Efficient Approach for Mitigating Mobile Phishing Attacks

Hyungkyu LEE  Younho LEE  Changho SEO  Hyunsoo YOON  

IEICE TRANSACTIONS on Communications   Vol.E101-B   No.9   pp.1982-1996
Publication Date: 2018/09/01
Publicized: 2018/03/23
Online ISSN: 1745-1345
DOI: 10.1587/transcom.2018EBP3020
Type of Manuscript: PAPER
Category: Internet
mobile phishing,  mobile phishing detection,  phishing detection,  mobile security,  security,  

Full Text: PDF(1.8MB)>>
Buy this Article

We propose a method for efficiently detecting phishing attacks in mobile environments. When a user visits a website of a certain URL, the proposed method first compares the URL to a generated whitelist. If the URL is not in the whitelist, it detects if the site is a phishing site based on the results of Google search with a carefully refined URL. In addition, the phishing detection is performed only when the user provides input to the website, thereby reducing the frequency of invoking phishing detection to decrease the amount of power used. We implemented the proposed method and used 8315 phishing sites and the same number of legitimate websites for evaluating the performance of the proposed method. We achieved a phishing detection rate of 99.22% with 81.22% reduction in energy consumption as compared to existing approaches that also use search engine for phishing detection. Moreover, because the proposed method does not employ any other algorithm, software, or comparison group, the proposed method can be easily deployed.