On Designing and Evaluating Phishing Webpage Detection Techniques for the Real World

Research output: Chapter in Book/Report/Conference proceedingConference contributionProfessional

Researchers

Research units

Abstract

While a plethora of apparently foolproof detection techniques have been developed to cope with phishing, it remains a continuing problem with an increasing number of attacks and victims. This is due to a gap between the reported experimental detection accuracy of solutions from the academic literature and their actual effectiveness in real-world scenarios. For instance, design choices made while only considering how to maximize the accuracy of phishing detection sometimes has the unintended effect of constraining deployability or limiting usability. We hope to raise awareness about practices causing this gap and present a set of guidelines for the design and evaluation of phishing webpage detection techniques. These guidelines can improve the effectiveness of phishing detection techniques in real-world scenarios and foster technology transfer. They also facilitate unbiased comparison of evaluation results of different detection techniques.

Details

Original languageEnglish
Title of host publication11th USENIX Workshop on Cyber Security Experimentation and Test (CSET 18)
Publication statusPublished - 2018
MoE publication typeD3 Professional conference proceedings
EventUSENIX Workshop on Cyber Security Experimentation and Test - Baltimore, United States
Duration: 13 Aug 201813 Aug 2018
Conference number: 11
https://www.usenix.org/conference/cset18

Workshop

WorkshopUSENIX Workshop on Cyber Security Experimentation and Test
Abbreviated titleCSET
CountryUnited States
CityBaltimore
Period13/08/201813/08/2018
Internet address

Download statistics

No data available

ID: 29608882