<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Archiving and Interchange DTD v1.0 20120330//EN" "JATS-archivearticle1.dtd">
<article xmlns:xlink="http://www.w3.org/1999/xlink">
  <front>
    <journal-meta>
      <journal-title-group>
        <journal-title>Tempe, Arizona,
USA</journal-title>
      </journal-title-group>
    </journal-meta>
    <article-meta>
      <title-group>
        <article-title>Anti-Phishing Pilot at ACM IWSPA 2018</article-title>
      </title-group>
      <contrib-group>
        <contrib contrib-type="author">
          <string-name>Luis Moraes Shahryar Baki</string-name>
          <email>ltdemoraes@uh.edu</email>
          <email>ltdemoraes@uh.edu sh.baki@gmail.com</email>
          <email>sh.baki@gmail.com</email>
          <xref ref-type="aff" rid="aff0">0</xref>
        </contrib>
        <contrib contrib-type="author">
          <string-name>Computer Science Department</string-name>
          <xref ref-type="aff" rid="aff1">1</xref>
        </contrib>
        <aff id="aff0">
          <label>0</label>
          <institution>Rakesh Verma</institution>
        </aff>
        <aff id="aff1">
          <label>1</label>
          <institution>University of Houston</institution>
          ,
          <addr-line>Houston, TX 77204</addr-line>
          ,
          <country country="US">USA</country>
        </aff>
      </contrib-group>
      <pub-date>
        <year>2018</year>
      </pub-date>
      <volume>2</volume>
      <fpage>1</fpage>
      <lpage>03</lpage>
      <abstract>
        <p>This paper provides a summary of the IWSPA Anti-Phishing shared task pilot. The pilot consisted of two subtasks: identifying phishing emails from a collection of legitimate and phishing email bodies, and separating phishing emails from legitimate emails when given full emails, i.e., with headers and bodies. For both subtasks, training datasets were made available approximately a month before the test data was released. Sixteen teams registered for the task and nine submitted models and predictions for the test data. We discuss the collection sources and preprocessing of the datasets, and the performance of the teams on the test data from several different perspectives. A unique aspect of the dataset was that it included synthetic attacks. Another emphasis in both subtasks was that the phishing class size was almost an order of magnitude smaller than the legitimate class size to re ect the real-world scenario. Hence, we introduce two evaluation metrics, called balanced detection rate and normalized balanced detection rate, which to our knowledge are new and more suitable for unbalanced datasets. We then evaluate the performance of the teams on the usual metrics as well as Copyright c by the paper's authors. Copying permitted for private and academic purposes.</p>
      </abstract>
    </article-meta>
  </front>
  <body>
    <sec id="sec-1">
      <title>Metrics for Unbalanced Datasets</title>
      <p>metrics for unbalanced datasets, including the
new metrics. Two baseline methods,
multinomial Naive Bayes and Logistic Regression, are
also included for comparison.
1</p>
    </sec>
    <sec id="sec-2">
      <title>Introduction</title>
      <p>With an increasing dependence on the Internet, there
has been a growth in the number as well as variety of
social engineering attacks. Phishing is a common
social engineering attack, where attackers disguise
themselves as legitimate entities to steal the digital identity
of unsuspecting people, who often incur substantial
nancial losses. Because it targets people, phishing has
also been the attack of choice for bringing otherwise
well-protected organizations to their knees.1</p>
      <p>According to the authors in [ST16], phishing
attacks have been one of the oldest, yet e ective,
weapons used for exploitation. Over the last decade,
there has been extensive research on detection and
protection against phishing attacks, e.g., see [CNU06,
VSH12, VH13, VR15, VA17, AZ17, DBA+18].
However, reports published by organizations like
PhishLabs2 and Anti-Phishing Working Group (APWG)3
shed light on the seriousness of phishing as a
growing threat to cybersecurity. According to APWG,
approximately 300,000 unique phishing reports were
submitted in the third quarter of 2017 alone. PhishLabs
identi ed 170,000 unique phishing domains in 2017, an
increase of 23% from 2016. These statistics
corrobo1In phishing, the attacker does not have to do sophisticated
reconnaissance to nd vulnerable networks or applications to
attack.</p>
      <p>2https://pages.phishlabs.com/rs/130-BFB-942/images/
2017+PhishLabs+Phishing+and+Threat+Intelligence+Report.
