| IEICE Technical Committee Submission System Conference Paper's Information |
Online Proceedings [Sign in] Tech. Rep. Archives |
| Go Top Page | Go Previous | [Japanese] / [English] |
| Paper Abstract and Keywords | ||
| Presentation | 2015-06-12 10:50 Detecting Malicious Domain Names based on the Time-series Analysis of Attackers Network Resources Daiki Chiba (NTT/Waseda Univ.), Takeshi Yagi, Mitsuaki Akiyama (NTT), Tatsuya Mori (Waseda Univ.), Takeshi Yada, Takeo Hariu (NTT), Shigeki Goto (Waseda Univ.)  IA2015-10 ICSS2015-10 |
|
| Abstract | (in Japanese) | (See Japanese page) |
| (in English) | Attackers launching cyber attacks frequently change their malicious websites to evade countermeasures such as blacklisting. To detect such changing malicious websites, many detection methods using the network and domain name based characteristics have been proposed. However, a typical detection method fails to evaluate changing malicious websites since the method only relies on the information at a certain point in time. Therefore, we propose a new detection method of malicious domain names focusing on the characteristics of attackers behavior, especially the changing situation of malicious domain names. Moreover, we realize the method for determining the optimal granularity of malicious domain names for preventing users from accessing them. Our evaluation using large and latest real dataset reveals that our method successfully detects previously undetectable malicious domain names by the typical method. The evaluation also shows that many malicious websites can be effectively blocked using the granularity of domain names. | |
| Keyword | (in Japanese) | (See Japanese page) |
| (in English) | Drive-by download attack / Domain name / Blacklisting / DNS / Machine learning / / / | |
| Reference Info. | IEICE Tech. Rep., vol. 115, no. 81, ICSS2015-10, pp. 51-56, June 2015. | |
| Paper # | ICSS2015-10 | |
| Date of Issue | 2015-06-04 (IA, ICSS) | |
| ISSN | Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 | |
| Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) | |
| Download PDF | IA2015-10 ICSS2015-10 |
|
| Conference Information | |
| Committee | IA ICSS |
| Conference Date | 2015-06-11 - 2015-06-12 |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Kyushu Institute of Technology Univ. |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Internet Security, etc. |
| Paper Information | |
| Registration To | ICSS |
| Conference Code | 2015-06-IA-ICSS |
| Language | Japanese |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Detecting Malicious Domain Names based on the Time-series Analysis of Attackers Network Resources |
| Sub Title (in English) | |
| Keyword(1) | Drive-by download attack |
| Keyword(2) | Domain name |
| Keyword(3) | Blacklisting |
| Keyword(4) | DNS |
| Keyword(5) | Machine learning |
| Keyword(6) | |
| Keyword(7) | |
| Keyword(8) | |
| 1st Author's Name | Daiki Chiba |
| 1st Author's Affiliation | Nippon Telegraph and Telephone Corporation/Waseda University (NTT/Waseda Univ.) |
| 2nd Author's Name | Takeshi Yagi |
| 2nd Author's Affiliation | Nippon Telegraph and Telephone Corporation (NTT) |
| 3rd Author's Name | Mitsuaki Akiyama |
| 3rd Author's Affiliation | Nippon Telegraph and Telephone Corporation (NTT) |
| 4th Author's Name | Tatsuya Mori |
| 4th Author's Affiliation | Waseda University (Waseda Univ.) |
| 5th Author's Name | Takeshi Yada |
| 5th Author's Affiliation | Nippon Telegraph and Telephone Corporation (NTT) |
| 6th Author's Name | Takeo Hariu |
| 6th Author's Affiliation | Nippon Telegraph and Telephone Corporation (NTT) |
| 7th Author's Name | Shigeki Goto |
| 7th Author's Affiliation | Waseda University (Waseda Univ.) |
| 8th Author's Name | |
| 8th Author's Affiliation | () |
| 9th Author's Name | |
| 9th Author's Affiliation | () |
| 10th Author's Name | |
| 10th Author's Affiliation | () |
| 11th Author's Name | |
| 11th Author's Affiliation | () |
| 12th Author's Name | |
| 12th Author's Affiliation | () |
| 13th Author's Name | |
| 13th Author's Affiliation | () |
| 14th Author's Name | |
| 14th Author's Affiliation | () |
| 15th Author's Name | |
| 15th Author's Affiliation | () |
| 16th Author's Name | |
| 16th Author's Affiliation | () |
| 17th Author's Name | |
| 17th Author's Affiliation | () |
| 18th Author's Name | |
| 18th Author's Affiliation | () |
| Speaker | Author-1 |
| Date Time | 2015-06-12 10:50:00 |
| Presentation Time | 20 minutes |
| Registration for | ICSS |
| Paper # | IA2015-10, ICSS2015-10 |
| Volume (vol) | vol.115 |
| Number (no) | no.80(IA), no.81(ICSS) |
| Page | pp.51-56 |
| #Pages | 6 |
| Date of Issue | 2015-06-04 (IA, ICSS) |
[Return to Top Page]