Detect Visual Spoofing in Unicode-Based Text

Author

Qiu, Bite ; Fang, Ning ; Wenyin, Liu

Author_Institution

Dept. of Comput. Sci., City Univ. of Hong Kong, Hong Kong, China

fYear

2010

fDate

23-26 Aug. 2010

Firstpage

1949

Lastpage

1952

Abstract

Visual spoofing in Unicode-based text is anticipated as a severe web security problem in the near future as more and more Unicode-based web documents will be used. In this paper, to detect whether a suspicious Unicode character in a word is visual spoofing or not, the context of the suspicious character is utilized by employing a Bayesian framework. Specifically, two contexts are taken into consideration: simple context and general context. Simple context of a suspicious character is the word where the character exists while general context consists of all homoglyphs of the character within Universal Character Set (UCS). Three decision rules are designed and used jointly for convicting a suspicious character. Preliminary evaluations and user study show that the proposed approach can detect Unicode-based visual spoofing with high effectiveness and efficiency.

Keywords

Bayes methods; Internet; character sets; decision theory; security of data; Bayesian framework; Web security problem; decision rules; general context; homoglyphs; simple context; suspicious Unicode character detection; unicode-based text; unicode-based web documents; universal character set; visual spoofing detection; Bayesian methods; Browsers; Color; Context; Security; Semantics; Visualization;

fLanguage

English

Publisher

ieee

Conference_Titel

Pattern Recognition (ICPR), 2010 20th International Conference on

Conference_Location

Istanbul

ISSN

1051-4651

Print_ISBN

978-1-4244-7542-1

Type

conf

DOI

10.1109/ICPR.2010.480

Filename

5597240