New Form of Identity (ID) Theft Crime: Acquiring Personal Information from Your Online Newsletter Providers (2004)

Download:
http://scissec.scis.ecu.edu.au/publications/aism20
DBLP
CACHED:

by Gim Hiong Soh , Timo Vuori

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@MISC{Soh04newform,
    author = {Gim Hiong Soh and Timo Vuori},
    title = {New Form of Identity (ID) Theft Crime: Acquiring Personal Information from Your Online Newsletter Providers},
    year = {2004}
}

Bookmarks

OpenURL

Abstract:

Using sophisticated means, Identity (ID) Thieves can acquire victims' personal information for their own deeds from online news providers. This paper discusses how ID Thieves may compile their stock of trade from Directory Harvest Attacks (DHAs) and launch the attacks against online news providers with two possible attack methodologies. This follows by an evaluation of the inadequacy of the current regulatory measures and technical fixes to thwart the attacks. Finally, an explanation of how technical measures such as CAPTCHA - `Completely Automated Public Turing Test to Tell Computers and Humans Apart' program may be utilised to protect against ID Theft crimes.

Citations

32	Using graphic turing tests to counter automated ddos attacks against web servers – MOREIN, STAVROU, et al. - 2003
28	Verification of a human in the loop or identification via the Turing test, unpublished notes – Naor - 1996
1	Telling humans and computers apart automatically – Ahn, Alstyne, et al. - 2004
1	Anti-Phishing Working Group. (2004). Phishing Attack Trends Report. URL http://www.antiphishing.org/APWG_Phishing_Attack_Report-May2004.pdf , Accessed 07 July 2004 – Berghel - 2000
1	Understanding Directory Harvest Attacks; ever wonder how spammers got your carefully guarded e-mail address – Clyman - 2004
1	Issues concerning the development and use of online information – Connolly, Bradford, et al. - 1984
1	NOIE report on spam 2003. URL http://www2.dcita.gov.au/ie/publications/2003/04/spam_report/regulatory, Accessed 21 – DCITA - 2003
1	Identity Fraud Monitoring: Cutting-edge Identity Theft Detection. URL http://www.identitytheft911.com/education/fundamentals/20040616_fraudmonitoring.jsp, Accessed 16 July 2004 – Identitytheft911 - 2004
1	Interactive Inc (2003). Identity Theft Victims Skyrocket, Surveys Say – Harris
1	We’ve All Got Mail: IDC predicts 60 billion e-mails by 2006. URL http://www.computerworld.com/softwaretopics/software/groupware/story/0,10801,74682,00.html, Accessed 02 July 2004 Kandler, D. (n.d.). How To Know What Kind Of Online Newsletter To Publish – Johnston - 2002
1	n.d.) Good and Bad Passwords How-To: Password Cracking Goals, Techniques and Relative Merits and Cracking Times of Different Techniques. URL http://geodsoft.com/howto/password/, Accessed 14 July 2004 Spam Statistics. (n.d.). Spam Percentages. URL http://w – Shaffter - 2004
1	President Bush Signs Law to Can Spam – Swartz - 2004
1	The Fraud Advisory Panel (2003). Identity Theft: Do you know the sign? URL http://www.fraudadvisorypanel.org/pdf/Identity%20Theft%20Final%20Proof%2011-7-03.pdf, Accessed 30 – Turing - 2004
1	Converting from a paper to an on-line computing center newsletter – Wall - 1993
1	Introducing the Check-Off Password System (COPS): An Advancement in User Authentication Methods and Information Security – Warkentin, Davis, et al. - 2004

View or Download | Add to My Collection | Correct Errors