Adopting automated whitelist approach for detecting phishing attacks

dc.authoridMisra, Sanjay/0000-0002-3556-9331
dc.authoridFernandez-Sanz, Luis/0000-0003-0778-0073
dc.authoridAbdulhamid, Shafi'i Muhammad/0000-0001-9196-9447
dc.authorscopusid53864626700
dc.authorscopusid56962766700
dc.authorscopusid57224448974
dc.authorscopusid25630384100
dc.authorscopusid56157617800
dc.authorwosidFernandez, Luis/KHX-5442-2024
dc.authorwosidMisra, Sanjay/K-2203-2014
dc.authorwosidFernandez-Sanz, Luis/J-4895-2012
dc.authorwosidAbdulhamid, Shafi'i Muhammad/J-4288-2016
dc.contributor.authorAzeez, Nureni Ayofe
dc.contributor.authorMisra, Sanjay
dc.contributor.authorMargaret, Ihotu Agbo
dc.contributor.authorFernandez-Sanz, Luis
dc.contributor.authorAbdulhamid, Shafi'i Muhammad
dc.contributor.otherComputer Engineering
dc.date.accessioned2024-07-05T15:19:46Z
dc.date.available2024-07-05T15:19:46Z
dc.date.issued2021
dc.departmentAtılım Universityen_US
dc.department-temp[Azeez, Nureni Ayofe; Margaret, Ihotu Agbo] Univ Lagos, Dept Comp Sci, Lagos, Nigeria; [Misra, Sanjay] Atilim Univ, Dept Comp Engn, Ankara, Turkey; [Misra, Sanjay] Covenant Univ, Dept Comp Engn, Ota, Nigeria; [Fernandez-Sanz, Luis] Univ Alcala, Dept Comp Sci, Madrid, Spain; [Abdulhamid, Shafi'i Muhammad] Fed Univ Technol, Dept Cyber Secur Sci, Minna, Nigeriaen_US
dc.descriptionMisra, Sanjay/0000-0002-3556-9331; Fernandez-Sanz, Luis/0000-0003-0778-0073; Abdulhamid, Shafi'i Muhammad/0000-0001-9196-9447en_US
dc.description.abstractPhishing is considered a great scourge in cyberspace. Presently, there are two major challenges known with the existing anti-phishing solutions. Low detection rate and lack of quick access time in a real-time environment. However, it has been established that blacklist solution methods offer quick and immediate access time but with a low detection rate. This research paper presents an automated white-list approach for detecting phishing attacks. The white-list is determined by carrying out a detailed analysis between the visual link and the actual link. The similarities of the known trusted site are calculated by juxtaposing the domain name with the contents of the whitelist and later match it with the IP address before a decision is made and further analyzing the actual link and the visual link by calculating the similarities of the known trusted site. The technique then takes a final decision on the extracted information from the hyperlink, which can also be obtained from the web address provided by the user. The experiments carried out provided a very high level of accuracy, specifically, when the dataset was relatively at the lowest level. Six different datasets were used to perform the experiments. The average accuracy obtained after the six experiments was 96.17% and the approach detects phishing sites with a 95.0% true positive rate. It was observed that the level of accuracy varies from one dataset to another. This result shows that the proposed method performs better than similar approaches benchmarked with. The efficiency of the approach was further established through its computation time, memory, bandwidth as well as other computational resources that were utilized with the minimum requirements when compared with other approaches. This solution has provided immense benefits over the existing solutions by reducing the memory requirements and computational complexity, among other benefits. It has also shown that the proposed method can provide more robust detection performances when compared to other techniques. (c) 2021 Elsevier Ltd. All rights reserved.en_US
dc.identifier.citation20
dc.identifier.doi10.1016/j.cose.2021.102328
dc.identifier.issn0167-4048
dc.identifier.issn1872-6208
dc.identifier.scopus2-s2.0-85107530292
dc.identifier.urihttps://doi.org/10.1016/j.cose.2021.102328
dc.identifier.urihttps://hdl.handle.net/20.500.14411/2017
dc.identifier.volume108en_US
dc.identifier.wosWOS:000681264400002
dc.identifier.wosqualityQ2
dc.institutionauthorMısra, Sanjay
dc.language.isoenen_US
dc.publisherElsevier Advanced Technologyen_US
dc.relation.publicationcategoryMakale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanıen_US
dc.rightsinfo:eu-repo/semantics/closedAccessen_US
dc.subjectPhishingen_US
dc.subjectBlacklisten_US
dc.subjectWhitelisten_US
dc.subjectCybersecurityen_US
dc.subjectFalse positiveen_US
dc.subjectFalse negativeen_US
dc.titleAdopting automated whitelist approach for detecting phishing attacksen_US
dc.typeArticleen_US
dspace.entity.typePublication
relation.isAuthorOfPublication53e88841-fdb7-484f-9e08-efa4e6d1a090
relation.isAuthorOfPublication.latestForDiscovery53e88841-fdb7-484f-9e08-efa4e6d1a090
relation.isOrgUnitOfPublicatione0809e2c-77a7-4f04-9cb0-4bccec9395fa
relation.isOrgUnitOfPublication.latestForDiscoverye0809e2c-77a7-4f04-9cb0-4bccec9395fa

Files

Collections