A method to Measure the Efficiency of Phishing Emails Detection Features

Phishing is a threat in which users are sent fake emails that urge them to click a link (URL) which takes to a phisher's website. At that site, users' accounts information could be lost. Many technical and non-technical solutions have been proposed to fight phishing attacks. To stop su...

Full description

Saved in:
Bibliographic Details
Main Authors: Al-Daeef, Melad Mohamed, Basir, Nurlida, Mohd Saudi, Madihah
Format: Conference Paper
Language:en_US
Published: IEEE 2015
Subjects:
Online Access:http://ddms.usim.edu.my/handle/123456789/9406
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.usim-9406
record_format dspace
spelling my.usim-94062015-09-17T03:12:49Z A method to Measure the Efficiency of Phishing Emails Detection Features Al-Daeef, Melad Mohamed Basir, Nurlida Mohd Saudi, Madihah phishing feature ham emails phisliing emails effectivetress metric Phishing is a threat in which users are sent fake emails that urge them to click a link (URL) which takes to a phisher's website. At that site, users' accounts information could be lost. Many technical and non-technical solutions have been proposed to fight phishing attacks. To stop such attacks, i t is p i m p o r t a n t to select the correct feature(s) to detect phishing emails. Thus, the current work presents a new method to selecting more efficient feature in detecting phishing emails. Best features can be extracted from email's body (content) part. Keywords and U l U s are known features that can be extracted from email's body part. These two features are very relevant to the three general aspects of email, these aspects are, email's sender, cmail's content, and email's receiver. I n this work, three effectiveness criteria were derived based on these aspects of email. Such criteria were used to evaluate the efliciency o f Keywords and 1IRLs features in detecting phishing emails by measuring their Effectiveness Metric (EM) values. The experimental results obtained from analyzing more than 8000 ham (legitimate) and phishing emails from two different datasets show that, relying upon the U l U s feature in detecting phishing emails will predominantly give more precise results than relying upon the Keywords feature in a such task. 2015-09-17T03:12:49Z 2015-09-17T03:12:49Z 2014 Conference Paper 978-1-4799-4441-5 http://ddms.usim.edu.my/handle/123456789/9406 en_US IEEE
institution Universiti Sains Islam Malaysia
building USIM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universit Sains Islam i Malaysia
content_source USIM Institutional Repository
url_provider http://ddms.usim.edu.my/
language en_US
topic phishing
feature
ham emails
phisliing emails
effectivetress metric
spellingShingle phishing
feature
ham emails
phisliing emails
effectivetress metric
Al-Daeef, Melad Mohamed
Basir, Nurlida
Mohd Saudi, Madihah
A method to Measure the Efficiency of Phishing Emails Detection Features
description Phishing is a threat in which users are sent fake emails that urge them to click a link (URL) which takes to a phisher's website. At that site, users' accounts information could be lost. Many technical and non-technical solutions have been proposed to fight phishing attacks. To stop such attacks, i t is p i m p o r t a n t to select the correct feature(s) to detect phishing emails. Thus, the current work presents a new method to selecting more efficient feature in detecting phishing emails. Best features can be extracted from email's body (content) part. Keywords and U l U s are known features that can be extracted from email's body part. These two features are very relevant to the three general aspects of email, these aspects are, email's sender, cmail's content, and email's receiver. I n this work, three effectiveness criteria were derived based on these aspects of email. Such criteria were used to evaluate the efliciency o f Keywords and 1IRLs features in detecting phishing emails by measuring their Effectiveness Metric (EM) values. The experimental results obtained from analyzing more than 8000 ham (legitimate) and phishing emails from two different datasets show that, relying upon the U l U s feature in detecting phishing emails will predominantly give more precise results than relying upon the Keywords feature in a such task.
format Conference Paper
author Al-Daeef, Melad Mohamed
Basir, Nurlida
Mohd Saudi, Madihah
author_facet Al-Daeef, Melad Mohamed
Basir, Nurlida
Mohd Saudi, Madihah
author_sort Al-Daeef, Melad Mohamed
title A method to Measure the Efficiency of Phishing Emails Detection Features
title_short A method to Measure the Efficiency of Phishing Emails Detection Features
title_full A method to Measure the Efficiency of Phishing Emails Detection Features
title_fullStr A method to Measure the Efficiency of Phishing Emails Detection Features
title_full_unstemmed A method to Measure the Efficiency of Phishing Emails Detection Features
title_sort method to measure the efficiency of phishing emails detection features
publisher IEEE
publishDate 2015
url http://ddms.usim.edu.my/handle/123456789/9406
_version_ 1645152609951023104
score 13.209306