Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Sponsors Antiphishing Bakeoff

Posted by ryuzaki0 on from the here-phishie-phishie dept.

uniquebydegrees writes, "InfoWorld is blogging about the (predictable) results of a Microsoft-sponsored antiphishing technology bakeoff. From the TechWatch blog: 'Microsoft's Phishing Filter (MPF) in IE 7 Beta 3 received the highest "composite score" at 172, followed closely by NetCraft's toolbar with a composite score of 168. But when you dig into the numbers, another story emerges... IE's MPF antiphishing toolbar doesn't top out any of the individual tests that make up the composite score... So how did MPF end up on top?... Microsoft didn't do the best job of spotting phish sites, but it did do the best job of blocking the ones it did spot, and blocking was what garnered the most points... Blocking a phishing Web site earned you twice as many points as just warning about it in this test, but is blocking really twice as effective as just warning users?'"

6 of 94 comments (clear)

  1. What do most users do when they get a warning box? by chroot_james · · Score: 4, Insightful

    "What is this window doing here?! I just want to get to paypal already..." *clicks ok* "There. Now I can finish this ssn and cc verification..."

    --
    Reality is nothing but a collective hunch.
  2. I hate slashdot so much by anotherone · · Score: 5, Insightful

    If anything, blocking a site should be worth more than double, since most people I know seem to just ignore warning dialogs.

    --
    Username taken, please choose another one.
    1. Re:I hate slashdot so much by jrumney · · Score: 3, Insightful

      If anything, blocking a site should be worth more than double, since most people I know seem to just ignore warning dialogs.

      My first thought was that the false positive rate is probably going to be about the same as WGA, blocking far too many sites, but you're right. The ideal solution would be to have it configurable and default to blocking, since the users who click through without reading are probably not going to go anywhere near the Options dialog.

  3. Stupid questions by Solkre · · Score: 3, Insightful

    Why do all article descriptions end with a stupid question?

    And for those who disagree, there ARE stupid questions.

  4. Actually.... by zappepcs · · Score: 3, Insightful

    It is the blocking part without user interaction that provokes that 'just click ok' reflex all the time. When the OS (or any machine, service, etc.) coddles the user to the point that they don't know what they are doing, or having the computer do, it breeds ignorance. No, I'm not dumb enough to think that all computer users must be sysadmins, but software that deepens their ignorance is not good software. Intelligent software should tell user's what is happening, why(if possible), and what the software can do about it, and/or what the user should do about it. I know that clippy was pretty annoying, but a less annoying and more intelligent approach like clippy would help user's to make better security decisions in the future. Just two cents worth.

    --
    Support NYCountryLawyer RIAA vs People
  5. Template for MS Slashdot Articles by derrickh · · Score: 4, Insightful

    Microsoft did something right...but is that something actually not wrong?

    Microsoft performed well...but is performing well more important than performing badly?

    Microsoft isnt all bad...but is not being bad the same as being good?

    D

    --
    The first, last, and only tech news site on the net