Phishing Detection Methodology Using Web Sites Heuristic


KIPS Transactions on Computer and Communication Systems, Vol. 4, No. 10, pp. 349-360, Oct. 2015
10.3745/KTCCS.2015.4.10.349,   PDF Download:

Abstract

In recent year, phishing attacks are flooding with services based on the web technology. Phishing is affecting online security significantly day by day with the vulnerability of web pages. To prevent phishing attacks, a lot of anti-phishing techniques has been made with their own advantages and dis-advantages respectively, but the phishing attack has not been eradicated completely yet. In this paper, we have studied phishing in detail and categorize a process of phishing attack in two parts - Landing-phase, Attack-phase. In addition, we propose an phishing detection methodology based on web sites heuristic. To extract web sites features, we focus on URL and source codes of web sites. To evaluate performance of the suggested method, set up an experiment and analyze its results. Our methodology indicates the detection accuracy of 98.9% with random forest algorithm. The evaluation of proof-ofconcept reveals that web site features can be used for phishing detection.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
J. L. Lee, D. H. Park, C. H. Lee, "Phishing Detection Methodology Using Web Sites Heuristic," KIPS Transactions on Computer and Communication Systems, vol. 4, no. 10, pp. 349-360, 2015. DOI: 10.3745/KTCCS.2015.4.10.349.

[ACM Style]
Jin Lee Lee, Doo Ho Park, and Chang Hoon Lee. 2015. Phishing Detection Methodology Using Web Sites Heuristic. KIPS Transactions on Computer and Communication Systems, 4, 10, (2015), 349-360. DOI: 10.3745/KTCCS.2015.4.10.349.