pdf</p>
      <p>3http://docs.apwg.org/reports/apwg_trends_report_q3_
2017.pdf
rate the fact that despite being a widely researched
topic, the phishing threat is far from being solved.</p>
      <p>The common form of phishers' modus operandi
starts with sending an email, usually the most
common attack vector, embedded with a poisoned link or a
malicious attachment.4 If an unknowing victim clicks
on the embedded URL, they can be directed to a
malicious website. Similarly, clicking on the malicious
attachment may cause malware to be downloaded on the
victim's computer. To prevent such an attack, an ideal
classi er should detect the threat instantaneously and
take precautions by increasing distance between the
victim and attacker.</p>
      <p>In the rst year of our Anti-Phishing Shared Pilot,
we focus on detection of phishing emails. Apart from
attachments, an email consists of two major parts
the full header and the body. Thus, we proposed two
subtasks based on the type of email data provided
(i) Subtask A: Emails with only the body content, and
(ii) Subtask B: Emails with full header information
and body content. None of the tasks had emails with
attachments. If a source email had an attachment,
it was removed before inclusion. The justi cation for
this decision is that malicious attachment detection
techniques are orthogonal and hence out of scope of
this pilot, which focuses on detection of phishing.</p>
      <p>The pilot was announced in early January 2018 and
16 teams registered at the task site on Easy Chair.
After the training and test datasets were released, nine
teams submitted their best performing model based on
the training datasets, and predictions for evaluation.
The test datasets were released about a month after
the training datasets were released and teams had
approximately ve days for submitting their predictions
and their top models. All teams, which submitted
materials for evaluation, were invited to present a poster
at the 4th ACM International Workshop on Security
and Privacy Analytics (IWSPA) 2018 in Tempe,
Arizona.</p>
      <p>In this overview of our Shared Task, we give a
detailed explanation of our corpus collection
(Section 2.1), preprocessing steps and challenges
(Section 2.2). We describe the evaluation metrics followed
by the evaluation of the system submissions in
Section 4. Section 5 concludes with some insights and
perspectives from the shared task and performance of
the systems.
2</p>
    </sec>
    <sec id="sec-3">
      <title>Datasets</title>
      <p>Gathering datasets and preprocessing them for the two
subtasks turned out to be quite challenging. This was
4Nowadays, there are also social networks and text messages
as convenient vehicles for phishing, but emails still remain
popular.
especially critical for the Header Subtask. It required
pristine and complete headers, which many datasets do
not have, e.g., the Enron dataset emails have
abbreviated and sanitized headers for privacy reasons. We
took care to check the documentation for each dataset
and the dataset itself for any signs of sanitization.
2.1</p>
      <sec id="sec-3-1">
        <title>Dataset Sources</title>
        <p>Our objective for the dataset was to make it as
diverse as possible, so we gathered emails from as many
sources as we could nd. Legitimate emails were
relatively easy to nd compared to phishing ones. There
are two reasons for this: (i) corporations are not
inclined to share or make public the phishing emails
they receive, and people generally delete them and
move on, and (ii) quite a few accounts of public
personas, and some companies, have been hacked and
their emails have been released, generally to
embarrass them and/or score political points.5</p>
        <p>We gathered legitimate emails from di erent
sources. These include email collections from
Wikileaks archives, e.g., Democratic National Committee,
Hacking Team, Sony emails, etc. We used selected
emails from the Enron Dataset6 and SpamAssassin7
as well.</p>
        <p>As for the phishing emails in our dataset, they were
collected from the IT departments of di erent
universities. We also included emails from the popular
Nazario's phishing corpora8, and synthetic emails
created by organizers. Note that the emails collected from
universities' IT departments usually do not have a full
header, that is why we only used these sources for the
No-header Subtask. The same is true for the synthetic
emails.</p>
        <p>The synthetic emails are emails arti cially created
by the organizers using Dada engine,9 which is a
system that generates text based on a pre-speci ed
grammar. We based the grammar on phishing emails from
Nazario's dataset. Dada has been used previously
to create email masquerade attacks in [BVMG17].
A more detailed breakdown of the preprocessing of
emails is to be found in the next subsection. As can
be seen from Table 1, the ratio of phishing items to
legitimate ones is approximately 1:9.
