Information source-based classification of automatic phishing website detectors

Proceedings - 11th IEEE/IPSJ International Symposium on Applications and the Internet, SAINT 2011

Volumn , Issue , 2011, Pages 190-195

  Shahriar, Hossain ^a   Zulkernine, Mohammad ^a  

^a QUEEN S UNIVERSITY   (Canada)

Author keywords

Anti phishing technique; information source

Indexed keywords

ANTI-PHISHING; COMMON FEATURES; INFORMATION SOURCES; PERSONAL INFORMATION; PHISHING; PHISHING ATTACKS;

CLASSIFICATION (OF INFORMATION); COMPUTER CRIME; INTERNET; TELECOMMUNICATION NETWORKS;

INFORMATION DISSEMINATION;

EID: 80052984665     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SAINT.2011.34     Document Type: Conference Paper

References (45)

1. H. Shahriar and M. Zulkernine, "Trustworthiness Testing of Phishing Websites: A behavioral Model-based Approach,"Future Generation Computer Systems, March 2011, Elsevier.
2. H. Shahriar and M. Zulkernine, "PhishTester: Automatic Testing of Phishing Attacks," Proc. of Conf. on Secure Soft. Integration and Reliability Improvement, Singapore, Jun 2010, pp. 198-207.
3. C. Yue and H. Wang, "Anti-Phishing in Offense and Defense," Proc. of ACSAC, California, Dec 2008, p. 345-354.
4. X. Dong, J. A Clark, and J. Jacob, "User Behavior-based Phishing Websites Detection," Proc. of Intl. Multi. on Comp. Sci. and Info. Tech., Wisla, Poland, Oct 2008, pp. 783-790.
5. Y. Zhang, J. Hong, and L. Cranor, "CANTINA: A Contentbased Approach Detecting Phishing Websites," Proc. of World Wide Web, Banff, Alberta, May 2007, pp. 639-648.
6. PhishTank, Accessed form http://phishtank.org
7. Y. Wang, R. Agrawal, and B. Choi, "Light Weight Anti- Phishing with User Whitelisting in a Web Browser," Proc. of the IEEE Region 5 Conf., Kansas City, April 2008, pp. 1-4.
8. J. Kang and D. Lee, "Advanced White List Approach for Preventing Access to Phishing Sites," Proc. of the Intl. Conf. on Conv. Info. Tech., Korea, November 2007, pp. 491-496.
9. D. Geer, "Security Technologies go Phishing," Computer Archive, Volume 38, Issue 6, June 2005, pp. 18-21.
10. I. Fette, N. Sadeh, and A. Tomasic, "Learning to Detect Phishing Emails," Proc. of WWW, Alberta, 2007, p. 649-656.
11. M. Chandrasekaran, R. Chinchani, and S. Upadhyaya, "PHONEY: Mimicking User Response to Detect Phishing Attacks," Proc. of Symp. on World of Wireless, Mobile and Multi. Networks, 2006, Niagara-Falls, Jun 2006, p. 668-672.
12. R. Dhamija and J. Tygar, "The battle against phishing: Dynamic Security Skins," Proc. of SOUPS, Pittsburgh, July 2005, pp. 77-88.
13. rd Intl. Conf. on Security and Privacy in Communication Networks, France, Sept 2007, pp. 454-463.
14. Anti-Phishing Working Group, http://www.antiphishing.org.
15. Internet Explorer 8, http://www.microsoft.com/
16. Y. Pan and X. Ding, "Anomaly-based Web Phishing Page Detection", Proc. of ACSAC, Miami, Dec 2006, pp. 381-392.
17. th NDSS, San Diego, February 2004.
18. T. Beardsley, "Evolution of Phishing Attacks," January 2005, www.antiphishing.org/Evolution of Phishing Attacks.pdf.
19. G. Liu, B. Qiu, and L. Wenyin, "Automatic Detection of Phishing Target from Phishing Webpage," Proc. of Conf. on Pattern Recognition, Istanbul, Aug 2010, pp.4153-4156.
20. B. Wardman and G. Warner, "Automating Phishing Website Identification through Deep MD5 Matching," eCrime Researchers Summit, Atlanta, October 2008, pp. 1-7.
21. Mozilla Firefox, http://www.mozilla.com/en-US/firefox.
22. th Int. Symp. on Network Comp. and App., Cambridge, MA, July 2009, pp.266-269.
23. th Conf. on Email and Anti-spam, CA, July 2009.
