<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">sibsutis</journal-id><journal-title-group><journal-title xml:lang="ru">Вестник СибГУТИ</journal-title><trans-title-group xml:lang="en"><trans-title>The Herald of the Siberian State University of Telecommunications and Information Science</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">1998-6920</issn><publisher><publisher-name>СибГУТИ</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.55648/1998-6920-2023-17-2-93-103</article-id><article-id custom-type="elpub" pub-id-type="custom">sibsutis-576</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>Статьи</subject></subj-group></article-categories><title-group><article-title>Технология формирования интегрированной антифишинговой системы в цифровом обществе</article-title><trans-title-group xml:lang="en"><trans-title>Technology for the Formation of an Integrated Anti-phishing System in a Digital Society</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0003-0791-8087</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Архипова</surname><given-names>А. Б.</given-names></name><name name-style="western" xml:lang="en"><surname>Arkhipova</surname><given-names>A. B.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Архипова Анастасия Борисовна, к.т.н., доцент кафедры защиты информации</p><p>630073, Новосибирск, пр. Карла Маркса, 20</p><p>Scopus Author ID: 57223676445</p><p>Author ID (РИНЦ): 593263</p><p> </p></bio><bio xml:lang="en"><p>Anastasia B. Arkhipova, Cand. of Sci. (Engineering), Associate Professor of the Department of Information Security</p><p>20 Karl Marx Ave., Novosibirsk, 630073</p><p>Scopus Author ID: 57223676445</p><p>Author ID (RSCI): 593263</p></bio><email xlink:type="simple">arhipova@corp.nstu.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0001-8861-9147</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Нечаев</surname><given-names>Д. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Nechaev</surname><given-names>D. M.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Нечаев Дмитрий Александрович, студент кафедры защиты информации, специальность 10.05.03 «Информационная безопасность  автоматизированных систем»</p><p>Author ID (РИНЦ): 593263</p></bio><bio xml:lang="en"><p>Dmitry A. Nechaev, Student of the Department of Information Security specialty 10.05.03 "Information security of automated systems"</p><p>Author ID (RSCI): 593263</p></bio><email xlink:type="simple">dimanechaev9@gmail.com</email><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>Новосибирский государственный технический университет (НГТУ)</institution><country>Россия</country></aff><aff xml:lang="en"><institution>Novosibirsk State Technical University (NSTU)</institution><country>Russian Federation</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2023</year></pub-date><pub-date pub-type="epub"><day>22</day><month>06</month><year>2023</year></pub-date><volume>17</volume><issue>2</issue><fpage>93</fpage><lpage>103</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Архипова А.Б., Нечаев Д.А., 2023</copyright-statement><copyright-year>2023</copyright-year><copyright-holder xml:lang="ru">Архипова А.Б., Нечаев Д.А.</copyright-holder><copyright-holder xml:lang="en">Arkhipova A.B., Nechaev D.M.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://vestnik.sibsutis.ru/jour/article/view/576">https://vestnik.sibsutis.ru/jour/article/view/576</self-uri><abstract><p>В данной работе рассматривается проблема фишинга в интернет-пространстве. Также проанализированы причины актуальности проблемы фишинга, рассмотренные через призму злоумышленника. Далее определено понятие канала связи и его корреляция с явлением фишинга на примере почтовых атак. В работе разработана технология формирования антифишинговой системы на примере модели взаимодействия злоумышленника и пользователя. Проанализированы меры защиты от почтового фишинга. Разработано программное обеспечение PufferPhish, предполагающее интеграцию системы защиты в процесс доставки почтовых сообщений.</p></abstract><trans-abstract xml:lang="en"><p>The problem of phishing in the Internet space is considered in this paper. The reasons for the urgency of the phishing problem, considered through the prism of an attacker, are also analyzed. Furthermore, the concept of a communication channel and its correlation with the phenomenon of phishing is defined by the example of mail attacks. The technology of the formation of an anti-phishing system is developed on the example of a model of interaction between an attacker and a user. The measures of protection against mail phishing are analyzed. PufferPhish software has been developed, which offers the integration of a security system into the process of delivering mail messages.