Framework for Mitigating Phishing E-mail in the Kenyan Banking Industry Using Artificial Intelligence (AI)

International Journal of Technology and Systems Pub Date : 2024-07-15 DOI:10.47604/ijts.2781

Asiema Mwavali

{"title":"Framework for Mitigating Phishing E-mail in the Kenyan Banking Industry Using Artificial Intelligence (AI)","authors":"Asiema Mwavali","doi":"10.47604/ijts.2781","DOIUrl":null,"url":null,"abstract":"Purpose: Phishing is a significant cybercrime threat that affects individuals and organizations globally, including the banking industry in Kenya. The sophistication of phishing attacks continues to increase, and it is increasingly challenging traditional security measures to mitigate these threats. The purpose of this thesis is to build a framework for mitigating phishing e-mail attacks in the banking industry in Kenya using artificial intelligence. Phishing emails are among the most common techniques of cyber-attacks utilized by assailants to gain unauthorized access to sensitive information such as financial details, personal information, and login credentials. These attacks can have devastating effects on the victims, leading to financial loss, reputation damage, and even identity theft. \nMethodology: The framework development consists of four main stages: data collection, data preprocessing, model training, and deployment. In the data collection stage, a dataset of phishing and non-phishing emails is gathered from various sources such as public databases, dark web forums, and bank employees mail. In the data preprocessing stage, the collected data is cleaned, preprocessed, and labeled. In the model training stage, machine learning algorithms and NLP techniques is used to develop a robust phishing and non-phishing emails detection model. In the deployment stage, the model is integrated into the bank's email system to detect and block phishing emails in real-time. The framework is then evaluated using a dataset of phishing and non-phishing e-mails collected from the banking industry in Kenya. Various metrics such as accuracy, precision, recall, and F1-score are used to evaluate the framework. The framework is able to detect new phishing e-mails that were not previously included in the dataset, demonstrating its ability to adapt to new threats. \nFindings: The framework is based on a hybrid approach that combines machine learning algorithms, natural language processing (NLP) techniques, and human expertise that identify and prevent phishing emails from reaching their targets. The four main components of this framework include e-mail filtering, feature extraction, classification, and response. The e-mail filtering component uses several algorithms to identify and filter suspicious e-mails. The feature extraction component analyzes the content of the e-mail and extracts relevant features to help classify the e-mail as either legitimate or phishing. The classification component uses machine-learning algorithms to classify the e-mail as either legitimate or phishing. Finally, the response component takes appropriate action based on the classification results. \nUnique Contribution to Theory, Practice and Policy: The framework provides an effective way to identify and mitigate phishing e-mail attacks, reducing the risk of data breaches and financial losses.","PeriodicalId":519062,"journal":{"name":"International Journal of Technology and Systems","volume":"23 10","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-07-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Technology and Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.47604/ijts.2781","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Purpose: Phishing is a significant cybercrime threat that affects individuals and organizations globally, including the banking industry in Kenya. The sophistication of phishing attacks continues to increase, and it is increasingly challenging traditional security measures to mitigate these threats. The purpose of this thesis is to build a framework for mitigating phishing e-mail attacks in the banking industry in Kenya using artificial intelligence. Phishing emails are among the most common techniques of cyber-attacks utilized by assailants to gain unauthorized access to sensitive information such as financial details, personal information, and login credentials. These attacks can have devastating effects on the victims, leading to financial loss, reputation damage, and even identity theft. Methodology: The framework development consists of four main stages: data collection, data preprocessing, model training, and deployment. In the data collection stage, a dataset of phishing and non-phishing emails is gathered from various sources such as public databases, dark web forums, and bank employees mail. In the data preprocessing stage, the collected data is cleaned, preprocessed, and labeled. In the model training stage, machine learning algorithms and NLP techniques is used to develop a robust phishing and non-phishing emails detection model. In the deployment stage, the model is integrated into the bank's email system to detect and block phishing emails in real-time. The framework is then evaluated using a dataset of phishing and non-phishing e-mails collected from the banking industry in Kenya. Various metrics such as accuracy, precision, recall, and F1-score are used to evaluate the framework. The framework is able to detect new phishing e-mails that were not previously included in the dataset, demonstrating its ability to adapt to new threats. Findings: The framework is based on a hybrid approach that combines machine learning algorithms, natural language processing (NLP) techniques, and human expertise that identify and prevent phishing emails from reaching their targets. The four main components of this framework include e-mail filtering, feature extraction, classification, and response. The e-mail filtering component uses several algorithms to identify and filter suspicious e-mails. The feature extraction component analyzes the content of the e-mail and extracts relevant features to help classify the e-mail as either legitimate or phishing. The classification component uses machine-learning algorithms to classify the e-mail as either legitimate or phishing. Finally, the response component takes appropriate action based on the classification results. Unique Contribution to Theory, Practice and Policy: The framework provides an effective way to identify and mitigate phishing e-mail attacks, reducing the risk of data breaches and financial losses.

查看原文本刊更多论文

利用人工智能（AI）减少肯尼亚银行业网络钓鱼电子邮件的框架

目的：网络钓鱼是一种严重的网络犯罪威胁，影响着全球的个人和组织，包括肯尼亚的银行业。网络钓鱼攻击的复杂程度不断提高，传统的安全措施越来越难以减轻这些威胁。本论文旨在建立一个框架，利用人工智能减轻肯尼亚银行业的网络钓鱼电子邮件攻击。网络钓鱼电子邮件是最常见的网络攻击技术之一，攻击者利用这种技术在未经授权的情况下获取敏感信息，如财务详情、个人信息和登录凭证。这些攻击会对受害者造成破坏性影响，导致经济损失、名誉受损，甚至身份被盗。方法：框架开发包括四个主要阶段：数据收集、数据预处理、模型训练和部署。在数据收集阶段，从公共数据库、暗网论坛和银行员工邮件等各种来源收集网络钓鱼和非网络钓鱼邮件数据集。在数据预处理阶段，对收集到的数据进行清理、预处理和标记。在模型训练阶段，使用机器学习算法和 NLP 技术来开发稳健的网络钓鱼和非网络钓鱼邮件检测模型。在部署阶段，该模型被集成到银行的电子邮件系统中，以实时检测和阻止网络钓鱼电子邮件。然后，使用从肯尼亚银行业收集的网络钓鱼和非网络钓鱼电子邮件数据集对该框架进行评估。准确率、精确度、召回率和 F1 分数等各种指标被用来评估该框架。该框架能够检测到以前未包含在数据集中的新网络钓鱼电子邮件，证明了其适应新威胁的能力。研究结果该框架基于一种混合方法，结合了机器学习算法、自然语言处理 (NLP) 技术和人类专业知识，可识别并阻止网络钓鱼邮件到达目标。该框架的四个主要组成部分包括电子邮件过滤、特征提取、分类和响应。电子邮件过滤组件使用多种算法来识别和过滤可疑电子邮件。特征提取组件分析电子邮件的内容并提取相关特征，以帮助将电子邮件分类为合法邮件或网络钓鱼邮件。分类组件使用机器学习算法将电子邮件分类为合法邮件或网络钓鱼邮件。最后，响应组件根据分类结果采取适当行动。对理论、实践和政策的独特贡献：该框架提供了一种识别和减轻网络钓鱼电子邮件攻击的有效方法，可降低数据泄露和经济损失的风险。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Technology and Systems

自引率

0.00%

发文量