English
Related papers

Related papers: Detecting Malignant TLS Servers Using Machine Lear…

200 papers

Malware abuses TLS to encrypt its malicious traffic, preventing examination by content signatures and deep packet inspection. Network detection of malicious TLS flows is an important, but challenging, problem. Prior works have proposed…

Cryptography and Security · Computer Science 2022-12-26 Gibran Gomez , Platon Kotzias , Matteo Dell'Amico , Leyla Bilge , Juan Caballero

This document presents TLS and how to make it secure enough as of 2014 Spring. Of course all the information given here will rot with time. Protocols known as secure will be cracked and will be replaced with better versions. Fortunately we…

Cryptography and Security · Computer Science 2014-07-09 Emmanuel Dreyfus

The use of TLS by malware poses new challenges to network threat detection because traditional pattern-matching techniques can no longer be applied to its messages. However, TLS also introduces a complex set of observable data features that…

Cryptography and Security · Computer Science 2016-07-07 Blake Anderson , Subharthi Paul , David McGrew

Malicious URL, a.k.a. malicious website, is a common and serious threat to cybersecurity. Malicious URLs host unsolicited content (spam, phishing, drive-by exploits, etc.) and lure unsuspecting users to become victims of scams (monetary…

Machine Learning · Computer Science 2019-08-22 Doyen Sahoo , Chenghao Liu , Steven C. H. Hoi

Network traffic inspection, including TLS traffic, in enterprise environments is widely practiced. Reasons for doing so are primarily related to improving enterprise security (e.g., malware detection) and meeting legal requirements. To…

Cryptography and Security · Computer Science 2018-09-25 Louis Waked , Mohammad Mannan , Amr Youssef

Traffic monitoring is essential for network management tasks that ensure security and QoS. However, the continuous increase of HTTPS traffic undermines the effectiveness of current service-level monitoring that can only rely on unreliable…

Cryptography and Security · Computer Science 2020-08-20 Wazen M. Shbair , Thibault Cholez , Jerome Francois , Isabelle Chrisment

Web-fraud is one of the most unpleasant features of today's Internet. Two well-known examples of fraudulent activities on the web are phishing and typosquatting. Their effects range from relatively benign (such as unwanted ads) to downright…

Cryptography and Security · Computer Science 2015-03-13 Mishari Al Mishari , Emiliano De Cristofaro , Karim El Defrawy , Gene Tsudik

The use of TLS proxies to intercept encrypted traffic is controversial since the same mechanism can be used for both benevolent purposes, such as protecting against malware, and for malicious purposes, such as identity theft or warrantless…

Cryptography and Security · Computer Science 2015-05-29 Mark O'Neill , Scott Ruoti , Kent Seamons , Daniel Zappala

In recent years there has been a dramatic increase in the number of malware attacks that use encrypted HTTP traffic for self-propagation or communication. Antivirus software and firewalls typically will not have access to encryption keys,…

Cryptography and Security · Computer Science 2023-12-11 Anish Singh Shekhawat , Fabio Di Troia , Mark Stamp

X.509 certificate parsing and validation is a critical task which has shown consistent lack of effectiveness, with practical attacks being reported with a steady rate during the last 10 years. In this work we analyze the X.509 standard and…

Cryptography and Security · Computer Science 2018-12-13 Alessandro Barenghi , Nicholas Mainardi , Gerardo Pelosi

Mutual TLS (mTLS) provides strong, certificate-based authentication for both clients and servers, yet its adoption for user-facing websites remains rare. This paper presents a longitudinal study of mTLS usability, tracking 46 senior and…

Cryptography and Security · Computer Science 2026-05-01 Abubakar Sadiq Shittu , Clay Shubert , John Sadik , Scott Ruoti

Transport Layer Security (TLS) is the base for many Internet applications and services to achieve end-to-end security. In this paper, we provide guidance on how to measure TLS deployments, including X.509 certificates and Web PKI. We…

Networking and Internet Architecture · Computer Science 2024-02-01 Pouyan Fotouhi Tehrani , Eric Osterweil , Thomas C. Schmidt , Matthias Wählisch

Malicious domains are part of the landscape of the internet but are becoming more prevalent and more dangerous to both companies and individuals. They can be hosted on variety of technologies and serve an array of content, ranging from…

Cryptography and Security · Computer Science 2024-10-08 Amanda Thomson , Leandros Maglaras , Naghmeh Moradpoor

Malicious websites are responsible for a majority of the cyber-attacks and scams today. Malicious URLs are delivered to unsuspecting users via email, text messages, pop-ups or advertisements. Clicking on or crawling such URLs can result in…

Cryptography and Security · Computer Science 2019-10-15 Apoorva Joshi , Levi Lloyd , Paul Westin , Srini Seethapathy

In detecting malicious websites, a common approach is the use of blacklists which are not exhaustive in themselves and are unable to generalize to new malicious sites. Detecting newly encountered malicious websites automatically will help…

Cryptography and Security · Computer Science 2022-09-21 Adebayo Oshingbesan , Courage Ekoh , Chukwuemeka Okobi , Aime Munezero , Kagame Richard

Protecting users' privacy over the Internet is of great importance; however, it becomes harder and harder to maintain due to the increasing complexity of network protocols and components. Therefore, investigating and understanding how data…

Networking and Internet Architecture · Computer Science 2021-09-14 Mahdi Jafari Siavoshani , Amir Hossein Khajepour , Amirmohammad Ziaei , Amir Ali Gatmiri , Ali Taheri

Detection of malware-infected computers and detection of malicious web domains based on their encrypted HTTPS traffic are challenging problems, because only addresses, timestamps, and data volumes are observable. The detection problems are…

Machine Learning · Computer Science 2019-06-24 Paul Prasse , Rene Knaebel , Lukas Machlica , Tomas Pevny , Tobias Scheffer

Flawed TLS certificates are not uncommon on the Internet. While they signal a potential issue, in most cases they have benign causes (e.g., misconfiguration or even deliberate deployment). This adds fuzziness to the decision on whether to…

Cryptography and Security · Computer Science 2022-07-26 Martin Ukrop , Lydia Kraus , Vashek Matyas

Browsers can detect malicious websites that are provisioned with forged or fake TLS/SSL certificates. However, they are not so good at detecting malicious websites if they are provisioned with mistakenly issued certificates or certificates…

Cryptography and Security · Computer Science 2017-07-21 Abhishek Singh , Binanda Sengupta , Sushmita Ruj

The Domain Name System (DNS) is a core Internet service that translates domain names into IP addresses. It is a distributed database and protocol with many known weaknesses that subject to countless attacks including spoofing attacks,…

Cryptography and Security · Computer Science 2022-11-16 Alshaima Almarzooqi , Jawahir Mahmoud , Bayena Alzaabi , Arsiema Ghebremichael , Monther Aldwairi
‹ Prev 1 2 3 10 Next ›