雅思辅导热招
您的位置:外语教育网 > 雅思 > 复习指导 > 阅读 > 正文

雅思阅读实战:Study Finds Web Antifraud Measure Ineffective

2007-03-16 11:04   来源:无忧雅思网       我要纠错 | 打印 | 收藏 | | |

  Study Finds Web Antifraud Measure Ineffective

  Published: February 5, 2007      New York Times

  1. Internet security experts have long known that simple passwords do not fully defend online bank accounts from determined fraud artists. Now a study suggests that a popular secondary security measure provides little additional protection.

  2.The study, produced jointly by researchers at Harvard and the Massachusetts Institute of Technology, looked at a technology called site-authentication images. In the system, currently used by financial institutions like Bank of America, ING Direct and Vanguard, online banking customers are asked to select an image, like a dog or chess piece, that they will see every time they log in to their account.

  3.The idea is that if customers do not see their image, they could be at a fraudulent Web site, dummied up to look like their bank's, and should not enter their passwords.

  4.The Harvard and M.I.T. researchers tested that hypothesis. In October, they brought 67 Bank of America customers in the Boston area into a controlled environment and asked them to conduct routine online banking activities, like looking up account balances. But the researchers had secretly withdrawn the images.

  5.Of 60 participants who got that far into the study and whose results could be verified, 58 entered passwords anyway. Only two chose not to log on, citing security concerns.

  6.“The premise is that site-authentication images increase security because customers will not enter their passwords if they do not see the correct image,” said Stuart Schechter, a computer scientist at the M.I.T. Lincoln Laboratory. “From the study we learned that the premise is right less than 10 percent of the time.”

  7.He added: “If a bank were to ask me if they should deploy it, I would say no, wait for something better,” he said.

  8.The system has some high-power supporters in the financial services world, many trying to comply with new online banking regulations. In 2005, the Federal Financial Institutions Examination Council, an interagency body of federal banking regulators, determined that passwords alone did not effectively thwart intruders like identity thieves.

  9.It issued new guidelines, asking financial Web sites to find better ways for banks and customers to identify each other online. January 2007 was set as the compliance date, though the council has yet to begin enforcing the mandate.

  10.Banks immediately knew what they did not want to do: ask customers to download new security software, or carry around hardware devices that feed them PIN codes they can use to authenticate their identities. Both solutions would add an extra layer of security but, the banks believed, detract from the convenience of online banking.

  11.The image system, introduced in 2004 by a Silicon Valley firm called PassMark Security, offered banks a pain-free addition to their security arsenals. Bank of America was among the first to adopt it, in June 2005, under the brand name SiteKey, asking its 21 million Web site users to select an image from thousands of possible choices and to choose a unique phrase they would see every time they logged in.

  12.SiteKey “gives our customers a fairly easy way of authenticating the Bank of America Web site,” said Sanjay Gupta, an e-commerce executive at the bank. “It was very well received.”

  13.The Harvard and M.I.T. researchers, however, found that most online banking customers did not notice when the SiteKey images were absent. When respondents logged in during the study, they saw a site maintenance message on the screen where their image and phrases should have been pictured. The error message also had a conspicuous spelling mistake, further suggesting something fishy.

  14.Mr. Gupta of Bank of America said he was not troubled by the results of the survey, and stressed that SiteKey had made the bank's Web site more secure. He also said that the system was only a single part of a larger security blanket. “It's not like we're betting the bank on SiteKey,” he said.

  15.Most financial institutions, like Bank of America, have other ways to tell if a customer is legitimate. The banks often drop a small software program, called a cookie, onto a user's PC to associate the computer with the customer. If the customer logs in from another machine, he may be asked personal questions, like his mother's maiden name.

  16.Rachna Dhamija, the Harvard researcher who conducted the study, points out that swindlers can use their dummy Web sites to ask customers those personal questions. She said that the study demonstrated that site-authentication images are fundamentally flawed and, worse, might actually detract from security by giving users a false sense of confidence.

  17.RSA Security, the company that bought PassMark last year, “has a lot of great data on how SiteKey instills trust and confidence and good feelings in their customers,” Ms. Dhamija said. “Ultimately that might be why they adopted it. Sometimes the appearance of security is more important than security itself.”

  (811 words   nytimes.com)

  Questions 1-5

  Do the following statements agree with the information given in the passage? Please write

  TRUE                 if the statement agrees with the writer

  FALSE               if the statement does not agree with the writer

  NOT GIVEN if there is no information about this in the passage

  1.According to internet security experts, secondary security measures provide little additional protection against fraud.

  2.In the Harvard and MIT study, two subjects didn't log on without seeing the correct pictures.

  3.According to Schechter, more than 90% of online banking customers studied logged on without seeing the right pictures.

  4.The image system is the only security measure that the banks mentioned in the passage have currently.

  5.Bank of America is the first bank that adopted the image system.

  Questions 6-13

  Answer the following questions or complete the following sentences by choosing NO MORE THAN THREE WORDS for each answer.

  6.What is ING Direct and Vanguard?

  7.What might online banking customers be cheated to give at a fraudulent Web site?

  8.What may stop online banking customers from using new verification methods?

  9.The key to online banking security is to verify the ______ of customers.

  10.Where is PassMark Security located?

