Effective Defense Schemes for Phishing Attacks on Mobile Computing Platforms.

Saved in:
Bibliographic Details
Title: Effective Defense Schemes for Phishing Attacks on Mobile Computing Platforms.
Authors: Wu, Longfei1, Du, Xiaojiang1, Wu, Jie1
Source: IEEE Transactions on Vehicular Technology. Aug2016, Vol. 65 Issue 8, p6678-6691. 14p.
Subjects: Phishing prevention, Mobile computing software, Cell phones, Cell phone users, Personal computers
Abstract: Recent years have witnessed the increasing threat of phishing attacks on mobile computing platforms. In fact, mobile phishing is particularly dangerous due to the hardware limitations of mobile devices and the habits of mobile users. In this paper, we did a comprehensive study on the security vulnerabilities caused by mobile phishing attacks, including web page phishing attacks, application phishing attacks, and account registry phishing attacks. Existing schemes designed for web phishing attacks on personal computers (PCs) cannot effectively address the various phishing attacks on mobile devices. Hence, we propose MobiFish, which is a novel automated lightweight antiphishing scheme for mobile platforms. MobiFish verifies the validity of web pages, applications, and persistent accounts by comparing the actual identity to the claimed identity. MobiFish has been implemented on a Nexus 4 smartphone running the Android 4.2 operating system. We experimentally evaluate the performance of MobiFish with 100 phishing URLs and corresponding legitimate URLs, as well as phishing apps. The results show that MobiFish is very effective in detecting phishing attacks on mobile phones. [ABSTRACT FROM AUTHOR]
Copyright of IEEE Transactions on Vehicular Technology is the property of IEEE and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Database: Engineering Source
FullText Text:
  Availability: 0
Header DbId: egs
DbLabel: Engineering Source
An: 117445553
AccessLevel: 6
PubType: Academic Journal
PubTypeId: academicJournal
PreciseRelevancyScore: 0
IllustrationInfo
Items – Name: Title
  Label: Title
  Group: Ti
  Data: Effective Defense Schemes for Phishing Attacks on Mobile Computing Platforms.
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Wu%2C+Longfei%22">Wu, Longfei</searchLink><relatesTo>1</relatesTo><br /><searchLink fieldCode="AR" term="%22Du%2C+Xiaojiang%22">Du, Xiaojiang</searchLink><relatesTo>1</relatesTo><br /><searchLink fieldCode="AR" term="%22Wu%2C+Jie%22">Wu, Jie</searchLink><relatesTo>1</relatesTo>
– Name: TitleSource
  Label: Source
  Group: Src
  Data: <searchLink fieldCode="JN" term="%22IEEE+Transactions+on+Vehicular+Technology%22">IEEE Transactions on Vehicular Technology</searchLink>. Aug2016, Vol. 65 Issue 8, p6678-6691. 14p.
– Name: Subject
  Label: Subjects
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22Phishing+prevention%22">Phishing prevention</searchLink><br /><searchLink fieldCode="DE" term="%22Mobile+computing+software%22">Mobile computing software</searchLink><br /><searchLink fieldCode="DE" term="%22Cell+phones%22">Cell phones</searchLink><br /><searchLink fieldCode="DE" term="%22Cell+phone+users%22">Cell phone users</searchLink><br /><searchLink fieldCode="DE" term="%22Personal+computers%22">Personal computers</searchLink>
– Name: Abstract
  Label: Abstract
  Group: Ab
  Data: Recent years have witnessed the increasing threat of phishing attacks on mobile computing platforms. In fact, mobile phishing is particularly dangerous due to the hardware limitations of mobile devices and the habits of mobile users. In this paper, we did a comprehensive study on the security vulnerabilities caused by mobile phishing attacks, including web page phishing attacks, application phishing attacks, and account registry phishing attacks. Existing schemes designed for web phishing attacks on personal computers (PCs) cannot effectively address the various phishing attacks on mobile devices. Hence, we propose MobiFish, which is a novel automated lightweight antiphishing scheme for mobile platforms. MobiFish verifies the validity of web pages, applications, and persistent accounts by comparing the actual identity to the claimed identity. MobiFish has been implemented on a Nexus 4 smartphone running the Android 4.2 operating system. We experimentally evaluate the performance of MobiFish with 100 phishing URLs and corresponding legitimate URLs, as well as phishing apps. The results show that MobiFish is very effective in detecting phishing attacks on mobile phones. [ABSTRACT FROM AUTHOR]
– Name: AbstractSuppliedCopyright
  Label:
  Group: Ab
  Data: <i>Copyright of IEEE Transactions on Vehicular Technology is the property of IEEE and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract.</i> (Copyright applies to all Abstracts.)
PLink https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=egs&AN=117445553
RecordInfo BibRecord:
  BibEntity:
    Identifiers:
      – Type: doi
        Value: 10.1109/TVT.2015.2472993
    Languages:
      – Code: eng
        Text: English
    PhysicalDescription:
      Pagination:
        PageCount: 14
        StartPage: 6678
    Subjects:
      – SubjectFull: Phishing prevention
        Type: general
      – SubjectFull: Mobile computing software
        Type: general
      – SubjectFull: Cell phones
        Type: general
      – SubjectFull: Cell phone users
        Type: general
      – SubjectFull: Personal computers
        Type: general
    Titles:
      – TitleFull: Effective Defense Schemes for Phishing Attacks on Mobile Computing Platforms.
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Wu, Longfei
      – PersonEntity:
          Name:
            NameFull: Du, Xiaojiang
      – PersonEntity:
          Name:
            NameFull: Wu, Jie
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 01
              M: 08
              Text: Aug2016
              Type: published
              Y: 2016
          Identifiers:
            – Type: issn-print
              Value: 00189545
          Numbering:
            – Type: volume
              Value: 65
            – Type: issue
              Value: 8
          Titles:
            – TitleFull: IEEE Transactions on Vehicular Technology
              Type: main
ResultId 1