Measuring the Effectiveness of Phishing Detection Tool: Comparative Study on Pattern Matching and User Rating Technique

Abstract

Phishing incidents continues to increase each year and becoming a global threat despite of having phishing detection tools in place. Successful phishing attacks are causing huge loss of money to Internet users and financial Institutions globally and several anti-phishing tools had been proposed to mitigate against phishing. A popular phishing detection tool currently used is the user rating technique, in which users will submit suspicious phishing URLs to a Phishing Blacklist Database, that for verification if it is phishing site. However, it is unclear to the effectiveness of this mechanism in detecting a suspicious site as a phishing website and in mitigating phishing attacks. The shortcomings and setbacks to this approach, in some aspects, needs to be improved and for this purpose, this paper proposes a new phishing detection tool which uses pattern matching technique in detecting a suspicious site as a phishing website. Our findings from this paper will be looked in terms of the speed of detection, false alarm, accuracy and interdependability in comparison to the current phishing detection tool