FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2912464539> ?p ?o ?g. }

• W2912464539 abstract "Domain Generation Algorithms (DGAs) are a popular technique used by contemporary malware for command-and-control (C&C) purposes. Such malware utilizes DGAs to create a set of domain names that, when resolved, provide information necessary to establish a link to a C&C server. Automated discovery of such domain names in real-time DNS traffic is critical for network security as it allows to detect infection, and, in some cases, take countermeasures to disrupt the communication and identify infected machines. Detection of the specific DGA malware family provides the administrator valuable information about the kind of infection and steps that need to be taken. In this paper we compare and evaluate machine learning methods that classify domain names as benign or DGA, and label the latter according to their malware family. Unlike previous work, we select data for test and training sets according to observation time and known seeds. This allows us to assess the robustness of the trained classifiers for detecting domains generated by the same families at a different time or when seeds change. Our study includes tree ensemble models based on human-engineered features and deep neural networks that learn features automatically from domain names. We find that all state-of-the-art classifiers are significantly better at catching domain names from malware families with a time-dependent seed compared to time-invariant DGAs. In addition, when applying the trained classifiers on a day of real traffic, we find that many domain names unjustifiably are flagged as malicious, thereby revealing the shortcomings of relying on a standard whitelist for training a production grade DGA detection system." @default.
• W2912464539 created "2019-02-21" @default.
• W2912464539 creator A5013099146 @default.
• W2912464539 creator A5015857324 @default.
• W2912464539 creator A5020212339 @default.
• W2912464539 creator A5020586569 @default.
• W2912464539 creator A5056749857 @default.
• W2912464539 creator A5070505291 @default.
• W2912464539 date "2018-12-01" @default.
• W2912464539 modified "2023-10-17" @default.
• W2912464539 title "An Evaluation of DGA Classifiers" @default.
• W2912464539 cites W1981294881 @default.
• W2912464539 cites W2239778906 @default.
• W2912464539 cites W2470894770 @default.
• W2912464539 cites W2528572867 @default.
• W2912464539 cites W2768793959 @default.
• W2912464539 cites W2773671123 @default.
• W2912464539 cites W2784291098 @default.
• W2912464539 cites W2786906486 @default.
• W2912464539 cites W2963801581 @default.
• W2912464539 doi "https://doi.org/10.1109/bigdata.2018.8621875" @default.
• W2912464539 hasPublicationYear "2018" @default.
• W2912464539 type Work @default.
• W2912464539 sameAs 2912464539 @default.
• W2912464539 citedByCount "27" @default.
• W2912464539 countsByYear W29124645392019 @default.
• W2912464539 countsByYear W29124645392020 @default.
• W2912464539 countsByYear W29124645392021 @default.
• W2912464539 countsByYear W29124645392022 @default.
• W2912464539 countsByYear W29124645392023 @default.
• W2912464539 crossrefType "proceedings-article" @default.
• W2912464539 hasAuthorship W2912464539A5013099146 @default.
• W2912464539 hasAuthorship W2912464539A5015857324 @default.
• W2912464539 hasAuthorship W2912464539A5020212339 @default.
• W2912464539 hasAuthorship W2912464539A5020586569 @default.
• W2912464539 hasAuthorship W2912464539A5056749857 @default.
• W2912464539 hasAuthorship W2912464539A5070505291 @default.
• W2912464539 hasBestOaLocation W29124645392 @default.
• W2912464539 hasConcept C104317684 @default.
• W2912464539 hasConcept C110875604 @default.
• W2912464539 hasConcept C119857082 @default.
• W2912464539 hasConcept C124101348 @default.
• W2912464539 hasConcept C134306372 @default.
• W2912464539 hasConcept C136764020 @default.
• W2912464539 hasConcept C154945302 @default.
• W2912464539 hasConcept C185592680 @default.
• W2912464539 hasConcept C22735295 @default.
• W2912464539 hasConcept C33923547 @default.
• W2912464539 hasConcept C36503486 @default.
• W2912464539 hasConcept C38652104 @default.
• W2912464539 hasConcept C41008148 @default.
• W2912464539 hasConcept C506615639 @default.
• W2912464539 hasConcept C51632099 @default.
• W2912464539 hasConcept C541664917 @default.
• W2912464539 hasConcept C55493867 @default.
• W2912464539 hasConcept C63479239 @default.
• W2912464539 hasConcept C76155785 @default.
• W2912464539 hasConceptScore W2912464539C104317684 @default.
• W2912464539 hasConceptScore W2912464539C110875604 @default.
• W2912464539 hasConceptScore W2912464539C119857082 @default.
• W2912464539 hasConceptScore W2912464539C124101348 @default.
• W2912464539 hasConceptScore W2912464539C134306372 @default.
• W2912464539 hasConceptScore W2912464539C136764020 @default.
• W2912464539 hasConceptScore W2912464539C154945302 @default.
• W2912464539 hasConceptScore W2912464539C185592680 @default.
• W2912464539 hasConceptScore W2912464539C22735295 @default.
• W2912464539 hasConceptScore W2912464539C33923547 @default.
• W2912464539 hasConceptScore W2912464539C36503486 @default.
• W2912464539 hasConceptScore W2912464539C38652104 @default.
• W2912464539 hasConceptScore W2912464539C41008148 @default.
• W2912464539 hasConceptScore W2912464539C506615639 @default.
• W2912464539 hasConceptScore W2912464539C51632099 @default.
• W2912464539 hasConceptScore W2912464539C541664917 @default.
• W2912464539 hasConceptScore W2912464539C55493867 @default.
• W2912464539 hasConceptScore W2912464539C63479239 @default.
• W2912464539 hasConceptScore W2912464539C76155785 @default.
• W2912464539 hasLocation W29124645391 @default.
• W2912464539 hasLocation W29124645392 @default.
• W2912464539 hasLocation W29124645393 @default.
• W2912464539 hasOpenAccess W2912464539 @default.
• W2912464539 hasPrimaryLocation W29124645391 @default.
• W2912464539 hasRelatedWork W2529207922 @default.
• W2912464539 hasRelatedWork W2759618680 @default.
• W2912464539 hasRelatedWork W2789771563 @default.
• W2912464539 hasRelatedWork W2912464539 @default.
• W2912464539 hasRelatedWork W2934080905 @default.
• W2912464539 hasRelatedWork W2942650110 @default.
• W2912464539 hasRelatedWork W3011860454 @default.
• W2912464539 hasRelatedWork W3011866104 @default.
• W2912464539 hasRelatedWork W3080777947 @default.
• W2912464539 hasRelatedWork W4316087074 @default.
• W2912464539 isParatext "false" @default.
• W2912464539 isRetracted "false" @default.
• W2912464539 magId "2912464539" @default.
• W2912464539 workType "article" @default.