Evasion Attacks and Defense Mechanisms for Machine Learning-Based Web Phishing Classifiers

Manu J. Pillai; S. Remya; V. Devika; Somula Ramasubbareddy; Yongyun Cho

doi:10.1109/ACCESS.2023.3342840

IEEE Access (Jan 2024)

Evasion Attacks and Defense Mechanisms for Machine Learning-Based Web Phishing Classifiers

Manu J. Pillai,
S. Remya,
V. Devika,
Somula Ramasubbareddy,
Yongyun Cho

Affiliations

Manu J. Pillai: Department of Computer Science and Engineering, Thangal Kunju Musaliar College of Engineering (TKMCE), Kollam, Kerala, India
S. Remya: ORCiD; School of Computing, Amrita Vishwa Vidyapeetham, Amritapuri Campus, Kollam, Kerala, India
V. Devika: Department of Computer Science and Engineering, Thangal Kunju Musaliar College of Engineering (TKMCE), Kollam, Kerala, India
Somula Ramasubbareddy: Department of Information and Communication Engineering, Sunchon National University, Suncheon, Jeollanam-do, South Korea
Yongyun Cho: ORCiD; Department of Information and Communication Engineering, Sunchon National University, Suncheon, Jeollanam-do, South Korea

DOI: https://doi.org/10.1109/ACCESS.2023.3342840
Journal volume & issue: Vol. 12
pp. 19375 – 19387

Abstract

Read online

Phishing is an electronic fraud through which an attacker can access user credentials. Phishing websites are the ones that mimic legitimate websites. Fraudsters can replace them within hours to evade their detection. The effects of phishing attacks exhibit the need for anti-phishing mechanisms. Several approaches were there to recognize the phishing websites, the white list approach, blacklist approach, machine learning, and heuristic-based approach. Earlier studies have shown that classifiers may be subject to evasion attacks although this point has only been explored on a small scale. As a result, the study covers evasion attacks and their detection within the context of website classifiers, which is rarely explored. In response to the inadequacies, the proposed technique includes extracting information from URLs and classifying webpages using various machine learning methods. The methodology involves crafting adversarial samples targeting classification features, with a focus on maintaining the functionality and appearance of phishing websites. The appearance is evaluated using image distortion metrics named mean squared error. Then a resemblance approach is utilized for the aim of detecting assaults that happened as a result of evasion attacks. This research introduces a novel defense mechanism against evasion attacks, marking a significant contribution to the field.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords