Authors:
Ana Ferreira
and
Pedro Vieira-Marques
Affiliation:
University of Porto, Portugal
Keyword(s):
Phishing Trends, Systematic Literature Review.
Abstract:
For a researcher interested in phishing, it would be useful to access an overview of phishing evolution through
time, where a set of methods, tools, solutions, user studies, type of attacks, countermeasures and so on, could
be acquired from a single story. This story is essential for the security community to improve on existing
research as well as build new effective countermeasures to face phishing attacks. However, no systematic
review exists in the literature providing a wide overview of all phishing topics. Available reviews usually
focus on one or two at a time. In fact, since there is widely available and varied literature on phishing, making
a comprehensive review can take a long time and be cumbersome. This paper describes a method to perform a
review on abstracts of 605 scientific papers selected from major online research databases, between 2006 and
2016. The study uses a qualitative categorization software to, for the first time, achieve a story of phishing
trends in its
existing research strands for that period. According to obtained results, no single solution for the
phishing threat could yet be found and most research is turning now into more integrated socio-technical and
human related solutions.
(More)