AI@ntiPhish — Machine Learning Mechanisms for Cyber-Phishing Attack

Yu-Hung CHEN  Jiann-Liang CHEN  

IEICE TRANSACTIONS on Information and Systems   Vol.E102-D   No.5   pp.878-887
Publication Date: 2019/05/01
Publicized: 2019/02/18
Online ISSN: 1745-1361
DOI: 10.1587/transinf.2018NTI0001
Type of Manuscript: INVITED PAPER (Special Section on the Architectures, Protocols, and Applications for the Future Internet)
anti-phishing,  machine learning algorithm,  ensemble learning mechanism,  cyber attack,  

Full Text: PDF>>
Buy this Article

This study proposes a novel machine learning architecture and various learning algorithms to build-in anti-phishing services for avoiding cyber-phishing attack. For the rapid develop of information technology, hackers engage in cyber-phishing attack to steal important personal information, which draws information security concerns. The prevention of phishing website involves in various aspect, for example, user training, public awareness, fraudulent phishing, etc. However, recent phishing research has mainly focused on preventing fraudulent phishing and relied on manual identification that is inefficient for real-time detection systems. In this study, we used methods such as ANOVA, X2, and information gain to evaluate features. Then, we filtered out the unrelated features and obtained the top 28 most related features as the features to use for the training and evaluation of traditional machine learning algorithms, such as Support Vector Machine (SVM) with linear or rbf kernels, Logistic Regression (LR), Decision tree, and K-Nearest Neighbor (KNN). This research also evaluated the above algorithms with the ensemble learning concept by combining multiple classifiers, such as Adaboost, bagging, and voting. Finally, the eXtreme Gradient Boosting (XGBoost) model exhibited the best performance of 99.2%, among the algorithms considered in this study.