PhiGARo: Automatic Phishing Detection and Incident Response Framework

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14610%2F14%3A00076370" target="_blank" >RIV/00216224:14610/14:00076370 - isvavai.cz</a>

Výsledek na webu

<a href="http://dx.doi.org/10.1109/ARES.2014.46" target="_blank" >http://dx.doi.org/10.1109/ARES.2014.46</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1109/ARES.2014.46" target="_blank" >10.1109/ARES.2014.46</a>

Jazyk výsledku

angličtina

Název v původním jazyce

PhiGARo: Automatic Phishing Detection and Incident Response Framework

Popis výsledku v původním jazyce

We present a comprehensive framework for automatic phishing incident processing and work in progress concerning automatic phishing detection and reporting. Our work is based upon the automatic phishing incident processing tool PhiGARo which locates usersresponding to phishing attack attempts and prevents access to phishing sites from the protected network. Although PhiGARo processes the phishing incidents automatically, it depends on reports of phishing incidents from users. We propose a framework which introduces honey pots into the process in order to eliminate the reliance on user input. The honey pots are used to capture e-mails, automatically detect messages containing phishing and immediately transfer them to PhiGARo. There is a need to propagate e-mail addresses of a honey pot to attract phishers. We discuss approaches to the honey pot e-mail propagation and propose a further enhancement to using honey pots in response to phishing incidents.

Název v anglickém jazyce

PhiGARo: Automatic Phishing Detection and Incident Response Framework

Popis výsledku anglicky

We present a comprehensive framework for automatic phishing incident processing and work in progress concerning automatic phishing detection and reporting. Our work is based upon the automatic phishing incident processing tool PhiGARo which locates usersresponding to phishing attack attempts and prevents access to phishing sites from the protected network. Although PhiGARo processes the phishing incidents automatically, it depends on reports of phishing incidents from users. We propose a framework which introduces honey pots into the process in order to eliminate the reliance on user input. The honey pots are used to capture e-mails, automatically detect messages containing phishing and immediately transfer them to PhiGARo. There is a need to propagate e-mail addresses of a honey pot to attract phishers. We discuss approaches to the honey pot e-mail propagation and propose a further enhancement to using honey pots in response to phishing incidents.

Druh

D - Stať ve sborníku

CEP obor

IN - Informatika

OECD FORD obor

—

Projekt

—

Návaznosti

I - Institucionalni podpora na dlouhodoby koncepcni rozvoj vyzkumne organizace

Rok uplatnění

2014

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název statě ve sborníku

Availability, Reliability and Security (ARES), 2014 Ninth International Conference on

ISBN

9781479942237

ISSN

—

e-ISSN

—

Počet stran výsledku

8

Strana od-do

295-302

Název nakladatele

IEEE

Místo vydání

Fribourg, Switzerland

Místo konání akce

Fribourg, Switzerland

Datum konání akce

1. 1. 2014

Typ akce podle státní příslušnosti

WRD - Celosvětová akce

Kód UT WoS článku

—