Cited 0 time in
Phishing URL Detection: A Network-based Approach Robust to Evasion
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Kim, Taeri | - |
| dc.contributor.author | Park, Noseong | - |
| dc.contributor.author | Hong, Jiwon | - |
| dc.contributor.author | Kim, Sang-Wook | - |
| dc.date.accessioned | 2023-01-25T09:21:06Z | - |
| dc.date.available | 2023-01-25T09:21:06Z | - |
| dc.date.issued | 2022-11 | - |
| dc.identifier.issn | 1543-7221 | - |
| dc.identifier.uri | https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/182195 | - |
| dc.description.abstract | Many cyberattacks start with disseminating phishing URLs. When clicking these phishing URLs, the victim's private information is leaked to the attacker. There have been proposed several machine learning methods to detect phishing URLs. However, it still remains under-explored to detect phishing URLs with evasion, i.e., phishing URLs that pretend to be benign by manipulating patterns. In many cases, the attacker i) reuses prepared phishing web pages because making a completely brand-new set costs non-trivial expenses, ii) prefers hosting companies that do not require private information and are cheaper than others, iii) prefers shared hosting for cost efficiency, and iv) sometimes uses benign domains, IP addresses, and URL string patterns to evade existing detection methods. Inspired by those behavioral characteristics, we present a network-based inference method to accurately detect phishing URLs camouflaged with legitimate patterns, i.e., robust to evasion. In the network approach, a phishing URL will be still identified as phishy even after evasion unless a majority of its neighbors in the network are evaded at the same time. Our method consistently shows better detection performance throughout various experimental tests than state-of-the-art methods, e.g., F-1 of 0.891 for our method vs. 0.840 for the best feature-based method. | - |
| dc.format.extent | 14 | - |
| dc.language | 영어 | - |
| dc.language.iso | ENG | - |
| dc.title | Phishing URL Detection: A Network-based Approach Robust to Evasion | - |
| dc.type | Article | - |
| dc.identifier.doi | 10.1145/3548606.3560615 | - |
| dc.identifier.scopusid | 2-s2.0-85143082305 | - |
| dc.identifier.bibliographicCitation | Proceedings of the ACM Conference on Computer and Communications Security, pp 1769 - 1782 | - |
| dc.citation.title | Proceedings of the ACM Conference on Computer and Communications Security | - |
| dc.citation.startPage | 1769 | - |
| dc.citation.endPage | 1782 | - |
| dc.type.docType | Conference Paper | - |
| dc.description.isOpenAccess | N | - |
| dc.description.journalRegisteredClass | scopus | - |
| dc.subject.keywordPlus | Computer crime | - |
| dc.subject.keywordPlus | Learning systems | - |
| dc.subject.keywordPlus | Websites | - |
| dc.subject.keywordPlus | Cyber-attacks | - |
| dc.subject.keywordPlus | Machine learning methods | - |
| dc.subject.keywordPlus | Network-based | - |
| dc.subject.keywordPlus | Network-based approach | - |
| dc.subject.keywordPlus | Network-based inference | - |
| dc.subject.keywordPlus | Phishing | - |
| dc.subject.keywordPlus | Phising detection | - |
| dc.subject.keywordPlus | Private information | - |
| dc.subject.keywordPlus | Reuse | - |
| dc.subject.keywordPlus | Web-page | - |
| dc.subject.keywordAuthor | classification | - |
| dc.subject.keywordAuthor | network-based inference | - |
| dc.subject.keywordAuthor | phising detection | - |
| dc.identifier.url | https://dl.acm.org/doi/10.1145/3548606.3560615 | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
222, Wangsimni-ro, Seongdong-gu, Seoul, 04763, Korea+82-2-2220-1366
COPYRIGHT © 2024 HANYANG UNIVERSITY.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.
