A Study of Prevention Systems against Targeted Email with Eye Tracking

• Project/Area Number: 17K00180
• Research Category: Grant-in-Aid for Scientific Research (C)
• Allocation Type: Multi-year Fund
• Section: 一般
• Research Field: Information security
• Research Institution: The University of Tokyo (2018-2019); Nara Institute of Science and Technology (2017)
• Principal Investigator: Miyamoto Daisuke 東京大学, 大学院情報理工学系研究科, 准教授 (90612458)
• Project Period (FY): 2017-04-01 – 2020-03-31
• Project Status: Completed (Fiscal Year 2019)
• Budget Amount: ¥3,510,000 (Direct Cost: ¥2,700,000、Indirect Cost: ¥810,000); Fiscal Year 2019: ¥1,040,000 (Direct Cost: ¥800,000、Indirect Cost: ¥240,000); Fiscal Year 2018: ¥1,040,000 (Direct Cost: ¥800,000、Indirect Cost: ¥240,000); Fiscal Year 2017: ¥1,430,000 (Direct Cost: ¥1,100,000、Indirect Cost: ¥330,000)
• Keywords: 標的型メール対策 / サイバーセキュリティ / 視線分析 / 情報システム / 不正アクセス対策

Outline of Final Research Achievements

The number of cyber threats that targets computer users with targeted email attacks are increasing. In this study, we analyzed eye movements when the users viewed an email, and studied a method to predict what criteria the recipient uses to make a decision about whether an email is a targeted attack email or a normal email. We conducted a survey for the interfaces of the indicator to display security information, and we analyzed the efficiency with 17 of subjects. The results showed that the rate of staring at the security indicator, the time it took for the first stare, the rate of stare time, and the number of times were analyzed as performance indicators, indicating the effectiveness of the indicator and placement position proposed in this study. We also verified the effectiveness of the system not only in the PC environment but also in the smartphone environment.

Academic Significance and Societal Importance of the Research Achievements

近年はコンピュータを用いるユーザを狙ったサイバー攻撃が猛威を奮っている。特に標的型メール攻撃は、ユーザを悪性サイトに誘導するだけでなく、メールに添付されたマルウェアを誤ってユーザに開かせ、コンピュータをマルウェアに感染させようとする。標的型メールの文面は怪しい所がなく、ユーザはメールソフトのセキュリティインジケータを用いて対策を行う必要がある。本研究は、このインジケータがどのような設計であれば注意を引きやすいかを視線分析を用いて研究し、特定の部分を見るまで添付ファイルやメール本文のリンクをクリックできないソフトのプロトタイプ開発を行った。

Research Products

• [Journal Article] An Empirical Approach to Phishing Countermeasures Through Smart Glasses and Validation Agents (2019)
  • Author(s): Ndibwile Jema David、Luhanga Edith Talina、Fall Doudou、Miyamoto Daisuke、Blanc Gregory、Kadobayashi Youki
  • Journal Title: IEEE Access Volume: 7 Pages: 130758-130771
  • DOI: 10.1109/access.2019.2940669
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Presentation] 視線認識を用いたメールインジケータの視認性分析に関する研究 (2018)
  • Author(s): 小野木祐太, 宮本大輔
  • Organizer: 情報処理学会研究報告
• [Presentation] A Comparative Study of Smartphone-User Security Perception and Preference towards Redesigned Security Notifications (2018)
  • Author(s): Jema David Ndibwile, Edith Talina Luhanga, Doudou Fall, Daisuke Miyamoto, Youki Kadobayashi
  • Organizer: The 2nd African Conference on Human Computer Interaction
  • Int'l Joint Research