2.2</p>
      </sec>
      <sec id="sec-3-2">
        <title>Preprocessing</title>
        <p>Preprocessing of the dataset turned out to be a delicate
task due to the highly diverse nature of emails, even
5The Enron email dataset, where emails became a matter of
public record due to a court case, is an exception.</p>
        <p>6https://www.cs.cmu.edu/~enron/
7http://www.csmining.org/index.php/
spam-assassin-datasets.html
8https://monkey.org/~jose/phishing/
9http://dev.null.org/dadaengine/
emails from the same source.</p>
        <p>The phishing emails that we collected had di erent
URL problems. The phishing emails from
universities' IT departments did not include the phishing links
in their reported emails, for obvious reasons, and the
URLs from Nazario's dataset are old and link to dead
websites.</p>
        <p>The URLs in the emails from the legitimate sources
were too revealing in the sense that they could lead
participants and classi ers to recognize the sources.</p>
        <p>To handle these issues we decided to normalize all
the URLs in both datasets to hhlinkii. Another
possible approach would be to replace all the URLs with live
phishing links from Phishtank. The concern with this
approach was the possibility of the classi ers picking
up on some idiosyncrasies of such URLs, or
participants noticing it and using it as a feature.</p>
        <p>Another concern that we needed to address is the
recognizability of the datasets. So we tried to remove,
as much as was feasible, from the emails any signs
that could hint at the origin of the datasets. For this
purpose, we included in the preprocessing steps the
normalization of organizations' or universities' names,
recipients' names, domain names, signatures,
threading and remove non-English emails.</p>
        <p>We also made sure to remove emails that are too
big (more than 1 MB) or too small (the threshold for
removing smaller size emails varies with each dataset)
and remove all base64 encoded text.</p>
        <p>In order to remove as much noise as possible, we
attempted to remove leftover HTML tags and empty
spacing that resulted from parsing the body of the
email using an HTML parser.</p>
        <p>Although the preprocessing was not perfect,
because a fraction of the emails were too noisy, we took
considerable care to make the ensure that the quirks
in the datasets did not make the tasks signi cantly
easier than real-world scenario. As a nal check
before release, a logistic regression classi er was run on
the datasets to check the hardness of the classi cation
task.
3</p>
      </sec>
    </sec>
    <sec id="sec-4">
      <title>Overview of Participating Systems</title>
      <p>Nine teams submitted their best models on the
training set and the predictions of their models on the test
sets for the two tasks. However, during the review
process it was discovered that some of the teams used
techniques that had a high degree of overlap, so they</p>
      <sec id="sec-4-1">
        <title>Train</title>
      </sec>
      <sec id="sec-4-2">
        <title>Test</title>
      </sec>
      <sec id="sec-4-3">
        <title>Legitimate Phishing</title>
        <p>4082 501
3699 496
(b) Header Dataset
were asked to combine their e orts into one paper for
the proceedings. Hence, Table 2 shows the remaining
team names and their alternative names that we use
throughout the paper. In the rest of this section, we
give a short description of the approach(es) taken by
each team and a brief perspective on the results. The
next section goes into more details on the performance.</p>
        <p>CEN-SecureNLP (sys1), [RNU+18] trained several
classi cation techniques (Naive Bayes, SVM, Decision
Tree, kNN, Logistic Regression, AdaBoost and
Random Forest) on the TF-IDF and Doc2Vec
representation of the emails. They did not use any header related
features for the Header subtask. They did 10-fold cross
validation on the training set with di erent classi er
and representations and chose the best system to run
on the test set. For both tasks, doc2vec outperformed
the TF-IDF representation. SVM and Adaboost were
the best classi ers for No-header and Header Subtasks
respectively. They used accuracy as a metric for
ranking their models, which is not recommended for an
unbalanced dataset. In the No-header Subtask, they
classi ed everything as legitimate and got 0 F1-score.
Their performance for the Header Subtask is slightly
better than the No-header subtask and achieved 2%
F1.10</p>
        <p>Team CEN-DeepSpam (sys3), [MURS18], uses
Keras to build an embedding layer with word tokens
from the email data. This embedding layer is used to
train a Convolutional Neural Network, which acts as
the email classi er. The authors propose a total of
ve models depending on the type of subtask (with
headers and without headers) and number of
training epochs (100, 500 and 1000 epochs for No-header
Subtask and 100 and 500 epochs for Header Subtask).</p>
        <p>10These results assume that phishing emails make up the
positive class and legitimate emails the negative class.
CEN-DeepSpam came fourth on No-header SubTask
and third on Header SubTask with F1-scores of 63.8%
and 92.4% respectively.</p>
        <p>Team CEN-Security@IWSPA 2018 [NRK18], used
TF-IDF to convert the email contents into the
numeric feature vectors. Then they applied several
machine learning techniques (Decision tree, K-NN, Naive
Bayes, Random forest, SVM, and logistic regression)
to classify the emails. In order to reduce the size of
feature space they applied Singular Value Decomposition
(SVD) and Non-Negative Matrix Factorization (NMF)
to both TF-IDF vectors. Authors in [VNRK18] also
built the same model but instead of using TF-IDF,
they used Term Document Matrix (TDM) as a
representation of the emails. For No-header Subtask, KNN
with TDM and NMF outperformed the other
combinations with F1-score of 50.88%. For the Header
Subtask, they did not extract any speci c feature from
email's header and they got F1-score of 50.78% using
KNN with TF-IDF and NMF.</p>
        <p>Team TripleN (sys8), [NNN18], used deep learning
with supervised attention. Their method for email
body classi cation task has two layers: the word layer
and the sentence layer. The word layer includes: a
word embedding component, a bidirectional LSTM for
the word level and an attention module. The
sentence layer has a bidirection LSTM. For the attention
module, they identi ed words that appeared more
frequently in phishing emails and less frequently in
legitimate emails. Their attention module idea is similar
to the idea of [VH13], where bigrams were extracted
based on their discrimination power. For the Header
Subtask, they use another bidirectional LSTM. They
also extract bodies of the emails from the Header
Subtask to increase the size of the training corpus for
the No-header Subtask. TripleN's deep learning
approaches did quite well on both the tasks when the F1
score is considered: 83.5% on the No-header Subtask
and 93.0% on the Header Subtask.</p>
        <p>Team AISecurity (sys2), [RHP+18], captured
syntactic and semantic features of emails in the dataset
using word embedding (with word2vec method) and
Neural Bag-of-Ngrams, which is a real-valued
representation that captures the semantics of a text. These
features are used to train four di erent deep
learning algorithms: Convolutional Neural Network (CNN),
Recurrent Neural Network (RNN), Long Short-Term
Memory (LSTM), and Multilayer Perceptron (MLP),
and used a sigmoid function as an activation function.
Four models were reported for each subtask (eight in
total), with Word Embedding being used with CNN,
RNN, and LSTM, and Neural bag-of-Ngrams used
with MLP. Their highest F1-score 57.09% was with
the model combining Word embedding and LSTM on
the No-header Subtask. For the Header Subtask, they
were able to achieve an F1-score 57.09% using MLP
with Neural Bag-of-Ngrams.</p>
        <p>Team CEN CryptCoyotes (sys4) [MRRK18] also
employed word embedding with Word2vec to
convert data, then compared the results of the following
three classi ers: Multilayer Perception (MLP),
Convolutional Neural Network (CNN), and Recursive
Neural Network (RNN). All classi ers were used with a
sigmoid function to classify phishing from legitimate
emails. However, they used di erent parameters for
Word2Vec compared to [RHP+18]: Higher values for
training sample (batch-size), word vector dimension,
skip-window, number of negative samples, learning
rate, but a lower number of iterations. CNN
classier gave the best results for No-Header Subtask with
an F1-score of 44.801%, whereas RNN gave the best
results for Header Subtask with an F1-score of 53.18%.</p>
        <p>Team Amrita-NLP (sys 6), [HRMP18], also used
word embeddings. However, the method used to
obtain embeddings was fastText [BGJM16], which also
takes into consideration subword information. In
addition to training a model for each task using the data
available for that task, the team also trained a model
on the combination of both datasets. However, the
combined method performed slightly worse than the
individually trained models.</p>
        <p>Team Security-CEN@Amrita (sys5), [UBS+18],
applied three di erent classi ers: Naive Bayes, logistic
regression, and SVMs. The data was rst converted
into TF-IDF vectors then augmented with
domainlevel features (for instance, a list of common words
in phishing emails). Support Vector Machines
outperformed the other two methods in both subtasks.</p>
        <p>We now take a deeper look into the performance of
the teams, based on a number of metrics. Some of the
metrics are more suitable for unbalanced datasets. We
also propose two new metrics for unbalanced datasets,
which we call Balanced Detection Rate and
Normalized Balanced Detection Rate.
4</p>
      </sec>
    </sec>
    <sec id="sec-5">
      <title>Evaluation</title>
      <p>Due to the similar nature of the two subtasks (both
are binary classi cation tasks), we use the same
metrics to evaluate them. Precision, recall (sensitivity),
speci city(true negative rate) accuracy and F1-score
are the most common metrics to quantify the
performance of classi ers. Equations 1, 2, 3, 4 and 5 show
the formulas for these metrics.</p>
      <p>Considering; P = T P + F N and N = T N + F P
(1)
Accuracy =
Due to the imbalanced nature of our dataset and
different cost of misclassi cation, these metrics do not
re ect a realistic comparison. Suppose we have two
systems A and B in the No-header Subtask and
phishing is the positive class. If system A tags all the emails
as legitimate (true negative = 3825 and false negative
= 475), the resulting accuracy score is 89%. On the
other hand, if system B can correctly identify say half
of the phishing emails (TP = 237, FN = 238), and
has some errors in legitimate emails (FP = 346, TN =
3479), despite its superior performance, its accuracy
will be less than system A's performance (86%). So,
we need some metrics that take into account the ratio
of legitimate to phishing.
