Dynamic Security Skins
During my masters my dissertation was based on the idea of Dynamic Security Skins as first suggested in 2005 at the Symposium on Usable Privacy and Security Conference (SOUPS). The proposal was to investigate the idea, its feasibility and potential impact on the problem of Phishing.
Dissertation Abstract:
Phishing has become an increasingly threatening problem to online consumers. Phishers send millions of spam emails every week, and are constantly exploiting new and increasingly malicious techniques in order to steal users’ online identities. In 2005, at the Symposium on Usable Privacy and Security Conference (SOUPS), the technique of ‘Dynamic Security Skins’ was suggested by R. Dhamija and J.D. Tygar. The proposal suggested that the Secure Remote Password (SRP) protocol be implemented into browsers, along with hash visualization techniques in order to provide users with visual confirmation of the authenticity of web sites.
In this project a prototype of the system was produced and a user evaluation study then carried out using the prototype. The study aimed to evaluate the proposal of the Dynamic Security Skins by testing its potential effectiveness.
Download: Full (pdf - 1.9mb) | Minus source code (pdf - 1.7mb)