Sage Journals: Discover world-class research

Abstract

Given the dynamic nature of cyber threats, phishing attack detection is still a significant difficulty in the field of cyber security. This paper suggested a novel method for detecting the phishing attack through the ensemble classifier coupled with an efficient feature descriptor, involves preprocessing, extraction of features, and classification steps. At first, the input data has been preprocessed using the proposed normalization techniques to ensure standardized and consistent data representation. Subsequently, features like improved entropy, statistical attributes and mutual information are obtained from the preprocessed data, capturing the characteristics of phishing attempts. These extracted features serve as inputs to a stacked ensemble classifier made up of Support Vector Machine (SVM), Neural Network (NN) Random Forest (RF) and improved Long Short-Term Memory (LSTM), where the outputs of SVM, NN and RF classifiers are combined and fed into an improved LSTM classifier. The improved LSTM model leverages temporal dependencies to provide the final classification output, distinguishing between “attack” and “non-attack” instances. Through experimentation on benchmark datasets, the proposed approach demonstrates superior performance with respect to precision, F-measure, and recall, showcasing its efficacy in phishing detection. This research contributes to advancing cybersecurity by providing a resilient and comprehensive solution for detecting the phishing threats in digital environments.

Keywords

proposed normalization technique Support Vector Machine Neural Network Random Forest improved Long Short-term Memory improved entropy and phishing detection

Get full access to this article

View all access options for this article.

References

Hakim

Ebner

Oliveira

, et al. The Phishing Email Suspicion Test (PEST) a lab-based task for evaluating the cognitive mechanisms of phishing detection. Behav Res Methods 2021; 53: 1342–1352.

Aleroud

Abu-Shanab

Al-Aiad

, et al. An examination of susceptibility to spear phishing cyber attacks in non-English speaking communities. J Inf Secur Appl 2020; 55: 102614.

Rao

Vaishnavi

Pais

. Catchphish: detection of phishing websites by inspecting URLs. J Ambient Intell Hum Comput 2020; 11: 813–825.

El Aassal

Baki

Das

, et al. An in-depth benchmarking and evaluation of phishing detection research for security needs. IEEE Access 2020; 8: 22170–22192.

Alsariera

Adeyemo

Balogun

, et al. Ai meta-learners and extra-trees algorithm for the detection of phishing websites. IEEE Access 2020; 8: 142532–42.

Liu

. SPWalk: similar property oriented feature learning for phishing detection. IEEE Access 2020; 8: 87031–87045.

Al-Hamar

Kolivand

Tajdini

, et al. Enterprise Credential Spear-phishing attack detection. Comput Electr Eng 2021; 94: 107363.

Babagoli

Aghababa

Solouk

. Heuristic nonlinear regression strategy for detecting phishing websites. Soft Comput 2019; 23: 4315–4327.

Liu

Geng

Jin

, et al. An efficient multistage phishing website detection model based on the CASE feature framework: aiming at the real web environment. Comput & Secur 2021; 110: 102421.

10.

Nirmal

Janet

Kumar

. Analyzing and eliminating phishing threats in IoT, network and other Web applications using iterative intersection. Peer-to-Peer Networking Appl 2021; 14: 2327–2339.

11.

Lee

, et al. Classification of attack types and analysis of attack methods for profiling phishing mail attack groups. IEEE Access 2021; 9: 80866–80872.

12.

Rao

Pais

. Detection of phishing websites using an efficient feature-based machine learning framework. Neural Comput Appl 2019; 31: 3851–3873.

13.

Kabla

Anbar

Manickam

, et al. Eth-PSD: a machine learning-based phishing scam detection approach in ethereum. IEEE Access 2022; 10: 118043–57.

14.

. Development of anti-phishing browser based on random forest and rule of extraction framework. Cybersecur 2020; 3: 20.

15.

Sameen

Han

Hwang

. Phishhaven—an efficient real-time AI phishing URLs detection system. IEEE Access 2020; 8: 83425–83443.

16.

