{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,3]],"date-time":"2026-06-03T15:48:33Z","timestamp":1780501713337,"version":"3.54.1"},"publisher-location":"Berlin, Heidelberg","reference-count":43,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540462552","type":"print"},{"value":"9783540462569","type":"electronic"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2006]]},"DOI":"10.1007\/11889663_1","type":"book-chapter","created":{"date-parts":[[2006,10,9]],"date-time":"2006-10-09T10:12:37Z","timestamp":1160388757000},"page":"1-19","source":"Crossref","is-referenced-by-count":101,"title":["Phoolproof Phishing Prevention"],"prefix":"10.1007","author":[{"given":"Bryan","family":"Parno","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Cynthia","family":"Kuo","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Adrian","family":"Perrig","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","reference":[{"key":"1_CR1","unstructured":"Verified by VISA, http:\/\/usa.visa.com\/personal\/security\/vbv\/how_it_works"},{"issue":"12","key":"1_CR2","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1145\/322796.322806","volume":"42","author":"A. Adams","year":"1999","unstructured":"Adams, A., Sasse, M.A.: Users are not the enemy. Communications of the ACM\u00a042(12), 40\u201346 (1999)","journal-title":"Communications of the ACM"},{"key":"1_CR3","unstructured":"Anti-Phishing Working Group. Phishing activity trends report. http:\/\/antiphishing.org\/apwg_phishing_activity_report_august_05.pdf"},{"key":"1_CR4","unstructured":"Bluetooth SIG. Bluetooth Technology Benefits, http:\/\/www.bluetooth.com\/Bluetooth\/Learn\/Benefits\/"},{"key":"1_CR5","unstructured":"Chou, N., et al.: Client-side defense against web-based identity theft. In: NDSS (February 2004)"},{"key":"1_CR6","unstructured":"CitiBank. Virtual account numbers, http:\/\/www.citibank.com\/us\/cards\/tour\/cb\/shp_van.htm"},{"key":"1_CR7","doi-asserted-by":"crossref","unstructured":"Clayton, R.: Who\u2019d phish from the summit of kilimanjaro? In: Clayton, R. (ed.) Financial Cryptography, pp. 91\u201392 (2005)","DOI":"10.1007\/11507840_11"},{"key":"1_CR8","unstructured":"Core Street. Spoofstick, http:\/\/www.corestreet.com\/spoofstick\/"},{"key":"1_CR9","doi-asserted-by":"crossref","unstructured":"Dhamija, R., Tygar, J.D.: The battle against phishing: Dynamic security skins. In: ACM Symposium on Usable Security and Privacy SOUPS 2005) (July 2005)","DOI":"10.1145\/1073001.1073009"},{"key":"1_CR10","doi-asserted-by":"crossref","unstructured":"Dhamija, R., Tygar, J.D.: Phish and HIPs: Human interactive proofs to detect phishing attacks. In: Human Interactive Proofs: Second International Workshop (HIP 2005) (2005)","DOI":"10.1007\/11427896_9"},{"key":"1_CR11","doi-asserted-by":"crossref","unstructured":"Dierks, T., Allen, C.: The TLS protocol version 1.0. Internet Request for Comment RFC 2246, Internet Engineering Task Force, Proposed Standard (January 1999)","DOI":"10.17487\/rfc2246"},{"key":"1_CR12","unstructured":"eBay: eBay toolbar, http:\/\/pages.ebay.com\/ebay_toolbar"},{"key":"1_CR13","unstructured":"FDIC. Authentication in an internet banking environment. Technical Report FIL-103-2005, Federal Deposit Insurance Corporation (October 2005)"},{"key":"1_CR14","unstructured":"Freier, A., Kariton, P., Kocher, P.: The SSL protocol: Version 3.0. Internet draft, Netscape Communications (1996)"},{"key":"1_CR15","unstructured":"Genkina, A., Friedman, A., Camp, J.: Net trust. In: Trustworthy Interfaces for Passwords and Personal Information (TIPPI) Workshop (June 2005)"},{"issue":"1","key":"1_CR16","doi-asserted-by":"publisher","first-page":"8","DOI":"10.1109\/MSP.2005.21","volume":"3","author":"G. Goth","year":"2005","unstructured":"Goth, G.: Phishing attacks rising, but dollar losses down. IEEE Security and Privacy\u00a03(1), 8 (2005)","journal-title":"IEEE Security and Privacy"},{"key":"1_CR17","doi-asserted-by":"crossref","unstructured":"Haller, N.: The S\/Key one-time password system. In: Proceedings of the Symposium on Network and Distributed Systems Security, February 1994, pp. 151\u2013157 (1994)","DOI":"10.17487\/rfc1760"},{"key":"1_CR18","unstructured":"Herzberg, A., Gbara, A.: Trustbar: Protecting (even naive) web users from spoofing and phishing attacks. Cryptology ePrint Archive, Report 2004\/155 (2004)"},{"key":"1_CR19","doi-asserted-by":"crossref","unstructured":"Jakobsson, M.: Modeling and preventing phishing attacks. In: Financial Cryptography (2005)","DOI":"10.1007\/11507840_9"},{"key":"1_CR20","unstructured":"Jakobsson, M., Young, A.: Distributed phishing attacks. In: Workshop on Resilient Financial Information Systems (March 2005)"},{"key":"1_CR21","unstructured":"Johanson, E.: The state of homograph attacks (February 2005), http:\/\/www.shmoo.com\/idn\/homograph.txt"},{"key":"1_CR22","unstructured":"Leyden, J.: