01821nas a2200193   4500000000100000000000100001008004100002260000900043653002300052653001200075653002100087653002800108653001300136100001700149245004000166300001000206490000700216520140400223       2011                            d  c201110aBrowser Indicators10aCookies10aDynamic Identity10aPassword Authentication10aPhishing1 aSandeep Sood00aPhishing Attacks: A Challenge Ahead  a12-260 v263 a<p>Password based authentication is used in online web applications due to its simplicity and convenience. Main advantage of passwords is that users can memorize them easily without needing any hardware to store them. Efficient password based authentication schemes are required to authenticate legitimacy of remote users or data origin authentication over an insecure communication channel. Password based authentication schemes are highly susceptible to phishing attacks. The phishing attacks are becoming more and more sophisticated and therefore require strong countermeasures. It is important to detect the phishing sites early because most of them are short-lived and cause the damage in the short time span between going online and vanishing. Phishing is doing direct damage to the financial industry and is also affecting the expansion of e-commerce. In this paper, we present the survey of different anti-phishing techniques based on several crucial criteria. This study will help in developing different password based anti-phishing authentication techniques for web applications. Financial transactions in web applications require highly secure authentication protocols. Phishing is the biggest problem financial organizations are facing to provide online transaction services. Most threatening phishing attacks require countermeasures to make online transactions reliable and secure.</p>