As discussed in [BDA13], geometric mean (G-mean)
and Matthews correlation coe cient (MCC) are
better metrics, since they balance the classi cation
performance between minority and majority class.
Equations 6 and 7 are the formulas for G-mean and MCC.</p>
      <p>G
mean = psensitivity specif icity</p>
      <p>P recision =
Recall=Sensitivity =
T N R=Specif icity =</p>
      <p>T P
T P + F P</p>
      <p>T P
T P + F N</p>
      <p>T N</p>
      <p>T N + F P
We also propose new metrics, called \Balanced
Detection Rate" and Normalized Balanced Detection Rate
to rank systems. The idea for Balanced Detection Rate
is to measure how many minority class instances were
correctly identi ed and to charge appropriately using
the incorrect instances of the majority class. So, we
divide the number of correctly identi ed minority class
instances by number of incorrectly classi ed majority
class instances (Equation 8). Let c = N EG=P OS. If
c &gt; 1, then the positive class is the minority class, so
If c &lt; 1, then the negative class is the minority class, so
we replace TP by TN in the numerator and FP by FN
and we take the NEG = TN + FP in the denominator
for the DR% formula. If c = 1, then the dataset is
balanced so both Detection Rates should be calculated
and reported.</p>
      <p>Observe that only a perfect classi er with FP =
FN = 0 can have BDR% = 100%. We can generalize
these de nitions to take also cost of misclassi cation
and bene t of minority class detection into account.
For example, if c &gt; 1 and is the bene t of detecting
a minority class instance, and ( ) are respectively
the cost of misclassifying the majority (minority) class
instances, then we replace TP by T P , F P by
F P and F N by F N . Similarly, we can handle
the case for c &lt; 1 and again we should reported both
generalized versions of Detection Rates when c = 1.</p>
      <p>The 1:1 charging scheme may be too considered
\too harsh" in some unbalanced situations. We
also de ne a Normalized Balanced Detection Rate
(NBDR), which normalizes the charge based on the
size of the classes, as follows. Again, this assumes
that positive class is the minority class. Note that the
numerator is just the detection rate for the positive
class DR(p) and the denominator is 2 - DR(n), where
DR(n) is the detection rate for the negative class.</p>
      <p>N BDR =</p>
      <p>T P
T P +F N</p>
      <p>F P
1 + T N+F P
=
2</p>
      <p>DR(p)</p>
      <p>DR(n)
(9)
For NBDR, we have NBDR% = NBDR * 100.
Normalization may have another advantage, comparing across
datasets that are similar in size and composition.
4.3</p>
      <sec id="sec-5-1">
        <title>Baselines</title>
        <p>We ran two di erent baselines on the data:
Multinomial Naive Bayes and Logistic Regression. Both
baselines score quite highly on most performance metrics.
The data was preprocessed through tokenization and
stop word removal. Simple word occurrence counts
were used as features. For a word to be considered as
a feature it must have appeared in at least ve di
erent emails. The models were trained for each subtask
separately using only the training data for that speci c
subtask. For the Header Subtask, the email headers
were tokenized just as the email bodies. We report
their performance on the test set.</p>
      </sec>
      <sec id="sec-5-2">
        <title>Detailed Performance</title>
        <p>We received 41 submissions for No-header Subtask and
40 submissions for Header Subtask from nine di erent
teams. Figure 1 shows F1-scores of best submission
for each team. For No-header Subtask, system 8 has
the best F1 score of 83.54% and for Header Subtask,
system 6 has the highest F1 score of 96.8%. F1 score
of the top system and also average F1 score in Header
Subtask is better than No-header Subtask. In order
to emphasis on importance of choosing proper
evaluation metrics while dealing with unbalanced dataset,
we also calculated the F1 score by changing the
legitimate emails to positive class (Figure 2). The scores are
higher compared to Figure 1 in which we considered
phishing as positive class. Even for sys1, that
classied everything as legitimate in No-header Subtask, the
F1-score is better than sys2, sys4, and sys9 (94.1%).
Table 3 shows the confusion matrices of teams' top
submission considering phishing as positive class.</p>
        <p>The remaining metrics that we report in the rest of
this section, G-mean, MCC and BDR, are not sensitive
to changing the positive and negative class which is
more appropriate for our evaluation.</p>
        <p>Figure 3 and 5 show G-mean and MCC values of
submissions. For No-header Subtask, sys8 proposed
by [NNN18] performed the best among other systems
followed by sys5 [UBS+18] and sys6 [HRMP18]. We
intentionally removed the sys1 results for No-header
Subtask in Figure 5 since it classi ed everything as
legitimate and got MCC score of -1.</p>
        <p>In Header Subtask, sys6 developed by [HRMP18]
outperformed other systems. The next best
performance belongs to sys3 [MURS18] and sys8 [NNN18].
