Classification of Malicious Domains by Their LIFETIME

Daiji Hara, Kouichi Sakurai, Yasuo Musashi

研究成果: 書籍/レポート タイプへの寄稿

1 被引用数 (Scopus)

抄録

In this study, we look for malicious domains in the logs of the primary DNS server of Kumamoto University using a malicious domain check tool (Virus Total), We then classify them according to their LIFETIME (LT) and investigate their main attack applications. The following results were obtained from the experiment: (1) Ransomware, phishing, and DDoS attacks were the 3 most frequent attacks. (2) We obtained two sets of LIFETIME by plotting the number of malicious domains according to their frequency (3) The frequency distribution obtained on ransomware, phishing, and DDoS attacks show that the LT distribution of ransomware and phishing is similar, however, the frequency of DDoS attacks is shorter. (4) From these results, we learn that the attack method can be determined by measuring the LT. The LT shows to be a good parameter to be used with machine learning to detect malicious domain names.

本文言語英語
ホスト出版物のタイトルLecture Notes on Data Engineering and Communications Technologies
出版社Springer Science and Business Media Deutschland GmbH
ページ334-341
ページ数8
DOI
出版ステータス出版済み - 2020

出版物シリーズ

名前Lecture Notes on Data Engineering and Communications Technologies
47
ISSN(印刷版)2367-4512
ISSN(電子版)2367-4520

!!!All Science Journal Classification (ASJC) codes

  • メディア記述
  • 電子工学および電気工学
  • コンピュータ サイエンスの応用
  • コンピュータ ネットワークおよび通信
  • 情報システム

フィンガープリント

「Classification of Malicious Domains by Their LIFETIME」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル