Semantic Detection of Targeted Attacks Using DOC2VEC Embedding

Published online: Nov 24, 2021 Full Text: PDF (974 KiB) DOI: 10.24138/jcomss-2021-0113
Cite this paper
Authors:
Mariam S. El-Rahmany, Ensaf Hussein Mohamed, Mohamed H. Haggag

Abstract

The targeted attack is one of the social engineering attacks. The detection of this type of attack is considered a challenge as it depends on semantic extraction of the intent of the attacker. However, previous research has primarily relies on the Natural Language Processing or Word Embedding techniques that lack the context of the attacker's text message. Based on Sentence Embedding and machine learning approaches, this paper introduces a model for semantic detection of targeted attacks. This model has the advantage of encoding relevant information, which helps to improve the performance of the multi-class classification process. Messages will be categorized based on the type of security rule that the attacker has violated. The suggested model was tested using a dialogue dataset taken from phone calls, which was manually categorized into four categories. The text is pre-processed using natural language processing techniques, and the semantic features are extracted as Sentence Embedding vectors that are augmented with security policy sentences. Machine Learning algorithms are applied to classify text messages. The experimental results show that sentence embeddings with doc2vec achieved high prediction accuracy 96.8%. So, it outperformed the method applied to the same dialog dataset.

Keywords

Doc2vec, Multi-class text classification, Pretexting, Sentence Embedding, Targeted Attacks Detection
Creative Commons License 4.0
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.