Sonowal

. Phishing email detection based on binary search feature selection. SN Comput Sci 2020; 1: 191.

17.

Jain

Gupta

. A machine learning based approach for phishing detection using hyperlinks information. J Ambient Intell Hum Comput 2019; 10: 2015–2028.

18.

Bozkir

Aydos

. LogoSENSE: a companion HOG based logo detection scheme for phishing web page and E-mail brand recognition. Comput Secur 2020; 95: 101855.

19.

Aljofey

Jiang

, et al. An effective phishing detection model based on character level convolutional neural network from URL. Electronics 2020; 9: 1514.

20.

Ravi

. A performance analysis of Software Defined Network based prevention on phishing attack in cyberspace using a deep machine learning with CANTINA approach (DMLCA). Comput Commun 2020; 153: 375–381.

21.

Azeez

Misra

Margaret

, et al. Adopting automated whitelist approach for detecting phishing attacks. Comput Secur 2021; 108: 102328.

22.

Gupta

Yadav

Razzak

, et al. A novel approach for phishing URLs detection using lexical based machine learning in a real-time environment. Comput Commun 2021; 175: 47–57.

23.

Ojewumi

Ogunleye

Oguntunde

, et al. Performance evaluation of machine learning tools for detection of phishing attacks on web pages. Sci Afr 2022; 16: e01165.

24.

Orunsolu

Sodiya

Akinwale

. A predictive model for phishing detection. J King Saud Univ-Comput Inf Sci 2022; 34: 232–247.

25.

Kapan

Sora Gunal

. Improved phishing attack detection with machine learning: a comprehensive evaluation of classifiers and features. Appl Sci 2023; 13: 13269.

26.

Alshingiti

Alaqel

Al-Muhtadi

, et al. A deep learning-based phishing detection system using CNN, LSTM, and LSTM-CNN. Electronics 2023; 12: 232.

27.

Jayaraj

Pushpalatha

Sangeetha

, et al. Intrusion detection based on phishing detection with machine learning. Meas: Sens 2024; 31: 101003.

28.

van Geest

Cascavilla

Hulstijn

, et al. The applicability of a hybrid framework for automated phishing detection. Comput Secur 2024; 139: 103736.

29.

Sahingoz

Buber

Kugu

. Dephides: deep learning based phishing detection system. IEEE Access 2024; 12: 8052–8070.

30.

Aksu

Güzeller

Eser

. The effect of the normalization method used in different sample sizes on the success of artificial neural network model. Int J Assess Tools Educ 2019; 6: 170–192.

31.

Cui

Liu

Zhang

, et al. An improved deng entropy and its application in pattern recognition. IEEE Access 2019; 7: 18284–18292.

32.

Souza

Premebida

Araújo

. High-order conditional mutual information maximization for dealing with high-order dependencies in feature selection. Pattern Recognit 2022; 131: 108895.

33.

Toptaş

Hanbay

. Retinal blood vessel segmentation using pixel-based feature vector. Biomed Signal Process Control 2021; 70: 103053.

34.

Michael

, et al. An optimized framework for breast cancer classification using machine learning. BioMed Res Int 2022; 2022: 8482022.

35.

Jordanov

Petrov

Petrozziello

. Classifiers accuracy improvement based on missing data imputation. J Artif Intell Soft Comput Res 2018; 8: 31–48.

36.

Hamdi

Oussalah

Moussaoui

, et al. Attention-based hybrid CNN-LSTM and spectral data augmentation for COVID-19 diagnosis from cough sound. J Intell Inf Syst 2022; 59: 367–389.

37.

Nwankpa

Ijomah

Gachagan

, et al. Activation functions: comparison of trends in practice and research for deep learning. arXiv preprint arXiv:1811.03378. 2018.

38.

https://github.com/sibelkapan/phishing_dataset

39.

https://www.kaggle.com/datasets/shashwatwork/phishing-dataset-for-machine-learning?resource=download

Stacking ensemble classifier for phishing detection: A cyber security model with efficient feature descriptor

Abstract

Keywords

Get full access to this article

References