Identifying Phishing Threats in Government Web Services

Download Now Date Added: Aug 2012
Format: PDF

The governmental use of web technologies, including e-Government, has many advantages for citizens, but progress in this relationship has highlighted information security as an important issue in preserving a citizen's privacy. Unfortunately, unique governmental characteristics lead users to authenticate its service unwillingly; users may investigate service's possible and likely vulnerabilities carelessly when perceiving trustworthiness. In this paper, the authors study a threat model about how government web services become privacy leak targets, especially through phishing attacks. They identify three service characteristics, sensitivity, involuntarity, and linkability, and illustrate how phishers can effectively exploit these characteristics.