摘要 |
Provided are an e-mail anti-phishing system and method, the system comprising: an email address registration and authentication subsystem, an email signature recording subsystem, and an email signature query subsystem. An email sender registers an email address in use in the email address registration and authentication subsystem. The email sender uses a signature generator to generate a signature in an email message to be sent, records the generated signature in the email signature recording subsystem in a secure way, sends the email to an email receiver after a successful recording, and adds a field to an email header of the email indicating whether the recording has been performed. The email receiver, after receiving the email, uses the signature generator to generate the signature, and queries, via the email signature query subsystem, whether the email has been recorded, thereby determining whether the email is an illegal phishing email. The system can identify a phishing email, thereby ensuring that email content has not been changed. |