It's All in the Name: Why Some URLs are More Vulnerable to Typosquatting

Typosquatting is a blackhat practice that relies on human error and low-cost domain registrations to hijack legitimate traffic from well-established websites. The technique is typically used for phishing, driving traffic towards competitors or disseminating indecent or malicious content and as such remains a concern for businesses. We take a fresh new look at this well-studied phenomenon to explore why some URLs are more vulnerable to typing mistakes than others. We explore the relationship between human hand anatomy, keyboard layouts and typing mistakes using various URL datasets. We create an extensive user-centric typographical model and compute a Hardness Quotient (likelihood of mistyping) for each URL using a quantitative measure for finger and hand effort. Furthermore, our model predicts the most likely typos for each URL which can then be defensively registered. Cross-validation against actual URL and DNS datasets suggests that this is a meaningful and effective defense mechanism.

[1]  Wouter Joosen,et al.  Seven Months' Worth of Mistakes: A Longitudinal Study of Typosquatting Abuse , 2015, NDSS.

[2]  H. Seradge,et al.  In vivo measurement of carpal tunnel pressure in the functioning hand. , 1995, The Journal of hand surgery.

[3]  R. Bennett Book ReviewClinical Concepts in Regional Musculoskeletal Illness , 1987 .

[4]  W S Marras,et al.  Finger motion, wrist motion and tendon travel as a function of keyboard angles. , 2000, Clinical biomechanics.

[5]  A Hedge,et al.  Wrist postures while keyboarding: effects of a negative slope keyboard system and full motion forearm supports. , 1995, Ergonomics.

[6]  Anthony M. Townsend,et al.  Cybersquatting: A Case of First Come/First Served or Piracy on the Cyber-Seas? , 1999, Inf. Secur. J. A Glob. Perspect..

[7]  Vladimir I. Levenshtein,et al.  Binary codes capable of correcting deletions, insertions, and reversals , 1965 .

[8]  Donald A. Norman,et al.  Why Alphabetic Keyboards Are Not Easy to Use: Keyboard Layout Doesn't Much Matter , 1982 .

[9]  Tyler Moore,et al.  Measuring the Perpetrators and Funders of Typosquatting , 2010, Financial Cryptography.

[10]  Wouter Joosen,et al.  Soundsquatting: Uncovering the Use of Homophones in Domain Squatting , 2014, ISC.

[11]  L. Shaffer Intention and performance. , 1976 .

[12]  Donald A. Norman,et al.  Simulating a Skilled Typist: A Study of Skilled Cognitive-Motor Performance , 1982, Cogn. Sci..

[13]  Aziz Mohaisen,et al.  The Landscape of Domain Name Typosquatting: Techniques and Countermeasures , 2016, 2016 11th International Conference on Availability, Reliability and Security (ARES).

[14]  Fred J. Damerau,et al.  A technique for computer detection and correction of spelling errors , 1964, CACM.

[15]  R Wells,et al.  Quantifying exposure in occupational manual tasks with cumulative trauma disorder potential. , 1991, Ergonomics.

[16]  K. Lashley The problem of serial order in behavior , 1951 .

[17]  L Hymovich,et al.  Hand, wrist, and forearm injuries. The result of repetitive motions. , 1966, Journal of occupational medicine. : official publication of the Industrial Medical Association.

[18]  E Grandjean,et al.  Postural and visual loads at VDT workplaces. I. Constrained postures. , 1981, Ergonomics.

[19]  Santo Fortunato,et al.  Ranking web sites with real user traffic , 2008, WSDM '08.

[20]  Christus,et al.  A General Method Applicable to the Search for Similarities in the Amino Acid Sequence of Two Proteins , 2022 .

[21]  K. A. Provins,et al.  Handwriting, Typewriting and Handedness , 1968, The Quarterly journal of experimental psychology.

[22]  S. Wright,et al.  Cybersquatting at the Intersection of Internet Domain Names and Trademark Law , 2012, IEEE Communications Surveys & Tutorials.

[23]  M. Latash,et al.  Enslaving effects in multi-finger force production , 2000, Experimental Brain Research.

[24]  D. Gentner Evidence Against a Central Control Model of Timing in Typing. , 1982 .

[25]  Marc H Schieber,et al.  Hand function: peripheral and central constraints on performance. , 2004, Journal of applied physiology.

[26]  Chris Kanich,et al.  Every Second Counts: Quantifying the Negative Externalities of Cybercrime via Typosquatting , 2015, 2015 IEEE Symposium on Security and Privacy.

[27]  K. Reilly,et al.  Independence of force production by digits of the human hand , 2000, Neuroscience Letters.

[28]  J. F. Soechting,et al.  Synergistic finger movements in a skilled motor task , 2004, Experimental Brain Research.

[29]  R. Szabo,et al.  Stress carpal tunnel pressures in patients with carpal tunnel syndrome and normal patients. , 1989, The Journal of hand surgery.

[30]  D. Gentner Expertise in Typewriting. , 1984 .

[31]  Shrawan Kumar,et al.  Carpal tunnel syndrome due to keyboarding and mouse tasks: a review , 2003 .

[32]  Michalis Faloutsos,et al.  SUT: Quantifying and mitigating URL typosquatting , 2011, Comput. Networks.

[33]  Nikolaos Pitropakis,et al.  Hiding in Plain Sight: A Longitudinal Study of Combosquatting Abuse , 2017, CCS.

[34]  D. Rempel,et al.  Effects of finger posture on carpal tunnel pressure during wrist motion. , 1998, The Journal of hand surgery.

[35]  Chris Kanich,et al.  The Long "Taile" of Typosquatting Domain Names , 2014, USENIX Security Symposium.