Publication date: August 2016
Source:Decision Support Systems, Volume 88
Author(s): Choon Lin Tan, Kang Leng Chiew, KokSheik Wong, San Nah Sze
This paper proposes a phishing detection technique based on the difference between the target and actual identities of a webpage. The proposed phishing detection approach, called PhishWHO, can be divided into three phases. The first phase extracts identity keywords from the textual contents of the website, where a novel weighted URL tokens system based on the N-gram model is proposed. The second phase finds the target domain name by using a search engine, and the target domain name is selected based on identity-relevant features. In the final phase, a 3-tier identity matching system is proposed to determine the legitimacy of the query webpage. The overall experimental results suggest that the proposed system outperforms the conventional phishing detection methods considered.
Source:Decision Support Systems, Volume 88
Author(s): Choon Lin Tan, Kang Leng Chiew, KokSheik Wong, San Nah Sze