Published May 30, 2023 | Version CC BY-NC-ND 4.0
Journal article Open

Real-Time Phishing Website Detection using Machine Learning and Updating Phishing Probability with User Feedback

Creators

  • 1. Department of Computer Engineering, Pune Institute of Computer Technology, Pune (Maharashtra), India.

Contributors

Contact person:

  • 1. Department of Computer Engineering, Pune Institute of Computer Technology, Pune (Maharashtra), India.

Description

Abstract: Phishing attacks remain a significant threat to internet users worldwide. Cybercriminals often send out phishing links through various channels such as emails, social media platforms, or text messages, to trick users into disclosing their sensitive infor-mation such as passwords, usernames, or credit card details. This stolen information is then used to perpetrate various types of fraud or sold on the dark web for profit. To combat this problem, various machine learning-based solutions have been developed for detect-ing phishing websites. However, these solutions vary in their effec-tiveness, with some focusing on URL-based algorithms while oth-ers focus on website content. This paper proposes a machine learn-ing-based approach to real-time phishing website detection, with a focus on the website's URL, domain page, and content. The pro-posed framework will be implemented as a browser plug-in, which can identify phishing risks as users visit websites. The framework integrates several techniques, including blacklist interception, whitelist filtering, and machine learning prediction, to improve ac-curacy, reduce false alarm rates, and minimize computation times. The proposed approach also incorporates user feedback to update the phishing probability over time, thereby increasing the accuracy of detecting phishing websites. This feedback loop involves users reporting suspected phishing websites to the system, which then updates the phishing probability calculation with new information to improve its accuracy. The significance of this research lies in its ability to provide real-time phishing detection capabilities, which can help protect internet users from falling victim to phishing at-tacks. Furthermore, the use of machine learning-based algorithms and user feedback ensures that the system is continuously updated to remain effective against new and emerging threats.

Notes

Published By: Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP) © Copyright: All rights reserved.

Files

A76080512123.pdf

Files (889.1 kB)

Name Size Download all
md5:a57df753e37c65df6150bae9195bc352
889.1 kB Preview Download

Additional details

Related works

Is cited by
Journal article: 2277-3878 (ISSN)

References

  • L. Tang and Q. H. Mahmoud, "A Deep Learning-Based Framework for Phishing Website Detection," in IEEE Access, vol. 10, pp. 1509-1521, 2022, doi: 10.1109/ACCESS.2021.3137636.
  • A. Alswailem, B. Alabdullah, N. Alrumayh and A. Alsedrani, "Detecting Phishing Websites Using Machine Learning," 2019 2nd International Conference on Computer Applications & Information Security (ICCAIS), Riyadh, Saudi Arabia, 2019, pp. 1-6, doi: 10.1109/CAIS.2019.8769571.
  • G. Xiang, J. Hong, C. Rose, and L. Cranor. 2011. "CANTINA+: A Feature-Rich Machine Learning Framework for Detecting Phishing Web Sites," ACM Trans. Inf. Syst. Secur. 14, 2, Article 21 (September 2011), 28 pages, doi: 10.1145/2019599.2019606.
  • M. Somesha, A. R. Pais, R. S. Rao, and V. S. Rathour, "Efficient Deep Learning Techniques for the Detection of Phishing Websites," Sadhana, vol. 45, no. 1, pp. Jun. 2020, doi: 10.1007/s12046-020-01392-4.
  • P. Zhao and S. C. Hoi, "Cost-sensitive online active learning with application to malicious URL Detection," in Proceedings of the 19th ACM SIGKDD international conference on Knowledge discovery and data mining. ACM, 2013, pp. 919–927, doi: 10.1145/2487575.2487647.
  • R. W. Purwanto, A. Pal, A. Blair, and S. Jha, "PhishSim: Aiding Phishing Website Detection With a Feature-Free Tool," in IEEE Transactions on Information Forensics and Security, vol. 17, pp. 1497-1512, 2022, doi: 10.1109/TIFS.2022.3164212.
  • S. C. Jeeva and E. B. Rajsingh, "Intelligent Phishing URL Detection using Association Rule Mining," Human-centric Computing and Information Sciences, vol. 6, no. 1, p. 10, 2016, doi: 10.1186/s13673-016-0064-3.
  • S. Maurya, H. Singh, and A. Jain, "Browser Extension Based Hybrid Anti-phishing Framework using Feature Selection,'' Int. J. Adv. Comput. Sci. Appl., vol. 10, no. 11, pp. 1–10, 2019, doi: 10.14569/IJACSA.2019.0101178.

Subjects

ISSN: 2277-3878 (Online)
https://portal.issn.org/resource/ISSN/2277-3878#
Retrieval Number: 100.1/ijrte.A76080512123
https://www.ijrte.org/portfolio-item/A76080512123/
Journal Website: www.ijrte.org
https://www.ijrte.org
Publisher: Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP)
https://www.blueeyesintelligence.org