iTrustPage: Pretty Good Phishing Protection
[Download] [Description] [Screenshots] [People] [License]
Download
Warning: iTrustPage records anonymized usage information into a log. These logs are periodically sent to us. We analyze these logs for our research to characterize the benefits of using iTrustPage. More information.

Install iTrustPage 3
 (NEW! June, 2007)
When I clicked "Install" nothing happened! What should I do?

 Requires Firefox 1.5 or Firefox 2.0. Download from the Firefox homepage

Frequently Asked Questions

Watch the Research-In-Action video presented February 2007. Download Movie (70 MB)
Watch the Work-In-Progress video presented at OSDI 2006. Download Movie (60 MB)

iTrustPage is a SourceForge Project: Participate in future versions!
Brief Description

iTrustPage prevents an Internet user from filling out untrustworthy Web forms. iTrustPage assumes that a user's browser is trusted (when the browser is compromised, the user can be subject to attacks much more serious than phishing.) iTrustPage's design is centered around three observations:

  1. iTrustPage tries to be as user-transparent as possible. In designing this tool we tried very hard to avoid annoying the user.
  2. Sometimes, iTrustPage cannot determine whether a form is trustworthy. In those cases, iTrustPage is asking the user to describe the form as if searching for the form on Google. This user-supplied information may help iTrustPage deem the form as trustworthy.
  3. Any anti-phishing tool (including iTrustPage) has false negatives (i.e., a user can still visit a phishing site). iTrustPage tries very hard to minimize such occurrences, but there are no guarantees. After all, iTrustPage only offers pretty good phishing protection.
Here's How iTrustPage Works:

When visiting a form, iTrustPage determines whether or not the form is trustworthy. This is determined based on three factors:

  1. The domain's popularity.
  2. Search engine results
  3. Previous validations made by you

When a user attempts to fill-out an untrustworthy Web form, iTrustPage tries to find whether the untrustworthy form is the form the user intended to fill. For this, iTrustPage asks the user to describe the form as if searching for the form on Google. Once the user enters keywords describing the form, iTrustPage performs a search on Google. If the form's top-level domain is found among the top-10 Google's answers, iTrustPage allows the user to pass through.

If the form's top-level domain is not found among the top-10 answers returned by Google, the user is presented a list of Web pages that match the user's intent. At this step, the user has two options: (1) choose one of the trustworthy Web pages returned by Google; or (2) refine their form's description.

If the user chooses to refine the form's description, the step above is repeated. iTrustPage allows the user a fixed number of search refinements based on how high the page is ranked. Once this number is exhausted, iTrustPage gives the user a third option: Proceed anyway. Once the user clicks this third option, all bets are off.

Screenshots
Screenshots of iTrustPage preventing REAL phishing attacks!
Phishing Scenarios against iTrustPage
We believe a phishing website has two ways to attack users protected by iTrustPage. Stay tuned for more on this. TBA.
People
Troy Ronda (graduate student)
Stefan Saroiu (faculty)
License
Copyright 2006 Troy Ronda and the University of Toronto. iTrustPage comes with ABSOLUTELY NO WARRANTY.
CC-GNU GPL
This software is licensed under the CC-GNU GPL.