University of Wisconsin–River Falls
More and more users are suffering from email-based phishing attacks over the past years. Despite the use of various technologies for anti-phishing, phishing is still one of most serious attacks against internet users. Email phishing attacks fabricate the email's origin. Unfortunately, current email server systems cannot authenticate the genuineness of incoming emails. In this paper, the authors present a novel anti-phishing mechanism: Signed Email For Anti-Phishing (SEFAP), designed to automatically identify an email's origin to mitigate email phishing attacks. The SEFAP system is an extendable secure cryptographic system that accommodates multiple signature schemes.