Abstract

This paper presents a proposal for scalable detection and isolation of phishing. The main ideas are to move the protection from end users towards the network provider and to employ the novel bad neighborhood concept, in order to detect and isolate both phishing e-mail senders and phishing web servers. In addition, we propose to develop a self-management architecture that enables ISPs to protect their users against phishing attacks, and explain how this architecture could be evaluated. This proposal is the result of half a year of research work at the University of Twente (UT), and it is aimed at a Ph.D. thesis in 2012.
Original languageUndefined
Title of host publicationProceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009)
Place of PublicationHeidelbeg
PublisherSpringer Verlag
Pages195-198
Number of pages4
ISBN (Print)978-3-642-02626-3
DOIs
StatePublished - 1 Jul 2009

Publication series

NameLecture Notes in Computer Science
PublisherSpringer Verlag
Volume5637

Fingerprint

Servers

Keywords

  • METIS-263928
  • EWI-15721
  • IR-67530

Cite this

Moreira Moura, G., & Pras, A. (2009). Scalable Detection and Isolation of Phishing. In Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009) (pp. 195-198). [10.1007/978-3-642-02627-0_20] (Lecture Notes in Computer Science; Vol. 5637). Heidelbeg: Springer Verlag. DOI: 10.1007/978-3-642-02627-0_20

Moreira Moura, Giovane; Pras, Aiko / Scalable Detection and Isolation of Phishing.

Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009). Heidelbeg : Springer Verlag, 2009. p. 195-198 10.1007/978-3-642-02627-0_20 (Lecture Notes in Computer Science; Vol. 5637).

Research output: Scientific - peer-reviewConference contribution

@inbook{959dbe511c3d4e538c97ad7181374697,
title = "Scalable Detection and Isolation of Phishing",
abstract = "This paper presents a proposal for scalable detection and isolation of phishing. The main ideas are to move the protection from end users towards the network provider and to employ the novel bad neighborhood concept, in order to detect and isolate both phishing e-mail senders and phishing web servers. In addition, we propose to develop a self-management architecture that enables ISPs to protect their users against phishing attacks, and explain how this architecture could be evaluated. This proposal is the result of half a year of research work at the University of Twente (UT), and it is aimed at a Ph.D. thesis in 2012.",
keywords = "METIS-263928, EWI-15721, IR-67530",
author = "{Moreira Moura}, Giovane and Aiko Pras",
note = "10.1007/978-3-642-02627-0_20",
year = "2009",
month = "7",
doi = "10.1007/978-3-642-02627-0_20",
isbn = "978-3-642-02626-3",
series = "Lecture Notes in Computer Science",
publisher = "Springer Verlag",
pages = "195--198",
booktitle = "Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009)",

}

Moreira Moura, G & Pras, A 2009, Scalable Detection and Isolation of Phishing. in Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009)., 10.1007/978-3-642-02627-0_20, Lecture Notes in Computer Science, vol. 5637, Springer Verlag, Heidelbeg, pp. 195-198. DOI: 10.1007/978-3-642-02627-0_20

Scalable Detection and Isolation of Phishing. / Moreira Moura, Giovane; Pras, Aiko.

Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009). Heidelbeg : Springer Verlag, 2009. p. 195-198 10.1007/978-3-642-02627-0_20 (Lecture Notes in Computer Science; Vol. 5637).

Research output: Scientific - peer-reviewConference contribution

TY - CHAP

T1 - Scalable Detection and Isolation of Phishing

AU - Moreira Moura,Giovane

AU - Pras,Aiko

N1 - 10.1007/978-3-642-02627-0_20

PY - 2009/7/1

Y1 - 2009/7/1

N2 - This paper presents a proposal for scalable detection and isolation of phishing. The main ideas are to move the protection from end users towards the network provider and to employ the novel bad neighborhood concept, in order to detect and isolate both phishing e-mail senders and phishing web servers. In addition, we propose to develop a self-management architecture that enables ISPs to protect their users against phishing attacks, and explain how this architecture could be evaluated. This proposal is the result of half a year of research work at the University of Twente (UT), and it is aimed at a Ph.D. thesis in 2012.

AB - This paper presents a proposal for scalable detection and isolation of phishing. The main ideas are to move the protection from end users towards the network provider and to employ the novel bad neighborhood concept, in order to detect and isolate both phishing e-mail senders and phishing web servers. In addition, we propose to develop a self-management architecture that enables ISPs to protect their users against phishing attacks, and explain how this architecture could be evaluated. This proposal is the result of half a year of research work at the University of Twente (UT), and it is aimed at a Ph.D. thesis in 2012.

KW - METIS-263928

KW - EWI-15721

KW - IR-67530

U2 - 10.1007/978-3-642-02627-0_20

DO - 10.1007/978-3-642-02627-0_20

M3 - Conference contribution

SN - 978-3-642-02626-3

T3 - Lecture Notes in Computer Science

SP - 195

EP - 198

BT - Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009)

PB - Springer Verlag

ER -

Moreira Moura G, Pras A. Scalable Detection and Isolation of Phishing. In Proceedings of the Third International Conference on Autonomous Infrastructure, Management and Security (AIMS 2009). Heidelbeg: Springer Verlag. 2009. p. 195-198. 10.1007/978-3-642-02627-0_20. (Lecture Notes in Computer Science). Available from, DOI: 10.1007/978-3-642-02627-0_20