  11.What is the reason why SiteKey is popular among online banking customers?

  12.What was used instead of images in the Harvard and M.I.T. study?

  13.How many security methods are mentioned in this passage?

  Answer keys

  1. 第一段“Now a study suggests that a popular secondary security measure provides little additional protection.”似与问题文字很接近,但是原文中a popular secondary security measure是指特定的一个措施,而非泛指所有secondary security measure.原文没有其它secondary security measure安全有效性的内容。故应选择NG.

  2. 见第4、5段内容。第四段 “But the researchers had secretly withdrawn the images.”即研究人员撤下了图形,第五段“Only two chose not to log on, citing security concerns.”,有两个人因为安全考虑未进入。

  3. T     见第6段。

  4.  F     见第11、14段。

  5.  F     见第11段“Bank of America was among the first to adopt it”,可见首批采用图形识别软件的银行并非Bank of America一家。

  6.  A financial institution              见第二段。

  7. (their) passwords              见第三段。

  8.  less convenience            见第十段。

  9.  identity          见第八、十段。

  10.  Silicon Valley       见第十一段。

  11.  easy to use              见第十二段。

  12.  site maintenance message              见第十三段“When respondents logged in during the study, they saw a site maintenance message on the screen where their image and phrases should have been pictured.”

  13. 4  分别见第十段的“download new security software”和“hardware devices that feed them PIN codes”,第十五段的“a small software program, called a cookie”,以及本文提到的site-authentication images.

相关资讯:
网站导航:
 四六级 指南 动态 经验 试题 资料  托福 指南 动态 经验 留学 备考
 雅思 指南 动态 机经 经验 辅导  公共英语 指南 动态 备考 试题 辅导
 日语 就业 辅导 留学 考试 报考  法语 资料 文化 考试 留学 辅导
 韩语 入门 口语 阅读 留学 文化  西语 辅导 资料 考试 留学 风采
词汇串讲班
599元/门
系统讲解词汇,轻松提高分数
课时数:6课时
语法串讲班
599元/门
语法考点剖析,轻松攻克难关
课时数:6课时
冲刺班套餐一
2200元/门
系统讲解考点,轻松应对考试
课时数:24课时
冲刺班套餐二
300元/门
系统讲解考点,轻松应对考试
课时数:40课时
口语冲刺班 揭秘口语技巧,提升口语能力
听力冲刺班 传授答题方法,把握考试动向
阅读冲刺班 归纳解题技巧,攻克阅读难关
写作冲刺班 讲解高分秘诀,提升写作水平

外语教育网(www.for68.com)是北京东大正保科技有限公司(CDEL)旗下一家大型外语远程教育网站,正保科技成立于2005年7月,是国内超大型外语远程教育基地,上榜“北京优质教育资源榜”--“百万读者推崇的网络教育机构”。


公司凭借雄厚的师资力量、先进的网络视频多媒体课件技术、严谨细致的教学作风、灵活多样的教学方式,为学员提供完整、优化的外语课程,既打破了传统面授的诸多限制,发挥了网络教育的优势,也兼顾面授的答疑与互动特点,为我国培养了大量优秀的外语人才。


为了满足学员学习不同语种、不同阶段的学习需求,网站开设了包括考试英语、行业英语、实用口语以及小语种在内的百余门语言学习课程,涵盖英语、日语、韩语、俄语、德语、法语、西班牙语、意大利语、阿拉伯语等主要语种,供学员自由选择。此外,网站还拥有各类外语专业信息和考试信息20余万条,是广大学员了解外语类考试最新政策、动态及参加各语种培训的优质网站。


北京东大正保科技有限公司成立于2000年,是一家具备网络教育资质、经教育部批准开展远程教育的专业公司,为北京市高新技术企业、中国十大教育集团、联合国教科文组织技术与职业教育培训在中国的唯一试点项目。


公司下属13家行业远程教育网站,业务涵盖了会计、法律、医学、建设、自考、成考、考研、中小学、外语、信息技术、汉语言教学等诸多领域,拥有办公面积8000多平米,员工近千人,公司年招生规模达270万人。由于正保远程教育(China Distance Education Holdings Ltd., CDEL)在中国互联网远程教育行业内的绝对优势和强大影响力,正保教育模式一直被广大投资人所追捧。2008年7月30日,公司在美国纽约证券交易所正式挂牌上市(股票交易代码:DL),是2008年唯一一家在美国纽交所上市的专业从事互联网远程教育的中国企业。


版权声明
   1、凡本网注明 “来源:外语教育网”的所有作品,版权均属外语教育网所有,未经本网授权不得转载、链接、转贴或以其他方式使用;已经本网授权的,应在授权范围内使用,且必须注明“来源:外语教育网”。违反上述声明者,本网将追究其法律责任。
  2、本网部分资料为网上搜集转载,均尽力标明作者和出处。对于本网刊载作品涉及版权等问题的,请作者与本网站联系,本网站核实确认后会尽快予以处理。
  本网转载之作品,并不意味着认同该作品的观点或真实性。如其他媒体、网站或个人转载使用,请与著作权人联系,并自负法律责任。
  3、本网站欢迎积极投稿
  4、联系方式:
编辑信箱:for68@chinaacc.com
电话:010-82319999-2371