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>фишинг</kwd><kwd>реактивная мера защиты</kwd><kwd>цифровая безопасность</kwd><kwd>угроза безопасности</kwd><kwd>стратегия злоумышленника</kwd><kwd>социальная инженерия</kwd><kwd>сценарий атаки</kwd><kwd>антифишинговая система</kwd><kwd>интегрированная система защиты</kwd></kwd-group><kwd-group xml:lang="en"><kwd>Phishing</kwd><kwd>reactive security measure</kwd><kwd>digital security</kwd><kwd>security threat</kwd><kwd>attacker strategy</kwd><kwd>social engineering</kwd><kwd>attack scenario</kwd><kwd>anti-phishing system</kwd><kwd>integrated protection system</kwd></kwd-group><funding-group><funding-statement xml:lang="ru">Научная работа поддержана Благотворительным Фондом Потанина No ГК21-001229.</funding-statement></funding-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Mohammed A., Bakar A., Azaliah N., and Fiza R. Anti-Phishing Tools: State of the Art and Detection Efficiencies // Applied Mathematics &amp; Information Sciences. 2022. № 16. P. 929–934. DOI: 10.18576/amis/160609.</mixed-citation><mixed-citation xml:lang="en">Alghenaim, M. F., Abu Bakar N.A., Abdul Rahim F. Anti-Phishing Tools: State of the Art and Detection Efficiencies. Applied Mathematics &amp; Information Sciences, vol. 16, no. 6 (November. 2022), pp:929-934.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Arkhipova A. B. Multisociometrical readiness characteristics in information security management // CEUR Workshop Proceedings. 2022. V. 3094: Advanced in Information Security Management and Applications (AISMA 2021), Stavropol–Krasnoyarsk, 1 Oct. 2021. P. 25–34. URL: http://ceur-ws.org/Vol-3094/paper_2.pdf (access date: 28.03.2022).</mixed-citation><mixed-citation xml:lang="en">Arkhipova A. B. Multisociometrical readiness characteristics in information security management. Advanced in Information Security Management and Applications, proc. of the intern. workshop on advanced in information security management and applications (AISMA 2021), Stavropol–Krasnoyarsk, 1 October, 2021, pp. 25-34.</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Blagojević I. Phishing Statistics // 99 firms. [Электронный ресурс]. URL: https://99firms.com/blog/phishing-statistics/.</mixed-citation><mixed-citation xml:lang="en">Ivan Blagojević. Phishing Statistics. available at: https://99firms.com/blog/phishingstatistics/.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Karagiannis S., Maragkos E., Magkos E. An Analysis and Evaluation of Open Source Capture the Flag Platforms as Cybersecurity e-Learning Tools // Proc. IFIP World Conference on Information Security Education, 2020. DOI: 10.1007/978-3-030-59291-25.</mixed-citation><mixed-citation xml:lang="en">Karagiannis S. An Analysis and Evaluation of Open Source Capture the Flag Platforms as Cybersecurity e-Learning Tools. IFIP World Conference on Information Security Education, 2020. 5. Krokhaleva A. B., Belov V. M. The human factor in the system of socially significant activity. Mathematical structures and modeling, 2017, no. 4(44), pp. 85-99.</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Krokhaleva A. B., Belov V. M. The human factor in the system of socially significant activity // Mathematical structures and modeling. 2017. № 4 (44). P. 85–99.</mixed-citation><mixed-citation xml:lang="en">Kucek, S., Leitner, M.: An Empirical survey of functions and configurations of open source capture the Flag (CTF) environments. Journal of Network and Computer Applications, 102470 (2019).</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Kucek, S., Leitner, M. An Empirical survey of functions and configurations of open source capture the Flag (CTF) environments // Journal of Network and Computer Applications. 2019. 102470. https://doi.org/10.1016/j.jnca.2019.102470.</mixed-citation><mixed-citation xml:lang="en">Sinha Raj, Hemant Kumar. A Study on Preventive Measures of Cyber Crime, Internationai Journal of Research in Social Sciences, vol. 8, iss. 11(1), November 2018, DOI: 10.13140/RG.2.2.14212.04480.