Towards Adversarial Phishing Detection

Thomas K. Panum; Kaspar Hageman; Rene Rydhof Hansen; Jens Myrup Pedersen

Towards Adversarial Phishing Detection

Thomas K. Panum, Kaspar Hageman, Rene Rydhof Hansen, Jens Myrup Pedersen

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

1 Citation (Scopus)

17 Downloads (Pure)

Abstract

Over the recent decades, numerous evaluations of automated methods for detecting phishing attacks have been reporting stellar detection performances based on empirical evidence. These performances often neglect the adaptive behavior of an adversary seeking to evade detection, yielding uncertainty about their adversarial robustness. This work explores the adversarial robustness of highly influential and recent detection solutions, by assessing their common detection strategies. Following discussions of potential evasion techniques of these strategies, we present examples of techniques that enable evasion through imperceptible perturbations. In order to enable and improve future evaluations for adversarial robustness, a set of design guidelines is proposed.

Original language	English
Title of host publication	13th USENIX Workshop on Cyber Security Experimentation and Test
Number of pages	10
Publisher	USENIX - The Advanced Computing Systems Association
Publication date	Aug 2020
ISBN (Print)	9781713815211
Publication status	Published - Aug 2020
Event	13th USENIX Workshop on Cyber Security Experimentation and Test - Online Duration: 10 Aug 2020 → 10 Aug 2020 https://www.usenix.org/conference/cset20

Conference

Conference	13th USENIX Workshop on Cyber Security Experimentation and Test
Location	Online
Period	10/08/2020 → 10/08/2020
Internet address	https://www.usenix.org/conference/cset20

Access to Document

Open Access ArticleFinal published version, 211 KBLicence: Unspecified

https://www.usenix.org/system/files/cset20-paper-panum.pdf

Cite this

@inproceedings{d3c6724439c94433ae139bdbd52fc2cb,

title = "Towards Adversarial Phishing Detection",

abstract = "Over the recent decades, numerous evaluations of automated methods for detecting phishing attacks have been reporting stellar detection performances based on empirical evidence. These performances often neglect the adaptive behavior of an adversary seeking to evade detection, yielding uncertainty about their adversarial robustness. This work explores the adversarial robustness of highly influential and recent detection solutions, by assessing their common detection strategies. Following discussions of potential evasion techniques of these strategies, we present examples of techniques that enable evasion through imperceptible perturbations. In order to enable and improve future evaluations for adversarial robustness, a set of design guidelines is proposed.",

author = "Panum, {Thomas K.} and Kaspar Hageman and Hansen, {Rene Rydhof} and Pedersen, {Jens Myrup}",

year = "2020",

month = aug,

language = "English",

isbn = "9781713815211",

booktitle = "13th USENIX Workshop on Cyber Security Experimentation and Test",

publisher = "USENIX - The Advanced Computing Systems Association",

note = "13th USENIX Workshop on Cyber Security Experimentation and Test, CSET´20 ; Conference date: 10-08-2020 Through 10-08-2020",

url = "https://www.usenix.org/conference/cset20",

}

Towards Adversarial Phishing Detection. / Panum, Thomas K.; Hageman, Kaspar ; Hansen, Rene Rydhof ; Pedersen, Jens Myrup.

13th USENIX Workshop on Cyber Security Experimentation and Test. USENIX - The Advanced Computing Systems Association, 2020.

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

TY - GEN

T1 - Towards Adversarial Phishing Detection

AU - Panum, Thomas K.

AU - Hageman, Kaspar

AU - Hansen, Rene Rydhof

AU - Pedersen, Jens Myrup

PY - 2020/8

Y1 - 2020/8

N2 - Over the recent decades, numerous evaluations of automated methods for detecting phishing attacks have been reporting stellar detection performances based on empirical evidence. These performances often neglect the adaptive behavior of an adversary seeking to evade detection, yielding uncertainty about their adversarial robustness. This work explores the adversarial robustness of highly influential and recent detection solutions, by assessing their common detection strategies. Following discussions of potential evasion techniques of these strategies, we present examples of techniques that enable evasion through imperceptible perturbations. In order to enable and improve future evaluations for adversarial robustness, a set of design guidelines is proposed.

AB - Over the recent decades, numerous evaluations of automated methods for detecting phishing attacks have been reporting stellar detection performances based on empirical evidence. These performances often neglect the adaptive behavior of an adversary seeking to evade detection, yielding uncertainty about their adversarial robustness. This work explores the adversarial robustness of highly influential and recent detection solutions, by assessing their common detection strategies. Following discussions of potential evasion techniques of these strategies, we present examples of techniques that enable evasion through imperceptible perturbations. In order to enable and improve future evaluations for adversarial robustness, a set of design guidelines is proposed.

UR - https://www.usenix.org/conference/cset20/presentation/panum

UR - https://www.usenix.org/conference/cset20/workshop-program

UR - http://www.proceedings.com/55598.html

M3 - Article in proceeding

SN - 9781713815211

BT - 13th USENIX Workshop on Cyber Security Experimentation and Test

PB - USENIX - The Advanced Computing Systems Association

T2 - 13th USENIX Workshop on Cyber Security Experimentation and Test

Y2 - 10 August 2020 through 10 August 2020

ER -

Towards Adversarial Phishing Detection

Abstract

Conference

Access to Document

Other files and links

Fingerprint

Cite this