TY - JOUR
T1 - SeizeMaliciousURL: A novel learning approach to detect malicious URLs
AU - Mondal, Dipankar Kumar
AU - Singh, Bikash Chandra
AU - Hu, Haibo
AU - Biswas, Shivazi
AU - Alom, Zulfikar
AU - Azim, Mohammad Abdul
N1 - Funding Information:
This work was supported by National Natural Science Foundation of China (Grant No: 62072390 ), and the Research Grants Council, Hong Kong SAR, China (Grant No: 15222118 , 15218919 , 15203120 ).
Publisher Copyright:
© 2021 Elsevier Ltd
PY - 2021/11
Y1 - 2021/11
N2 - Malicious websites are increasing in abundance, which brings serious web security threats to users. As a result, individuals lose their assets, values, information, etc. to unauthorized parties and become victims while visiting such websites. The research community put efforts into developing effective and efficient models for detecting malicious URLs to make available notifications about websites that users access. Perceiving this, numerous methods make use of various types of machine learning (ML) approaches. However, until now, no technique has perfectly detected malicious URLs, as they are susceptible to false positive and false negative decisions in classifying URLs in malicious and non-malicious groups. To improve this issue, this article proposes a new approach based on a machine learning technique. The proposed approach uses multiple classifiers (i.e., ensemble learning) to predict the class probabilities of URLs and then applies a threshold to filter the decisions of multiple classifiers. Next, the decisions are combined concerning its corresponding class probabilities and find the class label with the highest class probability as the final decision on unlabeled URLs. The results show that the proposed method offers better performance in terms of malicious URL detection than other methods.
AB - Malicious websites are increasing in abundance, which brings serious web security threats to users. As a result, individuals lose their assets, values, information, etc. to unauthorized parties and become victims while visiting such websites. The research community put efforts into developing effective and efficient models for detecting malicious URLs to make available notifications about websites that users access. Perceiving this, numerous methods make use of various types of machine learning (ML) approaches. However, until now, no technique has perfectly detected malicious URLs, as they are susceptible to false positive and false negative decisions in classifying URLs in malicious and non-malicious groups. To improve this issue, this article proposes a new approach based on a machine learning technique. The proposed approach uses multiple classifiers (i.e., ensemble learning) to predict the class probabilities of URLs and then applies a threshold to filter the decisions of multiple classifiers. Next, the decisions are combined concerning its corresponding class probabilities and find the class label with the highest class probability as the final decision on unlabeled URLs. The results show that the proposed method offers better performance in terms of malicious URL detection than other methods.
KW - Classification
KW - Machine learning
KW - Malicious URLs detection
UR - http://www.scopus.com/inward/record.url?scp=85115012167&partnerID=8YFLogxK
U2 - 10.1016/j.jisa.2021.102967
DO - 10.1016/j.jisa.2021.102967
M3 - Journal article
AN - SCOPUS:85115012167
SN - 2214-2134
VL - 62
SP - 1
EP - 10
JO - Journal of Information Security and Applications
JF - Journal of Information Security and Applications
M1 - 102967
ER -