Email summarization to assist users in phishing identification

Amir Kashapov, Tingmin Wu, Sharif Abuadbba, Carsten Rudolph

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

6 Citations (Scopus)

Abstract

Cyber-phishing attacks recently became more precise, targeted, and tailored by training data to activate only in the presence of specific information or cues. They are adaptable to a much greater extent than traditional phishing detection. Hence, automated detection systems cannot always be 100% accurate, increasing the uncertainty around expected behavior when faced with a potential phishing email. On the other hand, human-centric defence approaches focus extensively on user training but face the difficulty of keeping users up to date with continuously emerging patterns. Therefore, advances in analyzing the content of an email in novel ways along with summarizing the most pertinent content to the recipients of emails is a prospective gateway to furthering how to combat these threats. Addressing this gap, this work leverages transformer-based machine learning to (i) analyze prospective psychological triggers, to (ii) detect possible malicious intent, and to (iii) create representative summaries of emails. We then amalgamate this information and present it to the user to allow them to (i) easily decide whether the email is "phishy"and (ii) self-learn advanced malicious patterns.

Original languageEnglish
Title of host publicationProceedings of the 2022 ACM Asia Conference on Computer and Communications Security
EditorsMinoru Kuribayashi
Place of PublicationNew York NY USA
PublisherAssociation for Computing Machinery (ACM)
Pages1234-1236
Number of pages3
ISBN (Electronic)9781450391405
DOIs
Publication statusPublished - May 2022
EventACM ASIA Conference on Computer and Communications Security 2022 - Online, Nagasaki, Japan
Duration: 30 May 20223 Jun 2022
Conference number: 17th
https://dl.acm.org/doi/proceedings/10.1145/3488932 (Proceedings)
https://asiaccs2022.conferenceservice.jp/ (Website)

Conference

ConferenceACM ASIA Conference on Computer and Communications Security 2022
Abbreviated titleASIA CCS 2022
Country/TerritoryJapan
CityNagasaki
Period30/05/223/06/22
Internet address

Keywords

  • Email
  • Machine learning
  • Phishing
  • Summarization

Cite this