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Sinha R., and Hemant K. A Study on Preventive Measures of Cyber Crime. 2018. DOI: 10.13140/RG.2.2.14212.04480.</mixed-citation><mixed-citation xml:lang="en">Snyman D.P., Kruger H.A. Information Security Behavioural Threshold Analysis in Practice: An Implementation Framework. Human Aspects of Information Security and Assurance. HAISA 2020. IFIP Advances in Information and Communication Technology, vol 593. Springer.</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Snyman D. P., Kruger H. A. Information Security Behavioural Threshold Analysis in Practice: An Implementation Framework / In: Clarke, N., Furnell, S. (eds) Human Aspects of Information Security and Assurance. HAISA 2020. IFIP Advances in Information and Communication Technology. 2020. V. 593. Springer, Cham. https://doi.org/10.1007/978-3-030-57404-8_11.</mixed-citation><mixed-citation xml:lang="en">Somepalli S. H. Information Security Management. Journal of Business and Public Administration, vol. 11, iss. 2, 2020. pp. 1-16. DOI: 10.2478/hjbpa-2020-0015.</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Somepalli S. H. et al. Information Security Management // HOLISTICA – Journal of Business and Public Administration. 2020. V. 11, Is. 2. P. 1–16. DOI: 10.2478/hjbpa-2020-0015.</mixed-citation><mixed-citation xml:lang="en">Sri Harsha Somepalli, Sai Kishore Reddy Tangella, Santosh Yalamanchili. Information Security Management. Journal of Business and Public Administration, vol. 11, iss. 2, pp.1-16, 2020. DOI: 10.2478/hjbpa-2020-0015.</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Sri Harsha Somepalli, Sai Kishore Reddy Tangella, Santosh Yalamanchili. Information Security Management // Journal of Business and Public Administration. 2020. № 11 (2). P. 1–16. DOI: 10.2478/hjbpa-2020-0015.</mixed-citation><mixed-citation xml:lang="en">Zolotarev V. V., Arkhipova A. B., Parotkin N. Y., Lvova A. P. Strategies of social engineering attacks on information resources of gamified online education projects. International Scientific Conference on Innovative Approaches to the Application of Digital Technologies in Education (SLET–2020), Stavropol, 12-13 Novemder, 2020, pp. 386-391.</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Zolotarev V. V., Arkhipova A. B., Parotkin N. Y., Lvova A. P. Strategies of social engineering attacks on information resources of gamified online education projects // CEUR Workshop Proceedings. 2021. V. 2861: International Scientific Conference on Innovative Approaches to the Application of Digital Technologies in Education (SLET), Stavropol, 12–13 Nov. 2020. P. 386–391. URL: http://ceur-ws.org/Vol-2861/.</mixed-citation><mixed-citation xml:lang="en">Arhipova A. B. K voprosu postroeniya modeli fishingovoj ataki na baze teorii nekooperativnyh igr [On the issue of constructing a phishing attack model based on the theory of non-cooperative games]. Perspektiva- 2021, Materialy IX Vserossijskoj molodezhnoj shkoly-seminara po problemam informacionnoj bezopas-nosti, Krasnoyarsk, 30 September – 03 October, 2021, pp. 6-12.</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Архипова А. Б., Нечаев Д. А. К вопросу построения модели фишинговой атаки на базе теории некооперативных игр // Материалы IX Всероссийской молодежной школы-семинара по проблемам информационной безопасности «Перспектива-2021», Красноярск, 30 сентября – 03 октября 2021 года. С. 6–12.</mixed-citation><mixed-citation xml:lang="en">BDU – Ugrozy [DBU – Threats]. Federal'naya sluzhba po tekhnicheskomu i eksportnomu kontrolyu, available at: https://bdu.fstec.ru/threat/ubi.175 (accessed 01.10.2022).</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">БДУ – Угрозы // Федеральная служба по техническому и экспортному контролю. [Электронный ресурс]. URL: https://bdu.fstec.ru/threat/ubi.175 (дата обращения: 01.10.2022).</mixed-citation><mixed-citation xml:lang="en">Grachev A. V. Istoriya vozniknoveniya kiberprestuplenij [The history of cybercrime]. Informacionnaya bezopasnost' i voprosy profilaktiki kiberekstremizma sredi molodezhi, Materialy vnutrivuzovskoj konferencii, Magnitogorsk, Magnitogorskij gosudarstvennyj tekhnicheskij universitet, 09-12 October, 2015, pp. 162-175.</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Грачев А. В. История возникновения киберпреступлений // Материалы внутривузовской конференции «Информационная безопасность и вопросы профилактики киберэкстремизма среди молодежи», Магнитогорск, 09–12 октября 2015 г. С. 162–175.</mixed-citation><mixed-citation xml:lang="en">Komarov A. A. Kriminologicheskie aspekty moshennichestva v global'noj seti Internet: special'nost' 12.00.08 "Ugolovnoe pravo i kriminologiya; ugolovno-ispolnitel'noe pravo" [Criminological aspects of fraud in the global Internet: specialty 12.00.08 "Criminal law and criminology; penal enforcement law"]. Abstract of Ph. D. thesis. Saratov, 2011. 262 p.</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Комаров А. А. Криминологические аспекты мошенничества в глобальной сети Интернет: специальность 12.00.08 «Уголовное право и криминология; уголовно-исполнительное право»: диссертация на соискание ученой степени кандидата юридических наук. Саратов, 2011. 262 с.</mixed-citation><mixed-citation xml:lang="en">Maskirovka virusov [Virus masking], available at: https://ilyarm.ru/txt-maskirovkavirusov-exe-to-txt-zamaskirovat-exe-pod-jpg.html (accessed 03.10.2022)</mixed-citation></citation-alternatives></ref><ref id="cit16"><label>16</label><citation-alternatives><mixed-citation xml:lang="ru">Маскировка вирусов // ilyarm. [Электронный ресурс]. URL: https://ilyarm.ru/txtmaskirovka-virusov-exe-to-txt-zamaskirovat-exe-pod-jpg.html (дата обращения: 03.10.2022).</mixed-citation><mixed-citation xml:lang="en">Men'shakov S. Razminiruem pochtu. Prostoe rukovodstvo po vyyavleniyu fishinga. [We clear the mail. A simple guide to detecting phishing], available at: https://xakep.ru/2021/06/16/mailphishing/ (accessed 04.10.2022).</mixed-citation></citation-alternatives></ref><ref id="cit17"><label>17</label><citation-alternatives><mixed-citation xml:lang="ru">Меньшаков С. Разминируем почту. Простое руководство по выявлению фишинга. / xakep. [Электронный ресурс]. URL: https://xakep.ru/2021/06/16/mailphishing/ (дата обращения: 04.10.2022).</mixed-citation><mixed-citation xml:lang="en">Plotnikova T. V., Harin V. V. Kiberprestupnost' - ugroza XXI veka [Cybercrime - the threat of the XXI century]. Vestnik obshchestvennoj nauchno-issledovatel'skoj laboratorii «Vzaimodejstvie ugo-lovnoispolnitel'noj sistemy s institutami grazhdanskogo obshchestva: istoriko-pravovye i teoretikometodologicheskie aspekty», 2018, no. 12, pp. 153-161.</mixed-citation></citation-alternatives></ref><ref id="cit18"><label>18</label><citation-alternatives><mixed-citation xml:lang="ru">Плотникова Т. В., Харин В. В. Киберпреступность – угроза XXI века // Вестник общественной научно-исследовательской лаборатории «Взаимодействие уголовно-исполнительной системы с институтами гражданского общества: историко-правовые и теоретико-методологические аспекты». 2018. № 12. С. 153–161.</mixed-citation><mixed-citation xml:lang="en">Samye opasnye vlozhennye fajly [The most dangerous attachments], available at: http://security.mosmetod.ru/moshennichestvo-v-seti/152-opasnye-vlozhennyefajly (accessed 07.10.2022).</mixed-citation></citation-alternatives></ref><ref id="cit19"><label>19</label><citation-alternatives><mixed-citation xml:lang="ru">Самые опасные вложенные файлы // Warp Theme Framework. [Электронный ресурс]. URL: http://security.mosmetod.ru/moshennichestvo-v-seti/152-opasnyevlozhennye-fajly (дата обращения: 07.10.2022).</mixed-citation><mixed-citation xml:lang="en">Fomina, N. A. Ispol'zovanie metodov social'noj inzhenerii pri moshennichestve v so-cial'nyh setyah [The use of social engineering methods in fraud in social networks]. Informacionnaya bezopasnost' i voprosy profilak-tiki kiberekstremizma sredi molodezhi, Materialy vnutrivuzovskoj konferencii, Magnitogorsk, Magnitogorskij gosudarstvennyj tekhnicheskij universitet, 09-12 October, 2015, pp. 443-453.</mixed-citation></citation-alternatives></ref><ref id="cit20"><label>20</label><citation-alternatives><mixed-citation xml:lang="ru">Фомина Н. А. Использование методов социальной инженерии при мошенничестве в социальных сетях // Материалы внутривузовской конференции «Информационная безопасность и вопросы профилактики киберэкстремизма среди молодежи», Магнитогорск, 09– 12 октября 2015 г. С. 443–453.</mixed-citation><mixed-citation xml:lang="en">Фомина Н. А. Использование методов социальной инженерии при мошенничестве в социальных сетях // Материалы внутривузовской конференции «Информационная безопасность и вопросы профилактики киберэкстремизма среди молодежи», Магнитогорск, 09– 12 октября 2015 г. С. 443–453.</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
