anti phishing & spam -- by lynn. e-mail spam anti spam and how white-lists black-lists...
TRANSCRIPT
Anti Phishing & SpamAnti Phishing & SpamAnti Phishing & SpamAnti Phishing & Spam
-- by lynn-- by lynn
E-mail Spam
Anti Spam and How
• White-lists• Black-lists• Heuristics
– Bayes– Neural Networks
• Static technique – keyword checking
• Sender Authentication
Anti-spam Tools1. SurfControl E-Mail Filter for SMTP 2. Symantec Brightmail Anti-Spam3. Symantect Mail Security for SMTP4. Kaspersky Anti-Spam, referred 5. Borderware MXtreme Mail Filewall 6. Ikarus mySpamWall 7. SpamAssassin8. CRM 114 (Controllable Regex Mutilator)9. Bogofilter
product
method
1 2 3 4 5 6 7 8 9
White List * * * * * * * *
Black List * * * * * * * *
Bayes * * * * *
Neural Networks
* * *
Static techniques * * * * * * *
As we can see…• most of these products use White
List & Black List.• Static techniques are also popular
among them • About half of them use Bayes or
Neural Networks as Heuristics
How they work?
• The spam sample was from SpamAssassin– 1397 Spam messages – 1400 ham messages
• SpamAssassin Low(2.64)– Bayes disabled– Network tests disabled
• SpamAssassin standard (2.64)– Bayes disabled– Network tests enabled
• SpamAssasin Bayes(2.64)– Bayes enable– Network tests enabled
• SpamAssassin (3.0)– Bayes enabled– Network tests enabled
Spam Phishing• phishing usually initiated through
“junk e-mail” – Scam
• Anti-spam and Anti-phishing tools use similar methods– Black & White List – Community ratings – Heuristics methods – Authentication
Anti-Phishing and How• CallingID Toolbar• Cloudmark Anti-Fraud Toolbar• EarthLink Toolbar• eBay Toolbar• Firefox 2• GeoTrust TrustWatch Toolbar• Microsoft Phishing Filter in Windows Intern
et Explorer 7• Netcraft Anti-Phishing Toolbar• Netscape Browser 8.1• SpoofGuard
Black List community ratings
Heuristics Authentication
CallingID Toolbar * * *Cloudmark * *
EarthLink Toolbar * * * *eBay Toolbar * *
Firefox 2 * *GeoTrust *
Phishing Filter of IE7 * *Netcraft * *
Netscape Browser 8.1 *SpoofGuard *
Conclusion…
• Black & White List : most popular– Bogofilter
• Heuristic methods : anti-phishing – SpoofGuard
• Static technique : anti-spam – keyword checking
Thank you ~Thank you ~Thank you ~Thank you ~