Abstract
Phishing is currently defined as a criminal mechanism employing both social engineering and technical subterfuge to gather any useful information such as user personal data or financial account credentials. Many users are sensible about this kind of attack from suspicious URL addresses or obvious warning information from browsers, but phishing still accounts for a larger proportion of all of malicious attacks. Moreover, these warning features will be eliminated if the victim is under a DNS hijacking attack. There is much research about the prevention and evaluation of phishing, in both PC platforms and mobile platforms, but there are still technical challenges to reducing the risk from phishing, especially in mobile platforms.
We presented a novel method to prevent phishing attacks by using an Optical Character Recognition (OCR) technology in a previous paper. This method not only overcomes the limitation of current preventions, but also provides a high detection accuracy rate. However, whether this method can be implemented ideally in mobile devices needed to be further examined, especially in relation to the challenges of limited resources (power and bandwidth). In this paper, we apply the OCR method in a mobile platform and provide a prototype implementation scheme to determine applicability. Experiments are performed to test the technique under DNS hijacking attacks.
We presented a novel method to prevent phishing attacks by using an Optical Character Recognition (OCR) technology in a previous paper. This method not only overcomes the limitation of current preventions, but also provides a high detection accuracy rate. However, whether this method can be implemented ideally in mobile devices needed to be further examined, especially in relation to the challenges of limited resources (power and bandwidth). In this paper, we apply the OCR method in a mobile platform and provide a prototype implementation scheme to determine applicability. Experiments are performed to test the technique under DNS hijacking attacks.
| Original language | English |
|---|---|
| Title of host publication | 2020 International Conference on Cyber Security and Protection of Digital Services (Cyber Security) |
| Publisher | IEEE Computer Society |
| Number of pages | 8 |
| ISBN (Electronic) | 9781728164281 |
| ISBN (Print) | 9781728164298 |
| DOIs | |
| Publication status | Published - 13 Jul 2020 |
| Event | Cyber Science 2020 - online, Dublin, Ireland Duration: 15 Jun 2020 → 18 Jul 2020 https://c-mric.org/wp-content/uploads/2020/05/IEEE-Cyber-Science-2020-Conference-Schedule-Portrait-Version-1.0.pdf |
Conference
| Conference | Cyber Science 2020 |
|---|---|
| Country/Territory | Ireland |
| City | Dublin |
| Period | 15/06/20 → 18/07/20 |
| Internet address |
Keywords
- Phishing prevention
- OCR
- Mobile phishing prevention
Access to Document
- Cost_Effective_OCR_Implementation_to_Prevent_Phishing_on_Mobile_Platforms
Copyright © 2020 IEEE. This work has been made available online in accordance with publisher policies or with permission. Permission for further reuse of this content should be sought from the publisher or the rights holder. This is the author created accepted manuscript following peer review and may differ slightly from the final published version. The final published version of this work is available at https://doi.org/10.1109/CyberSecurity49315.2020.9138873
