Internet phishing has become a continual threat that keeps growing day by day. Phishing takes advantage of the user’s trust and use social engineering techniques to deceive them. Despite having several anti-phishing strategies, the threat of phishing is not mitigated as modern types of attack keeps coming to the fore. Nowadays, phishers launch sophisticated phishing attacks which tricks users to submit their credentials by leveraging the facilities tabs offer to web browsers. Browser security is important in this perspective. This paper explains a heuristic method to defend phishing attacks by utilizing software agents for parallel attack recognition. The main focus is on a browser based attack called Tabnabbing which takes action in inactive browser tabs. The proposed method uses agents in three levels to continuously monitor the presence of attack in regular intervals at multiple tabs and warn the user at the earliest. This approach also protects the users against URL obfuscations and malicious links. Results show that the proposed method outperforms the state of the art phishing detection methods and achieves an accuracy of 97.3%.
BelabedA., AimeurE. and ChikhA., A Personalized Whitelist Approach for Phishing Webpage Detection, In Proceedings of the 2012 Seventh International Conference on Availability, Reliability and Security, ARES ’12, IEEE Computer Society, 2012, pp. 249–254.
2.
MartinA., et al., A framework for predicting phishing websites using neural networks, International Journal of Computer Science Issues8(2) (2011), 330–336.
3.
RaskinA., Tabnabbing: A new type of phishing attack, 2010, http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/.
4.
FuA.Y., WenyinL. and DengX., Detecting phishing web pages with visual similarity assessment based on earth mover’s distance, IEEE TDSC3(4) (2006), 301–311.
5.
BroderA.Z., GlassmanS.C., ManasseM.S. and ZweigG., Syntactic Clustering of the Web, 1997.
6.
BellifemineR. and PoggiG., JADE - A FIPA-compliant Agent Framework. Proceedings of the 4th International Conference and Exhibition on the Practical Application of Intelligent Agents and Multi-Agents, London, 1999.
7.
Bradshaw. Software Agents. MIT Press. Cambridge: MA USA, 2002.
8.
CastiglioneA., et al., Secr3t: Secure end-to-end communication over 3g telecommunication networks, Innovative Mobile and Internet Services in Ubiquitous Computing (IMIS), Fifth International Conference on IEEE2011, pp. 520–526.
9.
CastiglioneA., et al., Speech: Secure personal end-to-end communication with handheld, ISSE 2006—Securing Electronic Business Processes Vieweg, 2006, pp. 287–297.
10.
ChenK.-T., et al., Fighting phishing with discriminative keypoint features, IEEE Internet Computing (2009), 56–63.
11.
CovaM., KruegelC., VignaG., Detection and analysis of drive-by-download attacks and malicious JavaScript code, Proceedings of the 19th International Conference on World Wide Web, ACM, 2010, pp. 281–290.
12.
De RyckP.,
NickN.,
DesmetL. and JoosenW., TabShots: Client-Side Detection of Tabnabbing Attacks. Proceedings of the 8th ACM SIGSAC Symposium on Information, 2013, pp. 447–456.
13.
De SantisA., et al., An intelligent security architecture for distributed firewalling environments, Journal of Ambient Intelligence and Humanized Computing4(2) (2013), 223–234.
14.
MedvetE., KirdaE. and KruegelC., Visual similarity-based phishing detection, Computational intelligence in cyber security, CICS 2009. IEEE Symposium, pp. 30–36.
15.
HashemiF., ZulkernineM. and WeldemariamK., TabsGuard: A Hybrid Approach to Detect and Prevent Tabnabbing Attacks. Risks and Security of Internet and Systems. Springer International Publishing, 2014, pp. 196–212.
16.
DebiaHe., et al., Efficient certificate less anonymous multi-receiver encryption scheme for mobile devices, Soft Computing (2016), 1–10.
17.
HuangH., QianL. and WangY., A SVM-based technique to detect phishing URLs, Information Technology Journal11(7) (2012), 921–925.
18.
JADE (Java Agent DEvelopment Framework), http://jade.tilab.com/index.html.
19.
