DNS tunneling detection through statistical fingerprints of protocol messages and machine learning
作者: M. Aiello , M. Mongelli , G. Papaleo
DOI: 10.1002/DAC.2836
关键词:
摘要: … main contribution of this work consists of detecting DNS tunneling by looking at simple statistical … detection times. A universal classifier is also provided with respect to different tunneled …
acm.org
sci-hub.se 参考文章(27)
Ruey-Maw Chen, Kuo-Ta Hsieh, Effective allied network security system based on designed scheme with conditional legitimate probability against distributed network attacks and intrusions International Journal of Communication Systems. ,vol. 25, pp. 672- 688 ,(2012) , 10.1002/DAC.1289
Alessio Merlo, Gianluca Papaleo, Stefano Veneziano, Maurizio Aiello, A comparative performance evaluation of DNS tunneling tools computational intelligence and security. pp. 84- 91 ,(2011) , 10.1007/978-3-642-21323-6_11
Christian Callegari, Loris Gazzarrini, Stefano Giordano, Michele Pagano, Teresa Pepe, Improving PCA-based anomaly detection by using multiple time scale analysis and Kullback-Leibler divergence International Journal of Communication Systems. ,vol. 27, pp. 1731- 1751 ,(2014) , 10.1002/DAC.2432
David Gustafson, Kenton Born, Detecting DNS Tunnels Using Character Frequency Analysis arXiv: Cryptography and Security. ,(2010)
Marcel Spruit, Henk Sips, Pieter Burghouwt, Detection of botnet collusion by degree distribution of domains international conference for internet technology and secured transactions. pp. 1- 8 ,(2010)
Anhtuan Le, Jonathan Loo, Aboubaker Lasebae, Mahdi Aiash, Yuan Luo, 6LoWPAN: a study on QoS security threats and countermeasures using intrusion detection system approach International Journal of Communication Systems. ,vol. 25, pp. 1189- 1212 ,(2012) , 10.1002/DAC.2356
Riyad Alshammari, A. Nur Zincir-Heywood, Can encrypted traffic be identified without port numbers, IP addresses and payload inspection? Computer Networks. ,vol. 55, pp. 1326- 1350 ,(2011) , 10.1016/J.COMNET.2010.12.002
Wim Van de Meerssche, Filip De Turck, Bart Dhoedt, Tim Stevens, Koert Vlaeminck, Piet Demeester, Efficient packet classification on network processors International Journal of Communication Systems. ,vol. 21, pp. 51- 72 ,(2008) , 10.1002/DAC.V21:1
Sándor Molnár, Marcell Perényi, On the identification and analysis of Skype traffic International Journal of Communication Systems. ,vol. 24, pp. 94- 117 ,(2011) , 10.1002/DAC.1142
Cheng Qi, Xiaojun Chen, Cui Xu, Jinqiao Shi, Peipeng Liu, A Bigram based Real Time DNS Tunnel Detection Approach Procedia Computer Science. ,vol. 17, pp. 852- 860 ,(2013) , 10.1016/J.PROCS.2013.05.109