检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:徐雅卿[1] 张靖琦 Xu Yaqing;Zhang Jingqi(Xidian University,Xi′an 710071,China;360 Digital Security Technology Group,Beijing 100015,China)
机构地区:[1]西安电子科技大学,陕西西安710071 [2]360数字安全集团,北京100015
出 处:《网络安全与数据治理》2023年第2期25-30,共6页CYBER SECURITY AND DATA GOVERNANCE
基 金:国家社会科学基金项目(20BGL045)。
摘 要:通过分析当前流行的仿冒医保网站诈骗典型过程,针对潜在受害者与仿冒网站的网络行为进行流量采集、协议过滤、报文分析,获得了当前仿冒医保网站诈骗过程中HTTP请求报文和HTTP响应报文的典型特征,提出了一种仿冒医保网站诈骗治理方案。本方案可实现事前监测识别诈骗域名、事中获取潜在受害者信息用于预警、事后反网络诈骗技战法储备。以某单位安全部门为试点,以反诈预警时效性和涉诈情报准确性为衡量标准进行应用效果评估,结果表明,依据流量报文特征建立的治理体系框架可有效治理当前的仿冒医保网站诈骗。By analyzing the typical process of the current phishing website medical insurance fraud, and analyzing the characteristics of the communication behavior between the victim and the phishing website medical insurance fraud, combined with the characteristics of the firewall product, this paper proposes a medical insurance fraud governance scheme based on the message characteristics in the view of the firewall. Through traffic collection, protocol filtering, message analysis and feature summary, the scheme clarifies the handling method of communication traffic between potential victims and medical insurance fraud of counterfeit websites. Taking the security department of a certain unit as a pilot, the application effect was evaluated based on the timeliness of anti-fraud early warning and the accuracy of fraud-related information. The results showed that the treatment of counterfeit website medical insurance fraud based on message characteristics can effectively prevent counterfeit website medical insurance fraud cases.
分 类 号:TP39[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.43