Title :
Phishdentity: Leverage Website Favicon to Offset Polymorphic Phishing Website
Author :
Fatt, Jeffrey Choo Soon ; Kang Leng Chiew ; San Sze Nah
Author_Institution :
Fac. of Comput. Sci. & Inf. Technol., Univ. Malaysia Sarawak, Kota Samarahan, Malaysia
Abstract :
Phishing attacks involve the use of fuzzy techniques to create polymorphic phishing web pages to give the impression of legitimate websites. Many websites are subject to the threat of phishing, including financial, social networks, tourism, e-commerce etc. For example, phishers are particularly fond of travel-related services by imitating as trip consultant, airline reservation, hotel booking etc. However, the targeted legitimate websites still maintain the webpage appearance visually similar to the original. In this paper, we propose an approach which is based on the website favicon to find the identity of a website and use it to evaluate the genuineness of a website. This approach utilizes Google search-by-image API to return the search results pages. Then, we perform latent semantic analysis based on the search results pages. We collected 1,000 webpages to verify the effectiveness of this approach. The results show that our proposed method achieved 97.2% true positive with only 5.4% false positive.
Keywords :
Web sites; computer crime; fuzzy set theory; Google search-by-image API; Web pages; Webpage appearance; Website favicon; Website genuineness; Website identity; fuzzy techniques; latent semantic analysis; legitimate Websites; offset polymorphic phishing Website; phishdentity; phishing attacks; phishing threat; search results pages; travel-related services; Browsers; Feature extraction; Google; Search engines; Superluminescent diodes; Uniform resource locators; Visualization; Google search; favicon; latent semantic analysis; phishing detection; phishing website identity;
Conference_Titel :
Availability, Reliability and Security (ARES), 2014 Ninth International Conference on
Conference_Location :
Fribourg
DOI :
10.1109/ARES.2014.21