4.5</p>
      </sec>
      <sec id="sec-5-3">
        <title>Synthetic Data Evaluation</title>
        <p>As mentioned earlier in Section 2, the phishing emails
are gathered in two ways. One group is real phishing
emails from di erent existing data sources, and the
other group is computer generated based on a
manually constructed grammar. Comparing the
performance of the di erent systems on synthesized emails
can give us an estimate of the similarity between these
type of emails.</p>
        <p>Here, we follow the same way that we used
previously to report systems' performance on the whole
dataset. First, we calculate systems' performance
on synthesized and non-synthesized emails separately,
then we chose the top performing submission of each
team. Table 5 shows detection rates of top submissions
among all systems.</p>
        <p>Based on the detection rate result showed in Table
5, the average detection rate for the synthesized emails
is higher than the non-synthesized ones which means
synthesized email are detected correctly more than
the others. Applying the t.test on these two groups
shows a signi cant di erence between them (p-value
= 0.001).
2.5
2
R1.5
D
We introduced two new metrics for evaluating
classiers on unbalanced datasets, and examined the
performance of the participating teams on both
classical and new metrics. The rst anti-phishing pilot at
ACM IWSPA 2018 shows interesting correlations
between the winning teams. In general, the deep learning
models did quite well. With only the email bodies as
input, logistic regression was a strong performer.
However, the situation changed when headers were also
provided.</p>
        <p>The strong performance of Multinomial Naive
Bayes (MNB) on the Header Subtask was surprising
and needs closer investigation. It suggests that the
header may be a rich source of useful features for
phishing email detection. MNB's improvement over
logistic regression on the Header SubTask could be
because MNB is a generative model and logistic
regression is discriminative [NJ01] and may need more
data to achieve better performance. This hypothesis
needs further investigation.</p>
      </sec>
    </sec>
    <sec id="sec-6">
      <title>Acknowledgments</title>
      <p>This research was supported in part by NSF grants
CNS 1319212, DGE 1433817, DUE 1241772, and DUE
1356705. This material is also based upon work
supported by, or in part by, the U. S. Army Research
Laboratory and the U. S. Army Research O ce under
contract/grant number W911NF-16-1-0422.
spear</p>
    </sec>
  </body>
  <back>
    <ref-list>
      <ref id="ref1">
        <mixed-citation>
          [AZ17]
          <string-name>
            <given-names>Ahmed</given-names>
            <surname>Aleroud</surname>
          </string-name>
          and
          <string-name>
            <given-names>Lina</given-names>
            <surname>Zhou</surname>
          </string-name>
          .
          <article-title>Phishing environments, techniques, and countermeasures: A survey</article-title>
          .
          <source>Computers &amp; Security</source>
          ,
          <volume>68</volume>
          :
          <fpage>160</fpage>
          {
          <fpage>196</fpage>
          ,
          <year>2017</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref2">
        <mixed-citation>
          [BDA13]
          <article-title>Mohamed Bekkar, Hassiba Kheliouane Djemaa, and Taklit Akrouf Alitouche</article-title>
          .
          <article-title>Evaluation measures for models assessment over imbalanced datasets</article-title>
          .
          <source>J Inf Eng Appl</source>
          ,
          <volume>3</volume>
          (
          <issue>10</issue>
          ),
          <year>2013</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref3">
        <mixed-citation>
          [BVMG17]
          <string-name>
            <given-names>Shahryar</given-names>
            <surname>Baki</surname>
          </string-name>
          ,
          <string-name>
            <surname>Rakesh M. Verma</surname>
            , Arjun Mukherjee, and
            <given-names>Omprakash</given-names>
          </string-name>
          <string-name>
            <surname>Gnawali</surname>
          </string-name>
          .
          <article-title>Scaling and e ectiveness of email masquerade attacks: Exploiting natural language generation</article-title>
          .
          <source>In Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security</source>
          ,
          <source>AsiaCCS</source>
          <year>2017</year>
          ,
          <string-name>
            <given-names>Abu</given-names>
            <surname>Dhabi</surname>
          </string-name>
          ,
          <source>United Arab Emirates, April 2-6</source>
          ,
          <year>2017</year>
          , pages
          <fpage>469</fpage>
          {
          <fpage>482</fpage>
          ,
          <year>2017</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref4">
        <mixed-citation>
          [CNU06]
          <string-name>
            <given-names>Madhusudhanan</given-names>
            <surname>Chandrasekaran</surname>
          </string-name>
          , Krishnan Narayanan, and
          <string-name>
            <given-names>Shambhu</given-names>
            <surname>Upadhyaya</surname>
          </string-name>
          .