JagaticT.N., Social phishing, Communications of the ACM (2007), 94–100.
20.
JainA.K. and GuptaB.B., A novel approach to protect against phishing attacks at client side using auto-updated white-list, EURASIP Journal on Information Security1 (2016), 1–11.
ChenJ. and GuoC., Online Detection and Prevention of Phishing Attacks, Proceedings of the First IEEE International Conference on Communications and Networking, China, 2006, pp. 1–7.
24.
DunlopM., GroatS. and ShellyD., GoldPhish: Using Images for Content-Based Phishing Analysis, Fifth IEEE International Conference on Internet Monitoring and Protection, 2010, pp. 123–128.
25.
MogulJ.C., et al., Hypertext Transfer Protocol–HTTP/1.1, Network Working Group RFC 2068, 1997, pp. 1–161.
26.
NarudinF.A., Evaluation of machine learning classifiers for mobile malware detection, Soft Computing20(1) (2016), 343–357.
27.
No Script - JavaScript/Java/Flash blocker for a safer Firefox experience. http://noscript.net/
28.
PanY. and DingX., Anomaly based web phishing page detection, IEEE Computer Security Applications Conference, 2006, Vol 6, pp. 381–392.
29.
PrakashP., KumarM., KompellaR.R. and GuptaM., PhishNet: Predictive Blacklisting to Detect Phishing Attacks. In Proceedings of the 29th Conference on Information Communications, INFOCOM’10, IEEE Press, Piscataway, NJ, USA, 2010, pp. 346–350.
30.
PhishTank. PhishTank - Out of the Net, into the Tank. http://www.phishtank.com/, April 2016.
31.
SuriR.K., TomarD.S. and SahuD.R., An approach to perceive tabnabbing attack, International Journal of Scientific and Technology Research1(6) (2012), 90–94.
32.
BasnetR.B., SungA.H. and LiuQ., Learning to detect phishing URLs, International Journal of Research in Engineering and Technology3(6) (2014), 11–24.
33.
RaoA.S. and GeorgeffM.P., BDI agents: From theory to practice, ICMAS95 (1995).
34.
UnluS.A. and BicakciK., NoTabNab: Protection Against the Tabnabbing Attack, In eCrime Researchers Summit (eCrime), 2010, pp. 1–15.
35.
MultiagentSycara., Systems, American Association for Artificial Intelligence, 1998.
36.
TeraguchiY., ChouN., LedesmaR., BonehD., MitchellJ.C., Client-side defense against web-based identity theft, 11th Annual Network and Distributed System Security Symposium (NDSS’04), San Diego, 2004.
37.
The Web Application Security Consortium. Cross-site Scripting (XSS). http://projects.webappsec.org/w/page/13246920/Cross%20Site%20Scripting29
38.
TsukadaM., WashioT., et al., Automatic Web Page Classification using Machine Learning Methods, LNCS, Proceedings of First Asia-Pacific Conference on Web Intelligence: Research and Development, 2198 (2011), pp. 303–313.
39.
ReddyV.P., RadhaV. and JindalM., Client side protection from phishing attack, International Journal of Advanced Engineering Sciences and Technologies3(1) (2011), 39–45.
40.
WenyinL., et al. Detection of phishing webpages based on visual similarity, Special Interest Tracks and Posters of the 14th International Conference on World Wide Web ACM, 2005, pp. 1060–1061.
41.
WuW., et al., Towards secure and cost-effective fuzzy access control in mobile cloud computing, Soft Computing (2015), 1–7.
42.
CaoY., HanW., LeY., Anti-phishing Based on Automated Individual Whitelist, DIM’08, October 31, 2008, Fairfax, Virginia, USA.
43.
ZhangY., HongJ.I. and CranorL.F., CANTINA: A Content-based Approach to Detecting Phishing Web Sites, Proceedings of the 16th International Conference on World Wide Web (WWW’07), Banff, Alberta, CA, 2007.
ZhangY.Z., The Automatic Classification of Web Pages based on Neural Networks, Neural Information Processing ICONIP 2001 Proceedings, China, 2 (2001), pp. 570–575.
