KRTunnel: DNS channel detector for mobile devices

被引：10

作者：

Wang, Senmiao ^{[1
]}

Sun, Luli ^{[1
]}

Qin, Sujuan ^{[1
]}

Li, WenMin ^{[1
]}

Liu, Wentao ^{[1
]}

机构：

[1] Beijing Univ Posts & Telecommun, State Key Lab Networking & Switching Technol, Beijing 100876, Peoples R China

来源：

COMPUTERS & SECURITY | 2022年 / 120卷

关键词：

DNS tunnel detection; DNS response; Isolated forest; Android; Network security;

D O I：

10.1016/j.cose.2022.102818

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Nowadays, DNS channel attacks on mobile devices have become a challenging threat. Attackers usually attack mobile devices and steal information with the help of DNS channel. It is difficult for users to de-tect this kind of attack, especially when attackers covert sensitive information in the DNS response. In this paper, we proposed a method for DNS tunnel detection based on isolated forest for Android. We constructed a framework for mobile devices to collect DNS tunnel traffic. Based on the analysis of DNS tunnel traffic generated on mobile devices, we extracted features based on DNS request and response and constructed the feature set. We proposed a DNS tunnel detector, KRTunnel, for mobile devices. Experi-ments showed that KRTunnel can identify unseen DNS tunnel traffic with the accuracy of 98.1%.(c) 2022 The Authors. Published by Elsevier Ltd. This is an open access article under the CC BY license ( http://creativecommons.org/licenses/by/4.0/ )

引用

页数：10

共 50 条

[21] Channel-Dependent Scheduling in Wireless Energy Transfer for Mobile Devices
Fang, Wen
Wang, Gang
Giannakis, Georgios B.
Liu, Qingwen
Wang, Xin
Deng, Hao
IEEE TRANSACTIONS ON VEHICULAR TECHNOLOGY, 2020, 69 (03) : 3330 - 3340
[22] DNS Name Autoconfiguration for IoT Home Devices
Lee, Sejun
Jeong, Jaehoon
Park, Jungsoo
2015 IEEE 29TH INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS WORKSHOPS WAINA 2015, 2015, : 131 - 134
[23] A novel video codec for mobile devices using wavelet decomposition and fuzzy change detector
El-Khamy, Said E.
Islander, Julie
PROCEEDINGS OF THE 25TH NATIONAL RADIO SCIENCE CONFERENCE: NRSC 2008, 2008,
[24] Lightweight SSD: Real-time Lightweight Single Shot Detector for Mobile Devices
Guo, Shi
Liu, Yang
Ni, Yong
Ni, Wei
VISAPP: PROCEEDINGS OF THE 16TH INTERNATIONAL JOINT CONFERENCE ON COMPUTER VISION, IMAGING AND COMPUTER GRAPHICS THEORY AND APPLICATIONS - VOL. 5: VISAPP, 2021, : 25 - 35
[25] DNS of turbulent flow in a rotating rough channel
Narasimhamurthy, Vagesh D.
Andersson, Helge I.
DIRECT AND LARGE-EDDY SIMULATION VIII, 2011, 15 : 413 - 418
[26] Compressible turbulent plane channel DNS datasets
Gerolymos, G. A.
Vallet, I.
DATA IN BRIEF, 2024, 55
[27] DNS of turbulent flow in a channel with an elastic cantilever
Tsujimoto, K.
Sasaki, Y.
Shakouchi, T.
Ando, T.
13TH EUROPEAN TURBULENCE CONFERENCE (ETC13): WALL-BOUNDED FLOWS AND CONTROL OF TURBULENCE, 2011, 318
[28] Channel Characterization for Devices in a Turbulent Diffusive Environment: A Mobile Molecular Communication Approach
Pandey, Nilay
Joshi, Sandeep
Mallik, Ranjan K.
Lall, Brejesh
IEEE TRANSACTIONS ON MOLECULAR BIOLOGICAL AND MULTI-SCALE COMMUNICATIONS, 2019, 5 (03): : 222 - 232
[29] Video Quality Assessment for Mobile Devices on Mobile Devices
Mirkovic, Milan
Culibrk, Dubravko
Sladojevic, Srdjan
Anderla, Andras
NEW TRENDS IN IMAGE ANALYSIS AND PROCESSING - ICIAP 2015 WORKSHOPS, 2015, 9281 : 555 - 562
[30] Systematic Classification of Side-Channel Attacks: A Case Study for Mobile Devices
Spreitzer, Raphael
Moonsamy, Veelasha
Korak, Thomas
Mangard, Stefan
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2018, 20 (01): : 465 - 488

← 1 2 3 4 5 →