan and virus rampant, but also a large number of fishing sites. Phishing is a form of cyberfraud in which an attacker designs a phishing site that is very similar to the target site, or a website with false information, once the victim visits the site and believes its content. The attacker may obtain sensitive information about the victim, such as account number, password, etc., or cause direct property damage. Phishing is an attack using social engineering means. Phishing websites do not need too much technology content, but make use of human psychological weakness to cheat, so phishing website was once the most neglected network security problem. Phishing poses a serious threat to Internet security and seriously damages the interests of Internet users. The recent completion of the 2013 "double 11" ecommerce has created a new myth of online trading, and has also given phishing a good time to cheat. In October 2013, the alliance handled nearly twice as many phishing sites as it did in September of the same year, and paid for transactions, according to the China Anti-phishing website Coalition phishing website processing briefing. The total number of phishing websites which can directly cause property losses to network users accounts for most of the total phishing websites, so it is incumbent on all circles of the Internet to crack down on phishing websites. The purpose of this paper is to design and implement the anti-phishing system. 1. This paper summarizes the main anti-phishing technologies, including phishing detection mechanism based on black-and-white list, heuristic phishing detection mechanism based on page content, phishing detection mechanism based on visual similarity. The advantages and disadvantages of the above three anti-fishing techniques are summarized. Based on the reports of Internet security, the data provided by China Anti-phishing website Association and the long-term research on the results of phishing websites detected in real time by the Internet, four trends of phishing websites are summarized in this paper. 2. Combined with the existing anti-phishing technology and the existing trend of fishing website, this paper gives a brief design of anti-phishing system, and adopts different detection methods for different fishing websites with different characteristics. According to the characteristics of the target website, this paper introduces the technology of web page classification to detect the phishing website. As the production of phishing has formed a complete industrial chain and the phishing website has the characteristics of mass production, this paper introduces the technology of webpage de-reduplication, and uses the obtained phishing website to detect similar phishing sites. 3. In this paper, the anti-phishing system is coded by mining the features of URL and page content.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關(guān)期刊論文 前2條

1 張衛(wèi)豐;周毓明;許蕾;徐寶文;;基于匈牙利匹配算法的釣魚網(wǎng)頁檢測方法[J];計算機學(xué)報;2010年10期

2 司響;杜彥輝;李秋銳;;網(wǎng)絡(luò)釣魚常用技術(shù)手段分析及防范措施[J];信息網(wǎng)絡(luò)安全;2010年06期

相關(guān)博士學(xué)位論文 前1條

1 張健毅;大規(guī)模反釣魚識別引擎關(guān)鍵技術(shù)研究[D];北京郵電大學(xué);2012年

，

本文編號：1936405