Fax-back phishing scam targets paypal, http:\/\/www.channelregister.co.uk\/2005\/08\/11\/fax-back_phishing_scam\/"},{"key":"1_CR23","unstructured":"Leyden, J.: Spear phishers launch targeted attacks, http:\/\/www.theregister.co.uk\/2005\/08\/02\/ibm_malware_report\/"},{"issue":"1","key":"1_CR24","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/s10207-003-0022-8","volume":"2","author":"P. MacKenzie","year":"2003","unstructured":"MacKenzie, P., Reiter, M.K.: Networked cryptographic devices resilient to capture. International Journal of Information Security\u00a02(1), 1\u201320 (2003)","journal-title":"International Journal of Information Security"},{"key":"1_CR25","doi-asserted-by":"crossref","unstructured":"McCune, J.M., Perrig, A., Reiter, M.K.: Seeing is believing: Using camera phones for human-verifiable authentication. In: IEEE Symposium on Security and Privacy (May 2005)","DOI":"10.1109\/SP.2005.19"},{"key":"1_CR26","unstructured":"Microsoft. Erroneous VeriSign-issued digital certificates pose spoofing hazard (2001), http:\/\/www.microsoft.com\/technet\/security\/bulletin\/MS01-017.mspx"},{"key":"1_CR27","unstructured":"Modadugu, N., Boneh, D., Kim, M.: Generating RSA keys on a handheld using an untrusted server. In: RSA Conference 2000 (January 2000)"},{"key":"1_CR28","unstructured":"Myers, S.: Delayed password disclosure. In: Trustworthy Interfaces for Passwords and Personal Information (TIPPI) Workshop (June 2005)"},{"key":"1_CR29","unstructured":"Out-law.com. Phishing attack targets one-time passwords, http:\/\/www.theregister.co.uk\/2005\/10\/12\/outlaw_phishing\/"},{"key":"1_CR30","unstructured":"Passmark Security. Protecting your customers from phishing attacks: an introduction to passmarks (2005), http:\/\/www.passmarksecurity.com\/"},{"key":"1_CR31","unstructured":"Roberts, P.F.: Spear phishing attack targets credit unions (December 2005), http:\/\/www.eweek.com\/article2\/0,1895,1902896,00.asp"},{"key":"1_CR32","unstructured":"Rohs, M., Gfeller, B.: Using camera-equipped mobile phones for interacting with real-world objects. In: Proceedings of Advances in Pervasive Computing"},{"key":"1_CR33","unstructured":"Ross, B., et al.: Stronger password authentication using browser extensions. In: 14th USENIX Security Symposium (August 2005)"},{"key":"1_CR34","unstructured":"Security, R.S.A.: Protecting against phishing by implementing strong two-factor authentication (2004), https:\/\/www.rsasecurity.com\/products\/securid\/whitepapers\/PHISH_WP_0904.pdf"},{"key":"1_CR35","doi-asserted-by":"crossref","unstructured":"Seshadri, A., et al.: Pioneer: Verifying integrity and guaranteeing execution of code on legacy platforms. In: Proceedings of ACM Symposium on Operating Systems Principles (SOSP), October 2005, pp. 1\u201316 (2005)","DOI":"10.1145\/1095810.1095812"},{"key":"1_CR36","unstructured":"Sophos. Do-it-yourself phishing kits found on the internet, reveals sophos, http:\/\/www.sophos.com\/spaminfo\/articles\/diyphishing.html"},{"key":"1_CR37","unstructured":"Standish, D.: Telephonic youth, http:\/\/www.techcentralstation.com\/090903C.html"},{"key":"1_CR38","unstructured":"The Legion of the Bouncy Castle. Bouncy Castle crypto APIs, http:\/\/www.bouncycastle.org"},{"key":"1_CR39","unstructured":"Waterken Inc. Petname tool (2005), https:\/\/www.rsasecurity.com\/products\/securid\/whitepapers\/PHISH_WP_0904.pdf"},{"key":"1_CR40","unstructured":"Wikipedia. Phishing, http:\/\/en.wikipedia.org\/wiki\/Phishing"},{"key":"1_CR41","unstructured":"Wu, M., Garfinkel, S., Miller, R.: Users are not dependable - how to make security indicators to better protect them. In: Talk presented at the Workshop for Trustworthy Interfaces for Passwords and Personal Information (June 2005)"},{"issue":"5","key":"1_CR42","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1109\/MSP.2004.81","volume":"2","author":"J. Yan","year":"2004","unstructured":"Yan, J., et al.: Password memorability and security: Empirical results. IEEE Security and Privacy\u00a02(5), 25\u201331 (2004)","journal-title":"IEEE Security and Privacy"},{"key":"1_CR43","unstructured":"Ye, E., Smith, S.: Trusted paths for browsers. In: Proceedings of the 11th USENIX Security Symposium (August 2002)"}],"container-title":["Lecture Notes in Computer Science","Financial Cryptography and Data Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11889663_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,4,21]],"date-time":"2019-04-21T11:06:53Z","timestamp":1555844813000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11889663_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006]]},"ISBN":["9783540462552","9783540462569"],"references-count":43,"URL":"https:\/\/doi.org\/10.1007\/11889663_1","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2006]]}}}