Fast-flux Attack Network Identification Based on Agent Lifespan

被引：10

作者：

Yu, Sheng ^{[1
]}

Zhou, Shijie ^{[1
]}

Wang, Sha ^{[1
]}

机构：

[1] Univ Elect Sci & Technol China, Sch Comp Sci & Engn, Chengdu 610054, Peoples R China

来源：

2010 IEEE INTERNATIONAL CONFERENCE ON WIRELESS COMMUNICATIONS, NETWORKING AND INFORMATION SECURITY (WCNIS), VOL 1 | 2010年

关键词：

fast-flux service networks; fast-flux attack; fast-flux attack network; network security;

D O I：

10.1109/WCINS.2010.5541861

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Fast-flux refers to rapidly changing the mapping between IP address and domain name. Although some benign uses with this technique are known, it currently has become a favorite tool for cyber criminals to launch collaborative attacks, such as phishing, pharming, and malware spreading. While the legal fast-flux networks and the malicious ones hold some same features, such as short TTL and large IP pool, it is hard to distinguish them. In this paper we propose a novel way to deal with the fast-flux attack identification issue. We try to measure the service availability of the agents in the fast-flux network to identify the malicious fast-flux. This is the first time that researchers observe the fast-flux network in terms of service availability. We develop some metrics on the service availability. And the observation results show the metrics are useful.

引用

页码：658 / 662

页数：5

共 50 条

[41] Active Probing-based Schemes and Data Analytics for Investigating Malicious Fast-Flux Web-Cloaking based Domains
Guo, Ziji
Guan, Yong
2018 27TH INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND NETWORKS (ICCCN), 2018,
[42] 基于流量时空特征的fast-flux僵尸网络检测方法
牛伟纳
蒋天宇
张小松
谢娇
张俊哲
赵振扉
电子与信息学报, 2020, 42 (08) : 1872 - 1880
[43] Characterization of the Fast-Neutron Irradiator and the Fast-Flux Tube Irradiation Fixtures at the Pennsylvania State Breazeale Reactor
Kuatbek, Maksat
Pierson, Bruce D.
Lyons, Stephanie M.
Flaska, Marek
Johnsen, Amanda M.
NUCLEAR ENGINEERING AND DESIGN, 2023, 413
[44] GEOMETRY PROBLEMS ENCOUNTERED WITH FAST-FLUX TEST FACILITY (FFTF) SPLIT CONICAL CORE
WAYMIRE, GR
PETERSON, RE
FINCH, LM
TRANSACTIONS OF THE AMERICAN NUCLEAR SOCIETY, 1967, 10 (02): : 646 - &
[45] 基于SVM的Fast-flux僵尸网络检测技术研究
康乐
李东
余翔湛
智能计算机与应用, 2011, 1 (03) : 24 - 27
[46] 基于多模态特征融合的Fast-Flux恶意域名检测方法
郎波
谢冲
陈少杰
刘宏宇
信息网络安全, 2022, 22 (04) : 20 - 29
[47] Efficient Attack Correlation and Identification of Attack Scenarios based on Network-Motifs
Haas, Steffen
Wilkens, Florian
Fischer, Mathias
2019 IEEE 38TH INTERNATIONAL PERFORMANCE COMPUTING AND COMMUNICATIONS CONFERENCE (IPCCC), 2019,
[48] Network Attack Identification and Analysis Based on Graph Convolutional Neural Network
Wang, Xingyu
Wenkun
Zhang, Yingdan
2023 IEEE 22ND INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS, TRUSTCOM, BIGDATASE, CSE, EUC, ISCI 2023, 2024, : 1443 - 1448
[49] 基于代理控制力的Fast-Flux僵尸网络检测方法
刘资茂
李芝棠
李战春
李冬
方平
广西大学学报(自然科学版), 2011, 36(S1) (自然科学版) : 105 - 109
[50] A fast inversion approach for the identification of highly transient surface heat flux based on the generative adversarial network
Gu, Jiang-hang
Hong, Min
Yang, Qing-qing
Heng, Yi
APPLIED THERMAL ENGINEERING, 2023, 220

← 1 2 3 4 5 →