Presentation | 2014/5/15 Visualization of query log of authoritative DNS server for attack analysis and detection KENRYU WATANABE, KAZUNO MATSUI, MINORU IKEBE, KAZUYUKI YOSHIDA, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | Attackers sweep networks and look for target hosts. For example, the attacker queries MX record to authoritative DNS server for spam sending. Moreover, the attacker queries PTR record to the DNS server for host sweep. In this paper, we aim to detect some attack using queries-log of the authoritative DNS server. Therefore, we analyzed MX and PTR records of queries-log in Oita University. We use a Hilbert curve to map the first and second octets of source IP addresses that sent spam and queried MX record. And, we counted up the daily PTR records of queries-log. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | DNS / spam / Log Analysis / Visualization |
Paper # | Vol.2014-CSEC-65 No.5,Vol.2014-IOT-25 No.5 |
Date of Issue |
Conference Information | |
Committee | ICM |
---|---|
Conference Date | 2014/5/15(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Information and Communication Management(ICM) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Visualization of query log of authoritative DNS server for attack analysis and detection |
Sub Title (in English) | |
Keyword(1) | DNS |
Keyword(2) | spam |
Keyword(3) | Log Analysis |
Keyword(4) | Visualization |
1st Author's Name | KENRYU WATANABE |
1st Author's Affiliation | Course of Computer Science and Intelligent Systems, Graduate School of Engineering, Oita University() |
2nd Author's Name | KAZUNO MATSUI |
2nd Author's Affiliation | Course of Computer Science and Intelligent Systems, Graduate School of Engineering, Oita University |
3rd Author's Name | MINORU IKEBE |
3rd Author's Affiliation | Department of Computer Science and Intelligent Systems, Faculty of Engineering, Oita University |
4th Author's Name | KAZUYUKI YOSHIDA |
4th Author's Affiliation | Center for Academic Information and Library Services, Oita University |
Date | 2014/5/15 |
Paper # | Vol.2014-CSEC-65 No.5,Vol.2014-IOT-25 No.5 |
Volume (vol) | vol.114 |
Number (no) | 43 |
Page | pp.pp.- |
#Pages | 6 |
Date of Issue |