Phishing Web Pages Detection Using Feature Selection and Extraction Method
Keywords:
Phishing, Anti-Phishing, Add-on For Web Browser, Data Mining Classification AlgorithmsAbstract
Phishing is a security attack that involves obtaining sensitive information as a trustworthy entity. The user tries to steal the confidential information of the web user such as online banking passwords, credit card number and other financial data by making identical website of legitimate one in which the contents and images almost remains similar to the legitimate website with small changes. In this paper, a number of anti-phishing toolbars have been discussed and proposed a system model to tackle the phishing attack. The performance of the proposed system is studied with three different data mining classification algorithms which are Random Forest, Nearest Neighbour Classification (NNC), Bayesian Classifier (BC). To evaluate the proposed anti-phishing system for the detection of phishing websites, 7690 legitimate websites and 2280 phishing websites have been collected from authorised sources like APWG database and PhishTank. After analyzing the data mining algorithms over phishing web pages, it is found that the Bayesian algorithm gives fast response and gives more accurate results than other algorithms. The motivation of our study is to propose a safer framework for detecting phishing websites with high accuracy in less time.
Downloads
References
APWG 1 to 3rd Quarter 2015 Phishing Activity Trends Report from www.antiphishing.org
A research report from http://securityresearch.in/ ubiquitous_id=88, January 2013
A.Naga Venkata Sunil, Sardana A., "A PageRank Based Detection Technique for Phishing Web Sites", 2012 IEEE Symposium on Computers & Informatics, 2012, pp. 58-63
Javelin Strategy and Research. http://www.javelinstrategy.com, 2012
Chou N., LedesmaR., Teraguchi Y. and Mitchell John C. "Client-Side Defense Against Web-Based Identity Theft" in 11th Annual Network and Distributed System Security Symposium, San Diego, February, 2004
Dhamija R., Tygar J.D., "The Battle against phishing: Dynamic Security Skins. In: Proc. of ACM Symposium on Usable Security and Privacy, 2005, pp.77-88
A Report from ‘Computer Associate Internationals Inc.’, September 2012
Khonji M., JonesA., IraqiY., "A Novel Phishing Classification based on URL Features", 2011 IEEE GCC Conference and Exhibition (GCC), February 19-22, 2011, Dubai, United Arab Emirates, 2011, pp. 221-224
Wardman B., Stallings T., Warner G., Skjellum A., "High-Performance Content-Based Phishing Attack Detection", published in IEEE Phishing Attack Detection", published in IEEE conference on eCrime Researchers Summit (eCrime), 2011, pp. 1-9
Weider D. Yu, Nargundkar S.,Tiruthani N., "PhishCatch – A Phishing Detection Tool", presented in 33rd Annual IEEE International Computer Software and Applications Conference, IEEE Computer Society, 2009, pp. 451-456
Prakash P., Manish K., Kompella R.R., Gupta M., "PhishNet: Predictive Blacklisting to Detect Phishing Attacks", presented as part of the Mini-Conference at IEEE INFOCOM 2010
IsredzaRahmi A Hamid and Abawajy Jemal H., "Profiling Phishing Email Based on Clustering Approach" 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 2013, pp. 629-635
Jiang H., ZhangD., Yan Z., "A Classification Model for Detection of Chinese Phishing E- Business Websites", PACIS2013Proceedings. 2013, Paper 152
Li T., HanF., Ding S.and ChenZ., "LARX: Large-scale Anti-phishing by Retrospective Data-Exploring Based on a Cloud Computing Platform", Computer Communications and Networks, Proceedings of 20th International Conference on, July 31-August 4, , 2011, pp. 1-5
Huang H., Zhong S., TanJ., "Browser-side Countermeasures for Deceptive Phishing Attack", 2009 Fifth International Conference on Information Assurance and Security
Downloads
Published
Issue
Section
License
This work is licensed under a Creative Commons Attribution 4.0 International License.
https://creativecommons.org/licenses/by/4.0
