GramBeddings: A New Neural Network for URL Based Identification of Phishing Web Pages Through N-gram Embeddings. Issue 124 (January 2023)
- Record Type:
- Journal Article
- Title:
- GramBeddings: A New Neural Network for URL Based Identification of Phishing Web Pages Through N-gram Embeddings. Issue 124 (January 2023)
- Main Title:
- GramBeddings: A New Neural Network for URL Based Identification of Phishing Web Pages Through N-gram Embeddings
- Authors:
- Bozkir, Ahmet Selman
Dalgic, Firat Coskun
Aydos, Murat - Abstract:
- Highlights: A new solution involving four DL channels to extract information rich representations An adjustable n-gram embedding matrix coupled with an effective pre-processing scheme. A novel dataset involving 800K real-world phishing and legitimate URLs in total. The robustness of the approach against a real-world adversarial attack has been examined. Abstract: There has been ever-growing use of Internet and progress within many communication channels such as social media and this escalates the need for rapid and low source demanding phishing detection mechanisms. In this very study, we propose a new deep neural model for phishing URL identification so-called GramBeddings introducing some distinguishing novelties by (1) proposing the use of n-gram embeddings, computed on the fly, requiring no pre-training stage, (2) removing the necessity of word and sub-word level information, (3) providing a smart and efficient n-gram selection pipeline, and benefiting from attention mechanism. Other than that, we share a publicly available, large-scale and novel dataset 2 including 800K real-world phishing and legitimate URLs. Our scheme suggests an adjustable and automated n-gram selection and filtering mechanism along with a new neural network architecture concatenating four-channel information flow through cascading CNN, LSTM, and attention layers. With that, discriminative multi-level character patterns can be discovered without any hand-crafted operation and are enabled toHighlights: A new solution involving four DL channels to extract information rich representations An adjustable n-gram embedding matrix coupled with an effective pre-processing scheme. A novel dataset involving 800K real-world phishing and legitimate URLs in total. The robustness of the approach against a real-world adversarial attack has been examined. Abstract: There has been ever-growing use of Internet and progress within many communication channels such as social media and this escalates the need for rapid and low source demanding phishing detection mechanisms. In this very study, we propose a new deep neural model for phishing URL identification so-called GramBeddings introducing some distinguishing novelties by (1) proposing the use of n-gram embeddings, computed on the fly, requiring no pre-training stage, (2) removing the necessity of word and sub-word level information, (3) providing a smart and efficient n-gram selection pipeline, and benefiting from attention mechanism. Other than that, we share a publicly available, large-scale and novel dataset 2 including 800K real-world phishing and legitimate URLs. Our scheme suggests an adjustable and automated n-gram selection and filtering mechanism along with a new neural network architecture concatenating four-channel information flow through cascading CNN, LSTM, and attention layers. With that, discriminative multi-level character patterns can be discovered without any hand-crafted operation and are enabled to contribute to prediction. As a result, the proposed system provides the following features in the problem domain: (i) real-time, end-to-end and high performance inference, (ii) language-agnostic prediction, and (iii) removal of the necessity of any third-party service or hand-crafted feature. These experiments show that our approach outperforms the other models in the literature with an accuracy of 98.27%. Moreover, the comparative study conducted with several datasets clearly verifies the superiority of our model in all tests. We also examine the robustness of our model against a real-world adversarial attack and discuss the methods of overcoming such an attack. Our codebase 3 is shared with the community to be used for benchmarking purposes in the future. … (more)
- Is Part Of:
- Computers & security. Issue 124(2023)
- Journal:
- Computers & security
- Issue:
- Issue 124(2023)
- Issue Display:
- Volume 124, Issue 124 (2023)
- Year:
- 2023
- Volume:
- 124
- Issue:
- 124
- Issue Sort Value:
- 2023-0124-0124-0000
- Page Start:
- Page End:
- Publication Date:
- 2023-01
- Subjects:
- Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2022.102964 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 24445.xml