HomeCLOUDvol. 2 no. 1 (2014)

DEVELOPING A GOOGLE CHROME EXTENSION FOR MINIMIZING DNS SPOOFING BASED PHARMING ATTACKS

Ronald Grenan Ela | Kevin Mark Faunillan | Rick Stephen Gingo | Quirstan Jybee Magallon | Eric John G. Emberda

 

Abstract:

The researchers have made a Google Chrome extension that minimizes DNS-Spoofing based pharming blocking the suspected pharming site. This extension was developed in a way that prevents a user in accessing a pharming site that will steal another user’s credentials or information such as username and password. The extension will retrieve the IP address of the current website being accessed and the IP address of the network and compare the accessed site with the network IP addresses in the network IP addresses, if the IP address of the accessed site is the same with one of the compared network IP address in the network IP addresses, that site is pharmed or the IP address of the corresponding website is being spoofed then the Google chrome extension blocks this site by prompting the user a warning and redirecting the user to a blank page. Using this extension, the researchers have found out that the comparing technique they have use is effective for it is able to block a pharming site. Furthermore, this extension will not totally eliminate pharming through DNS Spoofing however it will minimize the threat of this kind of attack. An experimental research methodology was employed in the study, guided with the incremental software process model the researchers were able to implement the study.