Phishing Attacks: A Challenge Ahead
Password-based authentication is used in online web applications due to its simplicity and convenience. Efficient password-based authentication schemes are required to authenticate the legitimacy of remote users, or data origin over an insecure communication channel. Password-based authentication schemes are highly susceptible to phishing attacks.
Phishing attacks are becoming more and more sophisticated and therefore require strong countermeasures, a task complicated by their elusive nature; phishing sites cause damage in a short time span, going online and vanishing. This type of attack is causing a direct damage to the financial industry and is also affecting the expansion of e-commerce. Thus, financial transactions in web applications require highly secure authentication protocols and need countermeasures against phishing in order to make online transactions reliable and secure.
In this paper, we present a survey of different anti-phishing techniques based on several crucial criteria. This study will help in developing different password-based anti-phishing authentication techniques for web applications.