Phishing detection using certificates associated with uniform resource locators

Assignee

• PAYPAL, INC. · US

Inventors

• Eric Nunes · Tempe, US
• Kevin Tyers · Chandler, US
• Meethil Vijay Yadav · Phoenix, US
• Nicholas Bailey · Mesa, US
• Todd Clausen · Gilbert, US
• Nathan Robert Pratt · Scottsdale, US
• Bradley Wardman · Phoenix, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/02
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A method for phishing detection using certificates associated with uniform resource locators (URLs) is discussed. The method includes accessing certificate portions of a certificate associated with a suspect URL, the certificate accessed at a database that includes certificates obtained by monitoring certificate logs. The method includes accessing a URL score for the suspect URL. The method includes assigning a certificate rule score based on partial certificate scores of certificate portions, the certificate rule score indicating a phishing potential for the certificate, each of the partial certificate scores indicating a likelihood of phishing of each portion based on certificate rules. The method includes using a machine learning model based on the URL score and the certificate to determine a uniqueness certificate score. The method also includes determining a phishing certificate score based on the certificate rule score and the uniqueness certificate score for the certificate.