Universiti Teknologi Malaysia Institutional Repository

Identification of attack/misuse with email header forensic

Mohamad, Ahmad Fahrulrazie (2015) Identification of attack/misuse with email header forensic. Masters thesis, Universiti Teknologi Malaysia, Faculty of Computing.

[img]
Preview
PDF
391kB

Official URL: http://dms.library.utm.my:8080/vital/access/manage...

Abstract

Email becomes important communication nowadays; it was used in government sector, education sector, business sector and others. Because of its popularity it attracts offenders to commit crime in email communication. This study focuses on one type of email crime; spam email. Three popular webmail was choose namely as Hotmail, Gmail and Yahoo mail. Spam email was sent to each webmail to see the accuracy of each webmail in detecting the spam email. The results show Hotmail, Gmail and Yahoo mail are lack of accuracy in detecting those spam email. All spam emails was collected and information contained in the email header was analyze. Previous studies believe mismatch or forging information in the email header may indicate the behavior of spam emails. New email header forgery detection mechanism was developed to check mismatch or forging information in the email header. This study focus on the information contained in the Message-ID, Reply-To, From and Received field. Any mismatch or forging information in this field may indicate the behavior of spam emails. The mechanism will classify those emails that have mismatch or forging information in that particular features as spam emails instead classify as legitimate email since Hotmail, Gmail and Yahoo mail classified those spam email as legitimate email.

Item Type:Thesis (Masters)
Additional Information:Thesis (Sarjana Sains Komputer (Keselamatan Maklumat)) - Universiti Teknologi Malaysia, 2015; Supervisor : Dr. Shukor Abd. Razak
Uncontrolled Keywords:email communication, information
Subjects:T Technology > TK Electrical engineering. Electronics Nuclear engineering > TK5101-6720 Telecommunication
Divisions:Computing
ID Code:53646
Deposited By: Fazli Masari
Deposited On:20 Mar 2016 01:19
Last Modified:23 Aug 2020 09:15

Repository Staff Only: item control page