Phishing Detection: A Literature Survey

被引:262
作者
Khonji, Mahmoud [1 ]
Iraqi, Youssef [1 ]
Jones, Andrew [1 ]
机构
[1] Khalifa Univ, Abu Dhabi, U Arab Emirates
来源
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS | 2013年 / 15卷 / 04期
关键词
Phishing; social engineering; phishing detection; security; email classification;
D O I
10.1109/SURV.2013.032213.00009
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This article surveys the literature on the detection of phishing attacks. Phishing attacks target vulnerabilities that exist in systems due to the human factor. Many cyber attacks are spread via mechanisms that exploit weaknesses found in end-users, which makes users the weakest element in the security chain. The phishing problem is broad and no single silver-bullet solution exists to mitigate all the vulnerabilities effectively, thus multiple techniques are often implemented to mitigate specific attacks. This paper aims at surveying many of the recently proposed phishing mitigation techniques. A high-level overview of various categories of phishing mitigation techniques is also presented, such as: detection, offensive defense, correction, and prevention, which we belief is critical to present where the phishing detection techniques fit in the overall mitigation process.
引用
收藏
页码:2091 / 2121
页数:31
相关论文
共 49 条
[1]  
Abu-Nimeh S., 2007, P ANT WORK GROUPS 2, P60, DOI DOI 10.1145/1299015.1299021
[2]   An Anti-Phishing Approach that Uses Training Intervention for Phishing Websites Detection [J].
Alnajim, Abdullah ;
Munro, Malcolm .
PROCEEDINGS OF THE 2009 SIXTH INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY: NEW GENERATIONS, VOLS 1-3, 2009, :405-410
[3]  
[Anonymous], 2010, LARGE SCALE AUTOMATI
[4]  
[Anonymous], 2008, 2008 2 INT C INT MUL
[5]  
[Anonymous], 2007, P ANT WORK GROUPS 2, DOI DOI 10.1145/1299015.1299019
[6]  
[Anonymous], P 16 VIR B INT C
[7]  
[Anonymous], D LIB MAGAZINE
[8]  
[Anonymous], 2008, S NDSS
[9]  
[Anonymous], 2009, ECRIME RES SUMMIT
[10]  
[Anonymous], 2007, P 3 S US PRIV SEC, DOI DOI 10.1145/1280680.1280692
12345