          <article-title>Phishing email detection based on structural properties</article-title>
          .
          <source>In NYS Cyber Security Conference</source>
          , volume
          <volume>3</volume>
          ,
          <year>2006</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref5">
        <mixed-citation>
          [DBA+18]
          <string-name>
            <surname>Avisha</surname>
            <given-names>Das</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Shahryar Baki</surname>
            , Ayman El Aassal, Rakesh Verma, and
            <given-names>Arthur</given-names>
          </string-name>
          <string-name>
            <surname>Dunbar</surname>
          </string-name>
          . SOK:
          <article-title>Reconsidering phishing and spear phishing detection research from the security perspective, 2018. submitted for publication.</article-title>
        </mixed-citation>
      </ref>
      <ref id="ref6">
        <mixed-citation>
          <string-name>
            <surname>[HRMP18] Barathi Ganesh</surname>
            <given-names>HB</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Anand Kumar</surname>
            <given-names>M</given-names>
          </string-name>
          , and
          <string-name>
            <surname>Soman K P.</surname>
          </string-name>
          <article-title>Distributed representation using target classes: Bag of tricks for security and privacy analytics</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref7">
        <mixed-citation>
          [MRRK18]
          <string-name>
            <surname>Vysakh S Mohan</surname>
            ,
            <given-names>Naveen J R</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          , and
          <article-title>Soman KP</article-title>
          .
          <article-title>CEN CryptCoyotes: A</article-title>
          .r.e.s :
          <article-title>Automatic rogue email spotter</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref8">
        <mixed-citation>
          <string-name>
            <surname>[MURS18] Hiransha</surname>
            <given-names>M</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Nidhin</surname>
            <given-names>A Unnithan</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          , and
          <string-name>
            <given-names>K P</given-names>
            <surname>Soman. CEN-DeepSpam</surname>
          </string-name>
          :
          <article-title>Deep learning based spam detection</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref9">
        <mixed-citation>
          [NJ01]
          <string-name>
            <surname>Andrew</surname>
            <given-names>Y.</given-names>
          </string-name>
          <string-name>
            <surname>Ng</surname>
            and
            <given-names>Michael I.</given-names>
          </string-name>
          <string-name>
            <surname>Jordan</surname>
          </string-name>
          .
          <article-title>On discriminative vs. generative classiers: A comparison of logistic regression and naive bayes</article-title>
          .
          <source>In Advances in Neural Information Processing Systems 14 [Neural Information Processing Systems: Natural and Synthetic, NIPS 2001, December 3-8</source>
          ,
          <year>2001</year>
          , Vancouver, British Columbia, Canada], pages
          <fpage>841</fpage>
          {
          <fpage>848</fpage>
          ,
          <year>2001</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref10">
        <mixed-citation>
          [NNN18]
          <article-title>Minh Nguyen, Toan Nguyen, and Thien Huu Nguyen. A deep learning model with hierarchical lstms and supervised attention for anti-phishing</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref11">
        <mixed-citation>
          [NRK18]
          <string-name>
            <surname>Harikrishnan</surname>
            <given-names>NB</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          , and
          <string-name>
            <surname>Soman</surname>
            <given-names>KP.</given-names>
          </string-name>
          <article-title>A machine learning approach towards phishing email detection CENSecurity@IWSPA 2018</article-title>
          .
          <article-title>In Proceedings of the Anti-Phishing Pilot at</article-title>
          ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref12">
        <mixed-citation>
          [RHP+18]
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Barathi Ganesh</surname>
            <given-names>HB</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Prabaharan</surname>
            <given-names>Poornachandran</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Anand Kumar</surname>
            <given-names>M</given-names>
          </string-name>
          , and
          <string-name>
            <surname>Soman K P. CEN-AISecurity:</surname>
          </string-name>
          DeepAnti-PhishNet:
          <article-title>Applying deep neural networks for e-mail spam detection</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref13">
        <mixed-citation>
          [RNU+18]
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Harikrishnan</surname>
            <given-names>NB</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Nidhin</surname>
            <given-names>Unnithan</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Soman</surname>
            <given-names>KP</given-names>
          </string-name>
          , and
          <article-title>Sai Sundarakrishna</article-title>
          .
