{"id":"https://openalex.org/W2602952449","doi":"https://doi.org/10.1145/3029806.3029842","title":"Comprehensive Method for Detecting Phishing EmailsUsing Correlation-based Analysis and User Participation","display_name":"Comprehensive Method for Detecting Phishing EmailsUsing Correlation-based Analysis and User Participation","publication_year":2017,"publication_date":"2017-03-20","ids":{"openalex":"https://openalex.org/W2602952449","doi":"https://doi.org/10.1145/3029806.3029842","mag":"2602952449"},"language":"en","primary_location":{"id":"doi:10.1145/3029806.3029842","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3029806.3029842","pdf_url":"http://dl.acm.org/ft_gateway.cfm?id=3029842&type=pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Seventh ACM on Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"http://dl.acm.org/ft_gateway.cfm?id=3029842&type=pdf","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5050592031","display_name":"Rakesh Verma","orcid":"https://orcid.org/0000-0002-7466-7823"},"institutions":[{"id":"https://openalex.org/I44461941","display_name":"University of Houston","ror":"https://ror.org/048sx0r50","country_code":"US","type":"education","lineage":["https://openalex.org/I44461941"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Rakesh Verma","raw_affiliation_strings":["University of Houston, Houston, USA"],"affiliations":[{"raw_affiliation_string":"University of Houston, Houston, USA","institution_ids":["https://openalex.org/I44461941"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5015271827","display_name":"Ayman El Aassal","orcid":"https://orcid.org/0000-0002-0225-4544"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ayman El Aassal","raw_affiliation_strings":["ENSIAS, Rabat, Morocco"],"affiliations":[{"raw_affiliation_string":"ENSIAS, Rabat, Morocco","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5050592031"],"corresponding_institution_ids":["https://openalex.org/I44461941"],"apc_list":null,"apc_paid":null,"fwci":1.5175,"has_fulltext":true,"cited_by_count":4,"citation_normalized_percentile":{"value":0.86680726,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"155","last_page":"157"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.9522069096565247},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7245713472366333},{"id":"https://openalex.org/keywords/header","display_name":"Header","score":0.6992267370223999},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6050242185592651},{"id":"https://openalex.org/keywords/hacker","display_name":"Hacker","score":0.5548322796821594},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.5377611517906189},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5190099477767944},{"id":"https://openalex.org/keywords/personally-identifiable-information","display_name":"Personally identifiable information","score":0.43277212977409363},{"id":"https://openalex.org/keywords/electronic-mail","display_name":"Electronic mail","score":0.42923474311828613},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.41711798310279846},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.3316461443901062}],"concepts":[{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.9522069096565247},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7245713472366333},{"id":"https://openalex.org/C48105269","wikidata":"https://www.wikidata.org/wiki/Q1141160","display_name":"Header","level":2,"score":0.6992267370223999},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6050242185592651},{"id":"https://openalex.org/C86844869","wikidata":"https://www.wikidata.org/wiki/Q2798820","display_name":"Hacker","level":2,"score":0.5548322796821594},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.5377611517906189},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5190099477767944},{"id":"https://openalex.org/C169093310","wikidata":"https://www.wikidata.org/wiki/Q3702971","display_name":"Personally identifiable information","level":2,"score":0.43277212977409363},{"id":"https://openalex.org/C3020028006","wikidata":"https://www.wikidata.org/wiki/Q9158","display_name":"Electronic mail","level":2,"score":0.42923474311828613},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.41711798310279846},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.3316461443901062},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3029806.3029842","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3029806.3029842","pdf_url":"http://dl.acm.org/ft_gateway.cfm?id=3029842&type=pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Seventh ACM on Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3029806.3029842","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3029806.3029842","pdf_url":"http://dl.acm.org/ft_gateway.cfm?id=3029842&type=pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Seventh