Last week, the Anti-Phishing Working Group (APWG) announced the publication of its Anti-Phishing Solutions Directory, which describes the categories technologies available to counter phishing as well as the points of intervention at which they are applied to deter, detect or arrest phishing attacks.
The Anti-Phishing Working Group official APWG directory was developed after repeated requests for a comprehensive directory of solutions by IT managers, analysts, researchers, government ministers, police and journalists from around the world. The initial classification scheme yielded 14 categories of solutions. These include the following technologies and services:
- Preventing cousin domains
- Detecting and analyze attacks
- Takedown
- Fraud analysis
- Forensic services
- Application gateways
- Consumer toolbars
- Email authentication
- Email filtering
- Web filtering
- Hardware-based two-factor authentication
- Software-based Strong Authentication
- Mutual authentication
- Law enforcement enablement
"The APWG is often called upon to characterize the extent and evolving nature of phishing attacks. The challenge from there, however, is to find solutions that address the various aspects of phishing schemes," said Chairman David Jevans. "As a neutral industry body, the APWG doesn't pick winners and losers, but we are best positioned to inform the dialogue about solutions in a way that makes them accessible to experts and non-experts alike," Jevans said. "Thus, our directory."
The directory is comprised of solutions from officials sponsors of the APWG.
