BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Phishing tips and techniques: tackle\, rigging\, and how and when 
 to phish - Peter Gutmann\, University of Auckland
DTSTART:20070501T131500Z
DTEND:20070501T141500Z
UID:TALK7273@talks.cam.ac.uk
CONTACT:Saar Drimer
DESCRIPTION:Despite the crypto wars having mostly ended some years ago\, w
 e don't seem to be any better off now that good crypto is widely available
 . The reason for this is that attackers are exploiting the weakest link in
  the interface and doing an end-run around the crypto. This talk looks at 
 the technical and psychological backgrounds behind why phishing works\, an
 d how this can be exploited to make phishing attacks more effective. To da
 te\, apart from the occasional use of psychology grads by 419 scammers\, n
 o-one has really looked at the wetware mechanisms that make phishing succe
 ssful. Security technology doesn't help here\, with poorly-designed user i
 nterfaces playing right into the phishers hands.\n\nAfter covering the psy
 chological nuts and bolts of how users think and make decisions\, the talk
  goes into specific examples of user behaviour clashing with security user
  interface design\, and how this could be exploited by attackers to bypass
  security speedbumps that might be triggered by phishing attacks. Dependin
 g on your point of view\, this is either a somewhat hair-raising cookbook 
 for more effective phishing techniques\, or a warning about how these type
 s of attacks work and what needs to be defended against.\n\nPeter Gutmann'
 s webpage:\nhttp://www.cs.auckland.ac.nz/~pgut001/\n
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR