Lucas Candeia Teixeira, Júlio César Gomes De Barros, Bruno José Torres Fernandes, Carlo Marcelo Revoredo da Silva
{"title":"CatchPhish:用于检测网络钓鱼页面上的同形攻击的模型","authors":"Lucas Candeia Teixeira, Júlio César Gomes De Barros, Bruno José Torres Fernandes, Carlo Marcelo Revoredo da Silva","doi":"10.1109/IJCNN55064.2022.9892525","DOIUrl":null,"url":null,"abstract":"The growth in the numbers of phishing attacks, along with the volume of successful frauds, demonstrates vul-nerabilities of the protection tools and exposes the advance in the refinement of the attacks. In more than 70% of cases, the improvements rely on the presence of homographic terms as a mechanism to embed reliability in malicious pages. In this scenario, the present study proposes an intelligent approach denominated CatchPhish, which, through the attack target brand identification, can infer the veracity of the page evaluated. CatchPhish uses a Siamese neural network capable of identifying the presence of typosquatting mentions in phishing pages. In the experiments, the proposed approach achieved 99.30% of assertiveness. In addition, the proposed approach stands out for its ability to produce terms for training, so, instead of providing the tool with a high amount of distorted terms, it provides the mark preceded by the correct spelling, which circumvents a strong obstacle in the construction of protection mechanisms.","PeriodicalId":106974,"journal":{"name":"2022 International Joint Conference on Neural Networks (IJCNN)","volume":"99 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-07-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"CatchPhish: Model for detecting homographic attacks on phishing pages\",\"authors\":\"Lucas Candeia Teixeira, Júlio César Gomes De Barros, Bruno José Torres Fernandes, Carlo Marcelo Revoredo da Silva\",\"doi\":\"10.1109/IJCNN55064.2022.9892525\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The growth in the numbers of phishing attacks, along with the volume of successful frauds, demonstrates vul-nerabilities of the protection tools and exposes the advance in the refinement of the attacks. In more than 70% of cases, the improvements rely on the presence of homographic terms as a mechanism to embed reliability in malicious pages. In this scenario, the present study proposes an intelligent approach denominated CatchPhish, which, through the attack target brand identification, can infer the veracity of the page evaluated. CatchPhish uses a Siamese neural network capable of identifying the presence of typosquatting mentions in phishing pages. In the experiments, the proposed approach achieved 99.30% of assertiveness. In addition, the proposed approach stands out for its ability to produce terms for training, so, instead of providing the tool with a high amount of distorted terms, it provides the mark preceded by the correct spelling, which circumvents a strong obstacle in the construction of protection mechanisms.\",\"PeriodicalId\":106974,\"journal\":{\"name\":\"2022 International Joint Conference on Neural Networks (IJCNN)\",\"volume\":\"99 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-07-18\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 International Joint Conference on Neural Networks (IJCNN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IJCNN55064.2022.9892525\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 International Joint Conference on Neural Networks (IJCNN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IJCNN55064.2022.9892525","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
CatchPhish: Model for detecting homographic attacks on phishing pages
The growth in the numbers of phishing attacks, along with the volume of successful frauds, demonstrates vul-nerabilities of the protection tools and exposes the advance in the refinement of the attacks. In more than 70% of cases, the improvements rely on the presence of homographic terms as a mechanism to embed reliability in malicious pages. In this scenario, the present study proposes an intelligent approach denominated CatchPhish, which, through the attack target brand identification, can infer the veracity of the page evaluated. CatchPhish uses a Siamese neural network capable of identifying the presence of typosquatting mentions in phishing pages. In the experiments, the proposed approach achieved 99.30% of assertiveness. In addition, the proposed approach stands out for its ability to produce terms for training, so, instead of providing the tool with a high amount of distorted terms, it provides the mark preceded by the correct spelling, which circumvents a strong obstacle in the construction of protection mechanisms.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
