Emerging Technologies in Computing. Second International Conference, iCETiC 2019, London, UK, August 19–20, 2019, Proceedings

Research Article

Hybrid Rule-Based Model for Phishing URLs Detection

  • @INPROCEEDINGS{10.1007/978-3-030-23943-5_9,
        author={Kayode Adewole and Abimbola Akintola and Shakirat Salihu and Nasir Faruk and Rasheed Jimoh},
        title={Hybrid Rule-Based Model for Phishing URLs Detection},
        proceedings={Emerging Technologies in Computing. Second International Conference, iCETiC 2019, London, UK, August 19--20, 2019, Proceedings},
        proceedings_a={ICETIC},
        year={2019},
        month={7},
        keywords={Phishing website JRip PART Machine learning Rule-based model Rule induction},
        doi={10.1007/978-3-030-23943-5_9}
    }
    
  • Kayode Adewole
    Abimbola Akintola
    Shakirat Salihu
    Nasir Faruk
    Rasheed Jimoh
    Year: 2019
    Hybrid Rule-Based Model for Phishing URLs Detection
    ICETIC
    Springer
    DOI: 10.1007/978-3-030-23943-5_9
Kayode Adewole1,*, Abimbola Akintola1,*, Shakirat Salihu1,*, Nasir Faruk1,*, Rasheed Jimoh1,*
  • 1: University of Ilorin
*Contact email: adewole.ks@unilorin.edu.ng, akintola.ag@unilorin.edu.ng, salihu.sa@unilorin.edu.ng, nasirfaruk@gmail.com, jimoh_rasheed@unilorin.edu.ng

Abstract

Phishing attack has been considered as a major security challenge facing online community due to the different sophisticated strategies that is being deployed by attackers. One of the reasons for creating phishing website by attackers is to employ social engineering technique that steal sensitive information from legitimate users, such as the user’s account details. Therefore, detecting phishing website has become an important task worthy of investigation. The most widely used blacklist-based approach has proven inefficient. Although, different models have been proposed in the literature by deploying a number of intelligent-based algorithms, however, considering hybrid intelligent approach based on rule induction for phishing website detection is still an open research issue. In this paper, a hybrid rule induction algorithm capable of separating phishing websites from genuine ones is proposed. The proposed hybrid algorithm leverages the strengths of both JRip and Projective Adaptive Resonance Theory (PART) algorithm to generate rule sets. Based on the experiments conducted on two publicly available datasets for phishing detection, the proposed algorithm demonstrates promising results achieving accuracy of 0.9453 and 0.9908 respectively on the two datasets. These results outperformed the results obtained with JRip and PART. Therefore, the rules generated from the hybrid algorithm are capable of identifying phishing links in real-time with reduction in false alarm.