论文信息 - A proactive discovery and filtering solution on phishing websites

A proactive discovery and filtering solution on phishing websites

Phishing website is becoming a major threat to the information security in Social Network. The attacks not only lessen the users' trust but also influence the benefit of the third party who develops the platform. In order to solve the time lag in phishing website passive detection, this paper proposes a solution to discover phishing website initiatively based on blacklist, in which the anomalies of its URL and WHOIS information are analyzed, and based on this, the heuristic rules that aim to generate suspicious URLs are made. In order to filter out noise sites in the suspicious set, a website filtering solution based on webpages image-layout is presented. We firstly propose a Ray Scan Method to generate the location feature of webpage images quickly, and then, we proposed a method of calculating the webpage layout similarity, which will be compared against the preset threshold to decide whether it will be filtered. The experimental results show that the solution successfully detects some phishing websites out before they are widely spread, and further, the webpage filtering method guarantees both high filtration ratio and high phishing website retention ratio.

Sun Yushan | Wei Yuliang | Wang Bailing | Huang Junheng | Lv Fang

[1] Geoff Hulten,et al. Spamming botnets: signatures and characteristics , 2008, SIGCOMM '08.

[2] Yuen-Hsien Tseng,et al. POSTER: Proactive Blacklist Update for Anti-Phishing , 2014, CCS.

[3] Minaxi Gupta,et al. Behind Phishing: An Examination of Phisher Modi Operandi , 2008, LEET.

[4] Xiaotie Deng,et al. Detecting Phishing Web Pages with Visual Similarity Assessment Based on Earth Mover's Distance (EMD) , 2006, IEEE Transactions on Dependable and Secure Computing.

[5] Eric Medvet,et al. Visual-similarity-based phishing detection , 2008, SecureComm.

[6] Sandeep Yadav,et al. Detecting algorithmically generated malicious domain names , 2010, IMC '10.

[7] Cao Jiu. A Phishing Web Pages Detection Algorithm Based on Nested Structure of Earth Mover's Distance(Nested-EMD) , 2009 .

[8] Xiaotie Deng,et al. An antiphishing strategy based on visual similarity assessment , 2006, IEEE Internet Computing.

[9] Radu State,et al. Proactive Discovery of Phishing Related Domain Names , 2012, RAID.

[10] Radu State,et al. PhishStorm: Detecting Phishing With Streaming Analytics , 2014, IEEE Transactions on Network and Service Management.

[11] Phillip A. Porras,et al. Highly Predictive Blacklisting , 2008, USENIX Security Symposium.

[12] Ramana Rao Kompella,et al. PhishNet: Predictive Blacklisting to Detect Phishing Attacks , 2010, 2010 Proceedings IEEE INFOCOM.