PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder

Choon, Lin Tan and Kang, Leng Chiew and Kok, Sheik Wong and San, Nah Sze (2016) PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder. Decision Support Systems, 88. pp. 18-27. ISSN 0167-9236

[img]
Preview
PDF
Phishing webpage detection via identity keywords (abstract).pdf

Download (288kB) | Preview

Abstract

This paper proposes a phishing detection technique based on the difference between the target and actual identities of a webpage. The proposed phishing detection approach, called PhishWHO, can be divided into three phases. The first phase extracts identity keywords from the textual contents of the website, where a novel weighted URL tokens system based on the N-gram model is proposed. The second phase finds the target domain name by using a search engine, and the target domain name is selected based on identity-relevant features. In the final phase, a 3-tier identity matching system is proposed to determine the legitimacy of the query webpage. The overall experimental results suggest that the proposed system outperforms the conventional phishing detection methods considered.

Item Type: Article
Uncontrolled Keywords: Phishing detection, Identity keywords, N-gram, Weighted URL tokens, Search engine, unimas, university, universiti, Borneo, Malaysia, Sarawak, Kuching, Samarahan, ipta, education, research, Universiti Malaysia Sarawak
Subjects: T Technology > T Technology (General)
Divisions: Academic Faculties, Institutes and Centres > Faculty of Computer Science and Information Technology
Depositing User: Karen Kornalius
Date Deposited: 06 Sep 2016 20:10
Last Modified: 01 Nov 2016 01:36
URI: http://ir.unimas.my/id/eprint/13363

Actions (For repository members only: login required)

View Item View Item