24. P. Likarish, D. Dunbar, and T. Hansen, "B-APT: Bayesian Anti-Phishing Toolbar," Proc. of Intl. Conf. on Communications, Beijing, May 2008, pp. 1745-1749.
25. Y. Joshi, S. Saklikar, D. Das, and S. Saha, "PhishGuard: A Browser Plug-in for Protection from Phishing", Conf. on Internet Multi. Serv. Archi. and App., India, Dec 2008, p.1-6.
26. L. Wenyin, G. Huang, L. Xiaoyue, X. Deng, and Z. Min, "Phishing Web page Detection," Proc. of Conf. on Document Analysis and Recognition, Aug 2005, Seoul, pp. 560-564.
27. G.Xiang and J. Hong, "A Hybrid Phish Detection Approach by Identity Discovery and Keywords Retrieval," Proc. of the World Wide Web, Madrid, Spain, April 2009, pp. 571-580.
28. L. Wenyin, N. Fang, X. Quan, B. Qiu, and G. Liu, "Discovering Phishing Target based on Semantic Link Network," Future Generation Computer Systems, Elsevier, Volume 26, Issue 3, March 2010, pp. 381-388.
29. W. Liu, G. Huang, G. Huang, and A. Fu, "An Antiphishing Strategy Based on Visual Similarity Assessment," IEEE Internet Computing, Vol. 10, Issue 2, March 2006, pp. 58-65.
30. J. Ma, L. Saul, S. Savag, and G. Voelker, "Beyond Blacklists: Learning to Detect Malicious Websites from Suspicious URLs," Proc. of KDD, Paris, Jun 2009, p. 1245-1254.
31. M. Hara, A. Yamada, and Y. Miyake, "Visual Similaritybased Phishing Detection without Victim Site Information,"Symp. on Comp. Intelligence in Cyber Security, Nashville, TN, March 2009, pp. 30-36..
32. S. Bin, W. Qiaoyan, and L. Xiaoying, "A DNS-based Anti- Phishing Approach," Proc. of the Networks Security Wireless Comm. and Trusted Comp., Wuhan, Apr 2010, pp. 262-265.
33. H. Tout and W. Hafner, "Phishpin: An Identity-based Anti- Phishing Approach," Proc. of the Conf. on Computational Sci. and Engg., Vancouver, Aug 2009, pp. 347-352.
34. B. Wardman, G. Skukla, and G. Warner, "Identifying Vulnerable Websites by Analysis of Common Strings in Phishing URLs," eCrime Researchers Summit, Tacoma, Sept 2009, pp. 1-13.
35. P. Prakash, M. Kumar, R. Kompella, and M. Gupta, "PhishNet: Predictive Blacklisting to Detect Phishing Attacks," Proc. of INFOCOM, California, Mar 2010, pp. 1-5.
36. S. McCombie, and J. Pieprzyk, "Winning the Phishing War,"Proc. of Cybercrime and Trustworthy Computing Workshop, Victoria, Australia, July 2010, pp.79-86.
37. M. Al-Hamar, R. Dawson, and L. Guan, "A Culture of Trust Threatens Security and Privacy in Qatar," Proc. of Intl. Conf. on Comp. and Info. Tech., Bradford, Jun 2010, pp. 991-995.
38. Net-craft Antiphishing Tool bar, http://netcraft.toolbar.com
39. W. Yu, S. Nargundkar, and N. Tiruthani, "PhishCatch-A Phishing Detection Tool," Proc. of COMPSAC, Seattle, July 2009, Vol. 2, pp.451-456.
40. M. Wu, R. Miller, and G. Little, "Web Wallet: Preventing Phishing Attacks by Revealing User Intentions," Symp. On Usable Privacy and Security, Jul 2006, Pittsburgh, p.102-113.
41. Y. Wu, Z. Zhao, Y. Qiu, and F. Bao, "Blocking Foxy Phishing Emails with Historical Information," Proc. of the Conf. on Communications, Cape Town, May 2010, pp. 1-5.
42. E. Kirda and C. Kruegel, "Protecting Users Against Phishing Attacks with AntiPhish," Proc. of the COMPSAC, Edinburgh, July 2005, pp. 517-524.
43. M. Dunlop, S. Groat, and D. Shelly, "GoldPhish: Using Images for Content-based Phishing Analysis," Proc. of Intl. Conf. on Internet Monitoring and Protection, Barcelona, Spain, May 2010, pp. 123-128.
44. C. Ludl, C. Krueger, S. McAllister, E. Kirda, "On the Effectiveness of Techniques to Detect Phishing Sites," Proc. of DIMVA, Switzerland, July 2007, pp. 20-39.
45. M. Wu, R. Miller, and S. Garfinkel, "Do security toolbars actually prevent phishing attacks?" Proc. of the SIGCHI, Montreal, Canada, April 2006, pp. 601-610.