          <article-title>CEN-SecureNLP: detecting e-mail spam using machine learning techniques</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref14">
        <mixed-citation>
          <source>[ST16] John Seymour and Philip Tully</source>
          .
          <article-title>Weaponizing data science for social engineering</article-title>
          :
          <source>Automated phishing on twitter</source>
          .
          <year>2016</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref15">
        <mixed-citation>
          [UBS+18]
          <string-name>
            <surname>Nidhin</surname>
            <given-names>A Unnithan</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Harikrishnan N</surname>
            <given-names>B</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Akrash</surname>
            <given-names>S</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          , and
          <string-name>
            <surname>Soman K P. Security-CEN</surname>
          </string-name>
          @
          <article-title>Amrita machine learning based spam e-mail detection</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref16">
        <mixed-citation>
          <string-name>
            <surname>[VA17] Rakesh</surname>
            <given-names>M.</given-names>
          </string-name>
          <string-name>
            <surname>Verma</surname>
          </string-name>
          and Ayman El Aassal.
          <article-title>Comprehensive method for detecting phishing emailsusing correlation-based analysis and user participation</article-title>
          .
          <source>In Proceedings of the Seventh ACM on Conference on Data and Application Security and Privacy</source>
          ,
          <string-name>
            <surname>CODASPY</surname>
          </string-name>
          <year>2017</year>
          ,
          <article-title>Scottsdale</article-title>
          ,
          <string-name>
            <surname>AZ</surname>
          </string-name>
          , USA, March
          <volume>22</volume>
          -24,
          <year>2017</year>
          , pages
          <fpage>155</fpage>
          {
          <fpage>157</fpage>
          ,
          <year>2017</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref17">
        <mixed-citation>
          <string-name>
            <surname>[VH13] Rakesh</surname>
            <given-names>M.</given-names>
          </string-name>
          <string-name>
            <surname>Verma</surname>
            and
            <given-names>Nabil</given-names>
          </string-name>
          <string-name>
            <surname>Hossain</surname>
          </string-name>
          .
          <article-title>Semantic feature selection for text with application to phishing email detection</article-title>
          .
          <source>In Information Security and Cryptology - ICISC 2013 - 16th International Conference</source>
          , Seoul, Korea,
          <source>November 27-29</source>
          ,
          <year>2013</year>
          , Revised Selected Papers, pages
          <volume>455</volume>
          {
          <fpage>468</fpage>
          ,
          <year>2013</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref18">
        <mixed-citation>
          [VNRK18]
          <string-name>
            <given-names>Anu</given-names>
            <surname>Vazhayil</surname>
          </string-name>
          ,
          <string-name>
            <surname>Harikrishnan</surname>
            <given-names>NB</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Vinayakumar</surname>
            <given-names>R</given-names>
          </string-name>
          , and Soman KP.
          <article-title>Pedml: Phishing email detection using classical machine learning techniques CENSec@Amrita</article-title>
          .
          <source>In Proceedings of the Anti-Phishing Pilot</source>
          at ACM International Workshop on Security and
          <article-title>Privacy Analytics (IWSPA AP)</article-title>
          .
          <source>CEUR-WS.org</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref19">
        <mixed-citation>
          <string-name>
            <surname>[VR15] Rakesh</surname>
            <given-names>M.</given-names>
          </string-name>
          <string-name>
            <surname>Verma</surname>
            and
            <given-names>Nirmala</given-names>
          </string-name>
          <string-name>
            <surname>Rai</surname>
          </string-name>
          .
          <article-title>Phishidetector: Message-id based automatic phishing detection</article-title>
          .
          <source>In SECRYPT 2015 - Proceedings of the 12th International Conference on Security and Cryptography</source>
          , Colmar, Alsace, France,
          <fpage>20</fpage>
          -
          <issue>22</issue>
          <year>July</year>
          ,
          <year>2015</year>
          ., pages
          <volume>427</volume>
          {
          <fpage>434</fpage>
          ,
          <year>2015</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref20">
        <mixed-citation>
          [VSH12]
          <string-name>
            <given-names>Rakesh</given-names>
            <surname>Verma</surname>
          </string-name>
          , Narasimha Shashidhar, and
          <string-name>
            <given-names>Nabil</given-names>
            <surname>Hossain</surname>
          </string-name>
          .
          <article-title>Detecting phishing emails the natural language way</article-title>
          .
          <source>Computer Security{ESORICS</source>
          <year>2012</year>
          , pages
          <fpage>824</fpage>
          {
          <fpage>841</fpage>
          ,
          <year>2012</year>
          .
        </mixed-citation>
      </ref>
    </ref-list>
  </back>
</article>