会议专题

Detecting Malicious Fast Flux Domains

查看全文→
Abstract- Fast-flux service networks (FFSN) are new emerging phenomenon in the internet. Fast-flux networks use proxy networks of compromised machines to redirect and host scam service to achieve high availability. Such technique helps scam websites to avoid being traced and taken down by security professionals. In this paper, we use alternative decision tree algorithm to identify presence of fast-flux domains by analyzing only one address record (A-record) of DNS lookup, which achieves fast detection.

Fast Flux DNS lookup A record Availability

Mahmoud T. Qassrawi Hongli Zhang

Harbin Institute of Technology/School of ComputerScience and Technology, Harbin, P.R. China Harbin Institute of Technology/School of Computer Science and Technology, Harbin, P.R. China

国际会议

2011 International Conference on Information System and Computational Intelligence(2011 IEEE信息系统与计算智能国际会议 ICISCI 2011)

哈尔滨

英文

48-53

2011-01-18(万方平台首次上网日期,不代表论文的发表时间)