CallingID fights Web fraud
CallingID’s IE add-in does automatic DNS lookups
Security Strategies Alert
By
M. E. Kabay
,
Network World
, 10/11/2005
Sign up for this newsletter now!
Mich Kabay takes a high-level view of security issues and provides resources to help safeguard your corporate and personal security.
- Share/Email
- Tweet This
- Print
Many online frauds depend on deceiving victims into trusting a Web site and revealing confidential information such as credit
card numbers.
Phishing frauds, for example, use deceptive e-mail messages to trick people into visiting Web sites whose URLs are misrepresented
as trustworthy ones (e.g., the classic use of “paypal” labels for URLs that are actually in some under-regulated and under-policed
country where governments don’t even pretend to follow the rule of law). Other frauds simply use nice-sounding domain names
(e.g., the spate of Katrina-related Web sites that arose after the hurricane disaster) but are actually run by crooks who
steal the money outright.
One of the ways to help spot fraud is to find out who has registered a particular Web site; this knowledge does not prevent
all fraud, but it is a useful step forward. If you are looking at a site that claims to be in Ohio but the owner lives in
the Moldovan Republic (no offense to Moldovans intended), maybe everything is not as it appears.
In previous columns, I’ve mentioned the free utility SamSpade v1.14 which, among other things, makes “whois” lookups of DNS information quick and easy.
Readers may also know that the free, open source Firefox Web browser from Mozilla has an “extension” (add-in) called “whois 0.4” that can supply a DNS lookup for each Web address being visited.
I've been trying out an add-in for Internet Explorer (IE) over the last two months called CallingID that does all that and much more.
I had the pleasure of speaking and corresponding with Yoram Nissenboim, CEO of CallingID, the company that makes the CallingID
secure Web-browsing add-in product. Among other things, CallingID provides automatic DNS lookups for all URLs. A quick installation
of this (currently) free product adds a new bar to the IE window showing ownership information, including geographical location
for the Web site being visited.
However, as Nissenboim pointed out, “Whois information is very unreliable. Everyone can write whatever he wants into DNS records.
CallingID has external sources beyond Whois to detect the site owner and to verify that it is a real organization located
where it claims to be, in most cases automatically.”
If any of more than 50 warning signs shows reason for suspicion, the product alerts the user with an understandable pop-up;
for example, one test checks for anonymized owner information in the DNS, and any such concealment flags the site as suspect.
M. E. Kabay, PhD, CISSP-ISSMP, is Program Director of the Master of Science in Information Assurance program at Norwich University.
Comment