Know Your Phish: Novel Techniques for Detecting Phishing Sites and Their Targets
dc.contributor | Aalto-yliopisto | fi |
dc.contributor | Aalto University | en |
dc.contributor.author | Marchal, Samuel | |
dc.contributor.author | Saari, Kalle | |
dc.contributor.author | Singh, Nidhi | |
dc.contributor.author | Asokan, N. | |
dc.contributor.department | Tietotekniikan laitos | fi |
dc.contributor.department | Department of Computer Science | en |
dc.contributor.lab | Secure Systems | en |
dc.contributor.school | Perustieteiden korkeakoulu | fi |
dc.contributor.school | School of Science | en |
dc.date.accessioned | 2017-07-17T09:02:41Z | |
dc.date.available | 2017-07-17T09:02:41Z | |
dc.date.issued | 2016 | |
dc.description.abstract | Phishing is a major problem on the Web. Despite the significant attention it has received over the years, there has been no definitive solution. While the state-of-the-art solutions have reasonably good performance, they require a large amount of training data and are not adept at detecting phishing attacks against new targets. In this paper, we begin with two core observations: (a) although phishers try to make a phishing webpage look similar to its target, they do not have unlimited freedom in structuring the phishing webpage, and (b) a webpage can be characterized by a small set of key terms, how these key terms are used in different parts of a webpage is different in the case of legitimate and phishing webpages. Based on these observations, we develop a phishing detection system with several notable properties: it requires very little training data, scales well to much larger test data, is language-independent, fast, resilient to adaptive attacks and implemented entirely on client-side. In addition, we developed a target identification component that can identify the target website that a phishing webpage is attempting to mimic. The target detection component is faster than previously reported systems and can help minimize false positives in our phishing detection system. | en |
dc.description.version | Peer reviewed | en |
dc.format.extent | 323-333 | |
dc.format.mimetype | application/pdf | en |
dc.identifier.citation | Marchal, Samuel & Saari, Kalle & Singh, Nidhi & Asokan, N.. 2016. Know Your Phish: Novel Techniques for Detecting Phishing Sites and Their Targets. 2016 IEEE 36th International Conference on Distributed Computing Systems (ICDCS), 27-30 June 2016, Nara, Japan. 323-333. 1063-6927 (electronic). 978-1-5090-1483-5 (electronic). DOI: 10.1109/icdcs.2016.10. | en |
dc.identifier.doi | 10.1109/icdcs.2016.10 | |
dc.identifier.isbn | 978-1-5090-1483-5 (electronic) | |
dc.identifier.issn | 1063-6927 (electronic) | |
dc.identifier.uri | https://aaltodoc.aalto.fi/handle/123456789/27295 | |
dc.identifier.urn | URN:ISBN:978-1-5090-1483-5 | |
dc.language.iso | en | en |
dc.publisher | IEEE | en |
dc.relation.ispartof | 2016 IEEE 36th International Conference on Distributed Computing Systems (ICDCS), 27-30 June 2016, Nara, Japan | en |
dc.rights | © 2016 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other work. | en |
dc.rights.holder | IEEE | |
dc.subject.keyword | computer crime | en |
dc.subject.keyword | Internet | en |
dc.subject.keyword | phishing detection | en |
dc.subject.keyword | target identification | en |
dc.subject.other | Computer science | en |
dc.title | Know Your Phish: Novel Techniques for Detecting Phishing Sites and Their Targets | en |
dc.type | A4 Artikkeli konferenssijulkaisussa | fi |
dc.type.dcmitype | text | en |
dc.type.version | Post print | en |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- isbn9781509014835.pdf
- Size:
- 388.26 KB
- Format:
- Adobe Portable Document Format