A quantitative approach to estimate a website security risk using whitelist
Despite much research on defense against phishing attacks, incidents continue to occur where sensitive (e.g., personal or financial) information is stolen using social engineering and technical spoofing techniques. Most approaches use the notions of blacklists versus whitelists (WWLs), and it is difficult to quantify the degree of a website's vulnerability against phishing attacks. In this paper, we present a quantitative approach for evaluating the phishing possibility of a given website using the refined security risk elements for domain and web page. Design and implementation of the website risk assessment system for antiphishing are also included. It can detect suspicious websites containing phishing attack and abnormal behavior and generates a warning if website is judged untrustworthy. Copyright (c) 2012 John Wiley & Sons, Ltd.
- Publisher
- WILEY-BLACKWELL
- Issue Date
- 2012-10
- Language
- English
- Article Type
- Article
- Keywords
VISUAL SIMILARITY ASSESSMENT; STATELESS PHISHING FILTER; DETECTION SYSTEM; ATTACKS; PHISHWISH
- Citation
SECURITY AND COMMUNICATION NETWORKS, v.5, no.10, pp.1181 - 1192
- ISSN
- 1939-0114
- Appears in Collection
- RIMS Journal Papers
- Files in This Item
- There are no files associated with this item.
This item is cited by other documents in WoS
| ⊙ Detail Information in WoSⓡ | Click to see |  |
| ⊙ Cited 1 items in WoS | Click to see citing articles in |  |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.