PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder

This paper proposes a phishing detection technique based on the difference between the target and actual identities of a webpage. The proposed phishing detection approach, called PhishWHO, can be divided into three phases. The first phase extracts identity keywords from the textual contents of the...

Full description

Saved in:
Bibliographic Details
Main Authors: Tan, Choon Lin, Chiew, Kang Leng, Wong, KokSheik, Sze, San Nah
Format: Article
Language:English
Published: Elsevier B.V. 2016
Subjects:
Online Access:http://ir.unimas.my/id/eprint/13363/1/Phishing%20webpage%20detection%20via%20identity%20keywords%20%28abstract%29.pdf
http://ir.unimas.my/id/eprint/13363/
http://www.sciencedirect.com/science/article/pii/S0167923616300781
http://dx.doi.org/10.1016/j.dss.2016.05.005
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.unimas.ir.13363
record_format eprints
spelling my.unimas.ir.133632022-09-14T08:23:53Z http://ir.unimas.my/id/eprint/13363/ PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder Tan, Choon Lin Chiew, Kang Leng Wong, KokSheik Sze, San Nah T Technology (General) This paper proposes a phishing detection technique based on the difference between the target and actual identities of a webpage. The proposed phishing detection approach, called PhishWHO, can be divided into three phases. The first phase extracts identity keywords from the textual contents of the website, where a novel weighted URL tokens system based on the N-gram model is proposed. The second phase finds the target domain name by using a search engine, and the target domain name is selected based on identity-relevant features. In the final phase, a 3-tier identity matching system is proposed to determine the legitimacy of the query webpage. The overall experimental results suggest that the proposed system outperforms the conventional phishing detection methods considered. Elsevier B.V. 2016 Article PeerReviewed text en http://ir.unimas.my/id/eprint/13363/1/Phishing%20webpage%20detection%20via%20identity%20keywords%20%28abstract%29.pdf Tan, Choon Lin and Chiew, Kang Leng and Wong, KokSheik and Sze, San Nah (2016) PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder. Decision Support Systems, 88. pp. 18-27. ISSN 0167-9236 http://www.sciencedirect.com/science/article/pii/S0167923616300781 http://dx.doi.org/10.1016/j.dss.2016.05.005
institution Universiti Malaysia Sarawak
building Centre for Academic Information Services (CAIS)
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Malaysia Sarawak
content_source UNIMAS Institutional Repository
url_provider http://ir.unimas.my/
language English
topic T Technology (General)
spellingShingle T Technology (General)
Tan, Choon Lin
Chiew, Kang Leng
Wong, KokSheik
Sze, San Nah
PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder
description This paper proposes a phishing detection technique based on the difference between the target and actual identities of a webpage. The proposed phishing detection approach, called PhishWHO, can be divided into three phases. The first phase extracts identity keywords from the textual contents of the website, where a novel weighted URL tokens system based on the N-gram model is proposed. The second phase finds the target domain name by using a search engine, and the target domain name is selected based on identity-relevant features. In the final phase, a 3-tier identity matching system is proposed to determine the legitimacy of the query webpage. The overall experimental results suggest that the proposed system outperforms the conventional phishing detection methods considered.
format Article
author Tan, Choon Lin
Chiew, Kang Leng
Wong, KokSheik
Sze, San Nah
author_facet Tan, Choon Lin
Chiew, Kang Leng
Wong, KokSheik
Sze, San Nah
author_sort Tan, Choon Lin
title PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder
title_short PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder
title_full PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder
title_fullStr PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder
title_full_unstemmed PhishWHO: Phishing webpage detection via identity keywords extraction and target domain name finder
title_sort phishwho: phishing webpage detection via identity keywords extraction and target domain name finder
publisher Elsevier B.V.
publishDate 2016
url http://ir.unimas.my/id/eprint/13363/1/Phishing%20webpage%20detection%20via%20identity%20keywords%20%28abstract%29.pdf
http://ir.unimas.my/id/eprint/13363/
http://www.sciencedirect.com/science/article/pii/S0167923616300781
http://dx.doi.org/10.1016/j.dss.2016.05.005
_version_ 1744357751596777472
score 13.211869