ACM on Conference on Data and Application Security and Privacy","raw_type":"proceedings-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.7599999904632568}],"awards":[{"id":"https://openalex.org/G1666312413","display_name":null,"funder_award_id":"DGE 1433817","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G221949089","display_name":null,"funder_award_id":"DUE 1241772","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G2271036372","display_name":null,"funder_award_id":"CNS 1319212, DGE 1241772, DUE 1356705, DGE 1433817","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G3322060798","display_name":"TWC: Small: Unsupervised and Statistical Natural Language Processing Techniques for Automatic Phishing and Opinion Spam Detection","funder_award_id":"1319212","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G4449200453","display_name":"Collaborative Project: Enriching Security Curricula and Enhancing Awareness of Security in Computer Science and Beyond","funder_award_id":"1241772","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G6303296854","display_name":null,"funder_award_id":"1433817","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G8214249994","display_name":null,"funder_award_id":"CNS 1319212","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320308861","display_name":"Woods Hole Oceanographic Institution","ror":"https://ror.org/03zbnzt98"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2602952449.pdf","grobid_xml":"https://content.openalex.org/works/W2602952449.grobid-xml"},"referenced_works_count":11,"referenced_works":["https://openalex.org/W150462035","https://openalex.org/W1774758602","https://openalex.org/W1978214486","https://openalex.org/W1986089039","https://openalex.org/W1989957782","https://openalex.org/W2052176706","https://openalex.org/W2152394300","https://openalex.org/W2156852385","https://openalex.org/W2188725950","https://openalex.org/W2294209216","https://openalex.org/W2533061047"],"related_works":["https://openalex.org/W2294483539","https://openalex.org/W2378449000","https://openalex.org/W3187581118","https://openalex.org/W2938399969","https://openalex.org/W3143747655","https://openalex.org/W2002178493","https://openalex.org/W2901835651","https://openalex.org/W2883616266","https://openalex.org/W2034179494","https://openalex.org/W4221100201"],"abstract_inverted_index":{"Phishing":[0],"email":[1,65,145,172,189,199],"has":[2],"become":[3],"a":[4,63,122,127,182,197],"popular":[5],"solution":[6],"among":[7],"attackers":[8],"to":[9,28,45,49,73,184,201],"steal":[10],"all":[11],"kinds":[12],"of":[13,32,34,56,90,97,129,143],"data":[14],"from":[15,78,136],"people":[16,75],"and":[17,26,69,102,141,146],"easily":[18],"breach":[19],"organizations'":[20],"security.":[21],"Hackers":[22],"use":[23],"multiple":[24,106],"techniques":[25],"tricks":[27],"raise":[29],"the":[30,50,88,94,98,133,138,144,150,153,185,188,205],"chances":[31],"success":[33],"their":[35,47],"attacks,":[36],"like":[37],"using":[38],"information":[39,91,134],"found":[40],"on":[41,86],"social":[42],"networking":[43],"websites":[44,68],"tailor":[46],"emails":[48,72,108],"target's":[51],"interests,":[52],"or":[53,66,76],"targeting":[54],"employees":[55,77],"an":[57,171],"organization":[58],"who":[59],"probably":[60],"can't":[61],"spot":[62],"phishing":[64,107,198],"malicious":[67],"avoid":[70],"sending":[71],"IT":[74],"Security":[79],"department.":[80],"In":[81],"this":[82],"paper":[83],"we":[84,109],"focus":[85],"analyzing":[87,105,137],"coherence":[89],"contained":[92],"in":[93,152],"different":[95,118],"parts":[96],"email:":[99],"Header,":[100],"Body,":[101],"URLs.":[103],"After":[104],"discovered":[110],"that":[111,131,160],"there":[112,161],"is":[113,162,173,190],"always":[114],"incoherence":[115],"between":[116],"these":[117],"parts.":[119],"We":[120,156],"created":[121],"comprehensive":[123],"method":[124],"which":[125],"uses":[126],"set":[128],"rules":[130],"correlates":[132],"collected":[135],"header,":[139],"body":[140],"URLs":[142],"can":[147,207],"even":[148,169,195],"include":[149],"user":[151,186,206],"detection":[154],"process.":[155],"take":[157],"into":[158],"account":[159],"no":[163],"such":[164],"thing":[165],"called":[166],"perfection,":[167],"so":[168],"if":[170,187,196],"classified":[174],"as":[175],"legitimate,":[176],"our":[177,203],"system":[178],"will":[179],"still":[180,208],"send":[181],"warning":[183],"suspicious":[191],"enough.":[192],"This":[193],"way":[194],"manages":[200],"escape":[202],"system,":[204],"be":[209],"protected.":[210]},"counts_by_year":[{"year":2022,"cited_by_count":1},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":1}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}