English
Related papers

Related papers: Detecting Botnet Activities Based on Abnormal DNS …

200 papers

Network intrusion detection is the process of identifying malicious behaviors that target a network and its resources. Current systems implementing intrusion detection processes observe traffic at several data collecting points in the…

Cryptography and Security · Computer Science 2015-09-16 Michel Toulouse , Bui Quang Minh , Philip Curtis

Google uses continuous streams of data from industry partners in order to deliver accurate results to users. Unexpected drops in traffic can be an indication of an underlying issue and may be an early warning that remedial action may be…

Machine Learning · Statistics 2017-08-15 Dominique T. Shipmon , Jason M. Gurevitch , Paolo M. Piselli , Stephen T. Edwards

Improperly configured domain name system (DNS) servers are sometimes used as packet reflectors as part of a DoS or DDoS attack. Detecting packets created as a result of this activity is logically possible by monitoring the DNS request and…

Networking and Internet Architecture · Computer Science 2021-11-10 Keiichi Shima , Ryo Nakamura , Kazuya Okada , Tomohiro Ishihara , Daisuke Miyamoto , Yuji Sekiya

Denial of Service (DoS) attacks are one of the most challenging threats to Internet security. An attacker typically compromises a large number of vulnerable hosts and uses them to flood the victim's site with malicious traffic, clogging its…

Networking and Internet Architecture · Computer Science 2012-10-26 Katerina J. Argyraki , David R. Cheriton

The IoT is a network of interconnected everyday objects called things that have been augmented with a small measure of computing capabilities. Lately, the IoT has been affected by a variety of different botnet activities. As botnets have…

Cryptography and Security · Computer Science 2018-03-20 Nickolaos Koroniotis , Nour Moustafa , Elena Sitnikova , Jill Slay

A considerable portion of the machine learning literature applied to intrusion detection uses outdated data sets based on a simulated network with a limited environment. Moreover, flaws usually appear in datasets and the way we handle them…

Cryptography and Security · Computer Science 2017-06-13 Veronica del Carmen Estrada

We study the problem of identifying botnets and the IP addresses which they comprise, based on the observation of a fraction of the global email spam traffic. Observed mailing campaigns constitute evidence for joint botnet membership, they…

Cryptography and Security · Computer Science 2012-06-22 Peter Haider , Tobias Scheffer

The Domain Name System (DNS) provides a translation between readable domain names and IP addresses. The DNS is a key infrastructure component of the Internet and a prime target for a variety of attacks. One of the most significant threat to…

Cryptography and Security · Computer Science 2019-06-27 Harel Berger , Amit Z. Dvir , Moti Geva

A bot is a piece of software that is usually installed on an infected machine without the user's knowledge. A bot is controlled remotely by the attacker under a Command and Control structure. Recent statistics show that bots represent one…

Cryptography and Security · Computer Science 2010-07-05 Yousof Al-Hammadi , Uwe Aickelin

Denial-of-service (DOS) attacks increasingly gained reputation over the past few years. As the Internet becomes more ubiquitous, the threat of the denial-of-service attacks becomes more realistic and important for individuals, businesses,…

Networking and Internet Architecture · Computer Science 2010-06-15 Neetu Singh , S. P. Ghrera , Pranay Chaudhuri

Peer-to-peer (P2P) botnets have become one of the major threats in network security for serving as the fundamental infrastructure for various cyber-crimes. More challenges are involved in the problem of detecting P2P botnets, despite a few…

Cryptography and Security · Computer Science 2018-11-15 Di Zhuang , J. Morris Chang

Inference based techniques are one of the major approaches to analyze DNS data and detecting malicious domains. The key idea of inference techniques is to first define associations between domains based on features extracted from DNS data.…

Cryptography and Security · Computer Science 2017-11-02 Issa Khalil , Bei Guan , Mohamed Nabeel , Ting Yu

Traditional reactive approach of blacklisting botnets fails to adapt to the rapidly evolving landscape of cyberattacks. An automated and proactive approach to detect and block botnet hosts will immensely benefit the industry. Behavioral…

Cryptography and Security · Computer Science 2021-08-31 Farhan Sadique , Shamik Sengupta

Existing distributed denial-of-service attack detection in software defined networks (SDNs) typically perform detection in a single domain. In reality, abnormal traffic usually affects multiple network domains. Thus, a cross-domain attack…

Networking and Internet Architecture · Computer Science 2018-09-20 Liehuang Zhu , Xiangyun Tang , Meng Shen , Xiaojiang Du , Mohsen Guizani

DNS is important in nearly all interactions on the Internet. All large DNS operators use IP anycast, announcing servers in BGP from multiple physical locations to reduce client latency and provide capacity. However, DNS is easy to spoof:…

Cryptography and Security · Computer Science 2020-11-30 Lan Wei , John Heidemann

Software defined network (SDN) provides technical support for network construction in smart cities, However, the openness of SDN is also prone to more network attacks. Traditional abnormal traffic detection methods have complex algorithms…

Networking and Internet Architecture · Computer Science 2023-11-21 Kun Wang , Yu Fua , Xueyuan Duan , Taotao Liu , Jianqiao Xu

Cyberthreats are a permanent concern in our modern technological world. In the recent years, sophisticated traffic analysis techniques and anomaly detection (AD) algorithms have been employed to face the more and more subversive adversarial…

Machine Learning · Computer Science 2022-05-17 Paul Irofti , Andrei Pătraşcu , Andrei Iulian Hîji

An increasing number of Internet of Things (IoT) devices are connecting to the Internet, yet many of these devices are fundamentally insecure, exposing the Internet to a variety of attacks. Botnets such as Mirai have used insecure consumer…

Cryptography and Security · Computer Science 2018-12-18 Rohan Doshi , Noah Apthorpe , Nick Feamster

Domain fronting is a network communication technique that involves leveraging (or abusing) content delivery networks (CDNs) to disguise the final destination of network packets by presenting them as if they were intended for a different…

Cryptography and Security · Computer Science 2024-09-02 Karthika Subramani , Roberto Perdisci , Pierros Skafidas

Botnet attacks are a major threat to networked systems because of their ability to turn the network nodes that they compromise into additional attackers, leading to the spread of high volume attacks over long periods. The detection of such…

Networking and Internet Architecture · Computer Science 2023-03-27 Erol Gelenbe , Mert Nakıp
‹ Prev 1 4 5 6 7 8 10 Next ›