摘要
根據APWG 統計,釣魚網站的數量不斷在迅速增加,而釣魚網站的手法也不斷在更 新,造成大眾財產的損失,即便有工具可以偵測釣魚網站,但是他們仍然會有誤判的機 會。所以教會使用者如何防範釣魚網站是一件很重要的事。然而一般使用者對於傳統以 文件主的教學沒有興趣也未必看得懂,所以可以利用遊戲的方式來教使用者防範釣魚, 但是要將這些日新月異的釣魚手法加入遊戲式的教材非常曠日費時。在這篇研究中,我 們利用專家系統的技術來跟釣魚網頁的專家擷取這些釣魚的知識,以及WIKI 的方式讓 大眾可以提供網頁的情境,最後利用推論引擎根據使用者的學習狀態以及擷取來的知識 以及情境來產出適合使用者學習的教材。實驗結果顯示,我們所提出的方法跟傳統文件 的教學可以提昇使用者的學習效率。
並列摘要
APWG Statistics shows that phishing attack is increasing and causing enormous economic loss. However, existing phishing detection tools still suffer from false alarms and false negative. Educating user to defense phishing attack is important. Users do not have motivation for reading traditional document-based education materials. Therefore, several anti-phishing games have been proposed. These games are not sufficient for user to learn the phishing knowledge with limited learning case. We need to generate a large item bank of phishing cases. However, it is costly and time consuming to create phishing pages with the carious and reasonable scenario. We apply expert system approach to solve the issue. First, we implement a knowledge acquisition tool to gather phishing knowledge form multiple experts. Next, we provide adaptive education materials which are auto-generated for user. The experimental results show that students can make significant progress in identifying phishing page by using our approach
參考文獻
延伸閱讀
- Yu, Y. H. (2014). 釣魚網站偵測:基於網頁模仿行為一致性 [master's thesis, National Tsing Hua University]. Airiti Library. https://www.airitilibrary.com/Article/Detail?DocID=U0016-2912201413552759
- 李奎慶(2014)。網路釣魚黑名單之動態更新研究〔碩士論文,國立臺灣大學〕。華藝線上圖書館。https://doi.org/10.6342/NTU.2014.00522
- 葉為谷、盧明宗(2011)。休閒釣魚運動釣客參與行為及釣魚動機之研究。休閒保健期刊,(6),23-37。https://doi.org/10.29686/LHW.201112.0003
- 蘇暐堯(2009)。以網頁標題作關鍵字偵測釣魚網站之研究〔碩士論文,中原大學〕。華藝線上圖書館。https://doi.org/10.6840/cycu200901149
- 游光昭、蕭顯勝、韓豐年(2004)。Design of an Online Game-Based Learning System。藝術學報,(75),205-217。https://doi.org/10.6793/JNTCA.200412.0205