English
Related papers

Related papers: Detection of Malicious DNS-over-HTTPS Traffic: An …

200 papers

Virtually every connection to an Internet service is preceded by a DNS lookup which is performed without any traffic-level protection, thus enabling manipulation, redirection, surveillance, and censorship. To address these issues, large…

Cryptography and Security · Computer Science 2019-10-08 Sandra Siby , Marc Juarez , Claudia Diaz , Narseo Vallina-Rodriguez , Carmela Troncoso

DoS and DDoS attacks have been growing in size and number over the last decade and existing solutions to mitigate these attacks are in general inefficient. Compared to other types of malicious cyber attacks, DoS and DDoS attacks are…

Machine Learning · Computer Science 2021-05-17 Eirik Molde Bårli , Anis Yazidi , Enrique Herrera Viedma , Hårek Haugerud

In this paper we focus on the detection of network anomalies like Denial of Service (DoS) attacks and port scans in a unified manner. While there has been an extensive amount of research in network anomaly detection, current state of the…

Machine Learning · Computer Science 2014-03-04 Tahereh Babaie , Sanjay Chawla , Sebastien Ardon

Domain name system communication may provide sensitive information on users' Internet activity. DNS-over-TLS and DNS-over-HTTPS are proposals aiming at increasing the privacy of Internet end users. In this paper we present an overview of…

Networking and Internet Architecture · Computer Science 2022-04-11 Kamil Jerabek , Ondrej Rysavy , Ivana Burgetova

DNS over TLS (DoT) and DNS over HTTPS (DoH) encrypt DNS to guard user privacy by hiding DNS resolutions from passive adversaries. Yet, past attacks have shown that encrypted DNS is still sensitive to traffic analysis. As a consequence, RFC…

Cryptography and Security · Computer Science 2019-07-03 Jonas Bushart , Christian Rossow

Detecting Domain Name System (DNS) tunneling is a significant challenge in security due to its capacity to hide harmful actions within DNS traffic that appears to be normal and legitimate. Traditional detection methods are based on…

Cryptography and Security · Computer Science 2025-07-15 Novruz Amirov , Baran Isik , Bilal Ihsan Tuncer , Serif Bahtiyar

In recent years, DNS over Encrypted (DoE) methods have been regarded as a novel trend within the realm of the DNS ecosystem. In these DoE methods, DNS over HTTPS (DoH) provides encryption to protect data confidentiality while providing…

Cryptography and Security · Computer Science 2024-03-20 Cong Dong , Jiahai Yang , Yun Li , Yue Wu , Yufan Chen , Chenglong Li , Haoran Jiao , Xia Yin , Yuling Liu

In this paper we propose a novel approach to identify anomalies in DNS traffic. The traffic time-points data is transformed to a string, which is used by new fast appproximate string matching algorithm to detect anomalies. Our approach is…

Cryptography and Security · Computer Science 2019-05-24 Roni Mateless , Michael Segal

With the rapid technological advancements, organizations need to rapidly scale up their information technology (IT) infrastructure viz. hardware, software, and services, at a low cost. However, the dynamic growth in the network services and…

Cryptography and Security · Computer Science 2020-08-14 Mahmoud Said Elsayed , Nhien-An Le-Khac , Soumyabrata Dev , Anca Delia Jurcut

Trojans are one of the most threatening network attacks currently. HTTP-based Trojan, in particular, accounts for a considerable proportion of them. Moreover, as the network environment becomes more complex, HTTP-based Trojan is more…

Networking and Internet Architecture · Computer Science 2023-09-06 Jiang Xie , Shuhao Li , Yongzheng Zhang , Xiaochun Yun , Jia Li

In this paper, we analyze existing feature selection methods to identify the key elements of network traffic data that allow intrusion detection. In addition, we propose a new feature selection method that addresses the challenge of…

Cryptography and Security · Computer Science 2021-06-30 Firuz Kamalov , Sherif Moussa , Rita Zgheib , Omar Mashaal

In the presence of security countermeasures, a malware designed for data exfiltration must do so using a covert channel to achieve its goal. Among existing covert channels stands the domain name system (DNS) protocol. Although the detection…

Cryptography and Security · Computer Science 2018-06-19 Asaf Nadler , Avi Aminov , Asaf Shabtai

The purpose of this project is to assess how well defenders can detect DNS-over-HTTPS (DoH) file exfiltration, and which evasion strategies can be used by attackers. While providing a reproducible toolkit to generate, intercept and analyze…

Cryptography and Security · Computer Science 2025-12-24 Adam Elaoumari

In recent years there has been a dramatic increase in the number of malware attacks that use encrypted HTTP traffic for self-propagation or communication. Antivirus software and firewalls typically will not have access to encryption keys,…

Cryptography and Security · Computer Science 2023-12-11 Anish Singh Shekhawat , Fabio Di Troia , Mark Stamp

DNS is a vital component for almost every networked application. Originally it was designed as an unencrypted protocol, making user security a concern. DNS-over-HTTPS (DoH) is the latest proposal to make name resolution more secure. In this…

Networking and Internet Architecture · Computer Science 2019-09-16 Timm Boettger , Felix Cuadrado , Gianni Antichi , Eder Leao Fernandes , Gareth Tyson , Ignacio Castro , Steve Uhlig

In recent years, computer networks have become more and more advanced in terms of size, applications, complexity and level of heterogeneity. Moreover, availability and performance are important issues for end users. New types of…

Networking and Internet Architecture · Computer Science 2018-01-17 Mouhammd Alkasassbeh

Domain name system (DNS) is a crucial part of the Internet, yet has been widely exploited by cyber attackers. Apart from making static methods like blacklists or sinkholes infeasible, some weasel attackers can even bypass detection systems…

Cryptography and Security · Computer Science 2019-09-05 Xiaoqing Sun , Mingkai Tong , Jiahai Yang

For the traditional denial-of-service attack detection methods have complex algorithms and high computational overhead, which are difficult to meet the demand of online detection; and the experimental environment is mostly a simulation…

Cryptography and Security · Computer Science 2022-06-02 Yu Fu , Xueyuan Duan , Kun Wang , Bin Li

The popularity of encryption mechanisms poses a great challenge to malicious traffic detection. The reason is traditional detection techniques cannot work without the decryption of encrypted traffic. Currently, research on encrypted…

Cryptography and Security · Computer Science 2023-04-10 Zihao Wang , Vrizlynn L. L. Thing

The domain name system (DNS) that maps alphabetic names to numeric Internet Protocol (IP) addresses plays a foundational role for Internet communications. By default, DNS queries and responses are exchanged in unencrypted plaintext, and…

Cryptography and Security · Computer Science 2024-07-08 Minzhao Lyu , Hassan Habibi Gharakheili , Vijay Sivaraman
‹ Prev 1 2 3 10 Next ›