PhishCage: reproduction of fraudulent websites in the emulated internet

Authors:
Daisuke Miyamoto;Toshiyuki Miyachi;Yuzo Taenaka;Hiroaki Hazeyama
Affiliations:
The University of Tokyo, Bunkyo-ku, Tokyo, Japan;National Institute of Information and Communications Technology, Nomi, Ishikawa, Japan;The University of Tokyo, Bunkyo-ku, Tokyo, Japan;Nara Institute of Science and Technology, Ikoma, Nara, Japan
Venue:
Proceedings of the 6th International ICST Conference on Simulation Tools and Techniques
Year:
2013

Citing 11
Cited 0

Detecting Phishing Web Pages with Visual Similarity Assessment Based on Earth Mover's Distance (EMD)

IEEE Transactions on Dependable and Secure Computing
Cantina: a content-based approach to detecting phishing web sites

Proceedings of the 16th international conference on World Wide Web
Design and implementation of an isolated sandbox with mimetic internet used to analyze malwares

DETER Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test on DETER Community Workshop on Cyber Security Experimentation and Test 2007
Visual-similarity-based phishing detection

Proceedings of the 4th international conference on Security and privacy in communication netowrks
Outfitting an inter-AS topology to a network emulation testbed for realistic performance tests of DDoS countermeasures

CSET'08 Proceedings of the conference on Cyber security experimentation and test
Phishing defense against IDN address spoofing attacks

Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services
A hybrid phish detection approach by identity discovery and keywords retrieval

Proceedings of the 18th international conference on World wide web
Modeling and emulation of internet paths

NSDI'09 Proceedings of the 6th USENIX symposium on Networked systems design and implementation
Modelling Intelligent Phishing Detection System for E-banking Using Fuzzy Data Mining

CW '09 Proceedings of the 2009 International Conference on CyberWorlds
Isolated virtualised clusters: testbeds for high-risk security experimentation and training

CSET'10 Proceedings of the 3rd international conference on Cyber security experimentation and test
The science of cyber security experimentation: the DETER project

Proceedings of the 27th Annual Computer Security Applications Conference

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper introduces PhishCage, an experimental infrastructure for phishing detection systems. Due to the short life time of phishing sites, comparative study of effectiveness, especially universality, among the detection systems is difficult. Our key idea is developing a testbed in which preserved phishing sites can be browsed as if they existed in the wild. According to our survey for phishing detection systems, this paper defines the requirements for the testbed, and designs PhishCage to meet with the requirements. The experiment of PhishCage demonstrates our mapping algorithm for 121 phishing sites into the emulated Japanese Internet topology. We confirm that phishing detection systems can obtain the realistic IP address and autonomous system number of the phishing sites in PhishCage, and few modifications enable the systems to work as if they are in the real Internet. With regard to the experimental results, we analyze the limitation of PhishCage, and finally discuss the feasibility of our emulation technique.