Machines learn to spot dodgy emails without human help
By Nick Heath
Published: 13 October 2008 12:12 BST
Artificial intelligence could soon be used in the battle against phishing fraud emails.
From next year, security researchers hope to begin rolling out a system that uses machine learning to spot fraudulent emails, much in the same way as a human being would.
US security company Symantec, German research organisation Fraunhofer-Gesellschaft, ISP Tiscali and their partners have pooled their expertise on machine learning, image recognition, text extraction and security to build the EC-funded system, in development since 2006.
A prototype is being fed samples from the vast store of phishing emails that Symantec collects, to learn the fraudulent emails' telltale characteristics.
Security from A to Z
Click on the links below to find out more...
A is for Antivirus
B is for Botnets
C is for CMA
D is for DDoS
E is for Extradition
F is for Federated identity
G is for Google
H is for Hackers
I is for IM
J is for Jaschan (Sven)
K is for Kids
L is for Love Bug
M is for Microsoft
N is for Neologisms
O is for Orange
P is for Passwords
Q is for Questions
R is for Rootkits
S is for Spyware
T is for Two-factor authentication
U is for USB sticks/devices
V is for Virus variants
W is for Wi-fi
X is for OS X
Y is for You
Z is for Zero-day
Director of Symantec Research Labs Europe Marc Dacier said: "The idea is to have a machine that is able to figure out what is a phishing message by offering it a bunch of samples.
"We have developed various new technologies. It learns from factors such as the frequency of certain words, the language used, the use of pictures or the presence of certain URLs.
"Then you do not need to have rules anymore, to have to say 'if it contains this string then it is a phishing message', you have a system that is completely automated.
"We are in the process of validating a prototype that we have built, we want to validate that this technique is possible."
The software could help security researchers in identifying the latest phishing scams from "honeypot" accounts, online PCs spread across the globe that gather fraudulent and spam messages.
JOB FUNCTIONS: Designs, codes and unit tests software products/applications Creates design documentation and software specifications as ...
WebSphere Message Broker Team Leader withdemonstrable hands-on WMB, WMQ, Java/J2EE & SOA/Web Services (Axis) experience as well as a background of ...
Bug submission Testing PC based virtual reality games, using industry-pioneering machine tools. 3d Games company is looking to hire a QA Games Test ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you
Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy